ML
    • Recent
    • Categories
    • Tags
    • Popular
    • Users
    • Groups
    • Register
    • Login

    Time to gut the network - thoughts?

    Scheduled Pinned Locked Moved IT Discussion
    networkubntciscowirelessedgeswitchedgerouter
    280 Posts 11 Posters 61.0k Views
    Loading More Posts
    • Oldest to Newest
    • Newest to Oldest
    • Most Votes
    Reply
    • Reply as topic
    Log in to reply
    This topic has been deleted. Only users with topic management privileges can see it.
    • DashrenderD
      Dashrender
      last edited by

      It's time to get this network to what @scottalanmiller would call home user level.

      Current setup:
      Building 1
      Master switch - HP 2824 (1 Gb)
      endpoint switch 1 - HP 2650 PWR (100 Mb)
      endpoint switch 2 - HP 2650 PWR (100 Mb)
      Wireless controller - Cisco 4402-25 WAP controller, 8 APs

      Building 2
      endpoint switch 3 - HP 2650 (100 Mb)
      endpoint switch 4 - HP 2650 (100 Mb)
      WAP switch - Cisco 3560
      WAP - 10 Cisco WAPs

      Building 1 has 3 pair of fiber running to building two (private fiber)
      Building 1 has IP phones only
      Building 1, most PCs connect through the phones for network access

      Building 2 has digital phones only
      Building 2 50% wireless laptops 50% wired PCs

      Proposal:
      Replace all switches with 1 HP 1920 and 4 UBNT EdgeSwitch ES-48-500W (Already have the HP, it's new so I should use it).
      Don't replace Cisco switch, those ports can go onto one of the EdgeSwitches
      Replace the Cisco WAPs/controller with UAP-AC Lites
      Use 10 Gb SFP+ Fiber adapters to link switches in building 2 to building 1

      Parts list

      4 Edgeswitch ES-48-500w
      4 10 Gb SFP+ modules
      4 TRIPP LITE Fiber Optic Mode Conditioning 6' Patch Cable LC/MC to SC 2M (N425-02M)
      20 UAP-AC Lite

      Considerations:
      Currently my HP-2824 switch is acting as a router between my VLANs. Anyone know from experience if the Edgeswitches can do this? The specs claim they can.

      Even if the Edgeswitch can do this, should I? Or should I install an EdgeRouter to route between my VLANs? I currently don't have any ACLs between VLANs. I have VLANs because of legacy thinking (heck, my phone provider is still practically demanding a VLAN for the VOIP phones).

      FYI - in Q1 of 2017, the plan is to replace the digital phones with IP phones, this is the reason for the POE switches in Building 2.

      Other than having the HP 1920 switch, nothing else is purchased or set in stone.

      Suggestions of changes? other questions, things I should consider?

      stacksofplatesS scottalanmillerS 6 Replies Last reply Reply Quote 2
      • stacksofplatesS
        stacksofplates @Dashrender
        last edited by

        @Dashrender said in Time to gut the network - thoughts?:

        I currently don't have any ACLs between VLANs.

        No zone policy either?

        DashrenderD 1 Reply Last reply Reply Quote 0
        • stacksofplatesS
          stacksofplates @Dashrender
          last edited by

          @Dashrender said in Time to gut the network - thoughts?:

          Anyone know from experience if the Edgeswitches can do this? The specs claim they can.

          Looks like it. But as you can see, I don't use it for that.

          0_1476830994512_route-table.png

          0_1476831005858_configured-routes.png

          1 Reply Last reply Reply Quote 0
          • scottalanmillerS
            scottalanmiller
            last edited by

            Can you really get more than 1Gb/s between the buildings? Is it worth going to 10Gb/s now?

            stacksofplatesS 1 Reply Last reply Reply Quote 1
            • stacksofplatesS
              stacksofplates @scottalanmiller
              last edited by

              @scottalanmiller said in Time to gut the network - thoughts?:

              Can you really get more than 1Gb/s between the buildings? Is it worth going to 10Gb/s now?

              A good point. None of the clients will really benefit from this.

              You're still bottlenecked at each client and at the router.

              DashrenderD 1 Reply Last reply Reply Quote 0
              • DashrenderD
                Dashrender @stacksofplates
                last edited by

                @stacksofplates said in Time to gut the network - thoughts?:

                @Dashrender said in Time to gut the network - thoughts?:

                I currently don't have any ACLs between VLANs.

                No zone policy either?

                I don't know what that is.

                stacksofplatesS 1 Reply Last reply Reply Quote 0
                • DashrenderD
                  Dashrender @stacksofplates
                  last edited by

                  @stacksofplates said in Time to gut the network - thoughts?:

                  @scottalanmiller said in Time to gut the network - thoughts?:

                  Can you really get more than 1Gb/s between the buildings? Is it worth going to 10Gb/s now?

                  A good point. None of the clients will really benefit from this.

                  You're still bottlenecked at each client and at the router.

                  Yeah I was wondering wondering that myself. Converting to 10 Gb dollar wise isn't that much more than 1Gb, but percentage wise is huge on the components, like 100%+.

                  As mentioned it's probably just a waste of money.

                  1 Reply Last reply Reply Quote 0
                  • travisdh1T
                    travisdh1
                    last edited by

                    With 10Gb tho, he can loose 2 of the 3 fiber runs and the network won't notice. Besides, it's not like 10Gb adapters for servers are very expensive from a place like xByte, right @xByteSean?

                    travisdh1T 1 Reply Last reply Reply Quote 0
                    • travisdh1T
                      travisdh1 @travisdh1
                      last edited by

                      @travisdh1 That said, I don't know what the price difference actually is myself. For servers and backbone it might be worth the upgrade all around.

                      DashrenderD stacksofplatesS 2 Replies Last reply Reply Quote 0
                      • DashrenderD
                        Dashrender @travisdh1
                        last edited by

                        @travisdh1 said in Time to gut the network - thoughts?:

                        @travisdh1 That said, I don't know what the price difference actually is myself. For servers and backbone it might be worth the upgrade all around.

                        I'd have to get a different/additional switch to have enough 10Gb ports to cover servers. That kinda makes it not worth it.

                        Assuming the use of only one of the ES-48-500w as a backbone switch, it only has two 10Gb ports.

                        1 Reply Last reply Reply Quote 0
                        • Mike DavisM
                          Mike Davis
                          last edited by

                          Are you maxing out your 1Gb ports? That's what would push me to 10Gb.

                          DashrenderD 1 Reply Last reply Reply Quote 2
                          • BRRABillB
                            BRRABill
                            last edited by

                            (hijacking on)

                            also thinking of upgrading some networking gear with the EdgeSwitch

                            1 Reply Last reply Reply Quote 1
                            • stacksofplatesS
                              stacksofplates @travisdh1
                              last edited by

                              @travisdh1 said in Time to gut the network - thoughts?:

                              @travisdh1 That said, I don't know what the price difference actually is myself. For servers and backbone it might be worth the upgrade all around.

                              Refurbs aren't bad, but new NICs are around $250-300 and if you use SFP then it's even more.

                              J 1 Reply Last reply Reply Quote 0
                              • stacksofplatesS
                                stacksofplates @Dashrender
                                last edited by

                                @Dashrender said in Time to gut the network - thoughts?:

                                @stacksofplates said in Time to gut the network - thoughts?:

                                @Dashrender said in Time to gut the network - thoughts?:

                                I currently don't have any ACLs between VLANs.

                                No zone policy either?

                                I don't know what that is.

                                Instead of straight ACL firewall rules.

                                I guess I don't see the point in VLANs with no firewall rules.

                                DashrenderD 1 Reply Last reply Reply Quote 0
                                • dafyreD
                                  dafyre
                                  last edited by

                                  If it were me, I'd bump those HP 2650's up to the Ubiquiti equivalents and just stick with 1Gig backbone, unless you're consistently pushing the 1gig links pretty hard. If the price difference between 1gig and 10gig SFPs aren't that big, then I would consider going to 10Gig.

                                  I'd also just leave the HP 2824 as the VLAN router since there's no real rules like that. Or get the EdgeRouter as a primary and keep the 2824 as a backup.

                                  1 Reply Last reply Reply Quote 1
                                  • DashrenderD
                                    Dashrender @Mike Davis
                                    last edited by

                                    @Mike-Davis said in Time to gut the network - thoughts?:

                                    Are you maxing out your 1Gb ports? That's what would push me to 10Gb.

                                    No, not really. 90%+ of our network traffic goes over the fiber link to the internet. We have a 100/20 internet connection.

                                    1 Reply Last reply Reply Quote 0
                                    • DashrenderD
                                      Dashrender
                                      last edited by

                                      I put 10 Gb on the table mainly because it's actual cost over 1 Gb links was around $100 more per link and it would give me a chance to - just do it.

                                      But as I mentioned above, when I put my IT hat one, you know, the one where we do what's best for the company - which includes being financially responsible - well, I suppose I should just save that $200 because it's really not going to gain us anything.

                                      JaredBuschJ coliverC scottalanmillerS 3 Replies Last reply Reply Quote 1
                                      • JaredBuschJ
                                        JaredBusch @Dashrender
                                        last edited by

                                        @Dashrender said in Time to gut the network - thoughts?:

                                        I put 10 Gb on the table mainly because it's actual cost over 1 Gb links was around $100 more per link and it would give me a chance to - just do it.

                                        But as I mentioned above, when I put my IT hat one, you know, the one where we do what's best for the company - which includes being financially responsible - well, I suppose I should just save that $200 because it's really not going to gain us anything.

                                        How often are you pushing out images to a new desktop that would definitely be filling up your pipe if you're trying to do more than one or two at a time?

                                        DashrenderD 1 Reply Last reply Reply Quote 3
                                        • coliverC
                                          coliver @Dashrender
                                          last edited by

                                          @Dashrender said in Time to gut the network - thoughts?:

                                          I put 10 Gb on the table mainly because it's actual cost over 1 Gb links was around $100 more per link and it would give me a chance to - just do it.

                                          But as I mentioned above, when I put my IT hat one, you know, the one where we do what's best for the company - which includes being financially responsible - well, I suppose I should just save that $200 because it's really not going to gain us anything.

                                          Does the fiber between those buildings support 10G? For 200$ this seems like a no brainer to me. It's not enough to cause any issues with accounting and it introduces some opportunity. I know, buy for what you need now and not what you need tomorrow but $200 just doesn't seem like much.

                                          1 Reply Last reply Reply Quote 0
                                          • DashrenderD
                                            Dashrender @stacksofplates
                                            last edited by

                                            @stacksofplates said in Time to gut the network - thoughts?:

                                            @Dashrender said in Time to gut the network - thoughts?:

                                            @stacksofplates said in Time to gut the network - thoughts?:

                                            @Dashrender said in Time to gut the network - thoughts?:

                                            I currently don't have any ACLs between VLANs.

                                            No zone policy either?

                                            I don't know what that is.

                                            Instead of straight ACL firewall rules.

                                            I guess I don't see the point in VLANs with no firewall rules.

                                            Legacy understanding, and the belief (by the phone installation company) that VLANs would allow QOS for the IP phones.

                                            Of course the use of VLANs does allow for VLAN X to have a higher QOS level, but if the switch is saturated by traffic on other VLANs, I suppose the switch should give priority to the QOS ratings, but I probably have problems to fix.

                                            One thing I've considered to dumping the VLANs and moving to /23 or /22.

                                            scottalanmillerS 2 Replies Last reply Reply Quote 0
                                            • 1
                                            • 2
                                            • 3
                                            • 4
                                            • 5
                                            • 13
                                            • 14
                                            • 3 / 14
                                            • First post
                                              Last post