ML
    • Recent
    • Categories
    • Tags
    • Popular
    • Users
    • Groups
    • Register
    • Login

    VLAN confusion

    Scheduled Pinned Locked Moved IT Discussion
    184 Posts 8 Posters 26.1k Views
    Loading More Posts
    • Oldest to Newest
    • Newest to Oldest
    • Most Votes
    Reply
    • Reply as topic
    Log in to reply
    This topic has been deleted. Only users with topic management privileges can see it.
    • dave247D
      dave247 @scottalanmiller
      last edited by

      @scottalanmiller said in VLAN confusion:

      @dave247 said in VLAN confusion:

      Well we do have the FIS who helps us with all the products and services we use in our company, but not so much with our IT infrastructure like we are talking about.

      I'm not familiar with this term. What is a FIS?

      https://www.fisglobal.com/

      scottalanmillerS 1 Reply Last reply Reply Quote 0
      • scottalanmillerS
        scottalanmiller @dave247
        last edited by

        @dave247 said in VLAN confusion😆 @scottalanmiller said in VLAN confusion:

        We did have a Dell VAR who I've cut ties with because he was terrible. Then we started up a relationship with that IT business management consultant company (who also are the Cisco partners/resellers we are going through)

        They are NOT a business management consultant company. They are sales people. Please stick to the correct terms. Calling sales people consultants empowers the very behaviour the CIO is using here. It legitimizes what he's done, where the is no possible excuse for it, in reality.

        dave247D 1 Reply Last reply Reply Quote 0
        • scottalanmillerS
          scottalanmiller @dave247
          last edited by

          @dave247 said in VLAN confusion:

          @scottalanmiller said in VLAN confusion:

          @dave247 said in VLAN confusion:

          Well we do have the FIS who helps us with all the products and services we use in our company, but not so much with our IT infrastructure like we are talking about.

          I'm not familiar with this term. What is a FIS?

          https://www.fisglobal.com/

          Oh, a consumer bank processor.

          1 Reply Last reply Reply Quote 0
          • dave247D
            dave247 @scottalanmiller
            last edited by

            @scottalanmiller said in VLAN confusion:

            @dave247 said in VLAN confusion😆 @scottalanmiller said in VLAN confusion:

            We did have a Dell VAR who I've cut ties with because he was terrible. Then we started up a relationship with that IT business management consultant company (who also are the Cisco partners/resellers we are going through)

            They are NOT a business management consultant company. They are sales people. Please stick to the correct terms. Calling sales people consultants empowers the very behaviour the CIO is using here. It legitimizes what he's done, where the is no possible excuse for it, in reality.

            Well I don't know what else to do or who to go through for help. I don't know how to find the right people and I'm bad at weeding out things that aren't what they seem.

            scottalanmillerS 2 Replies Last reply Reply Quote 0
            • scottalanmillerS
              scottalanmiller @dave247
              last edited by

              @dave247 said in VLAN confusion:

              @scottalanmiller said in VLAN confusion:

              @dave247 said in VLAN confusion😆 @scottalanmiller said in VLAN confusion:

              We did have a Dell VAR who I've cut ties with because he was terrible. Then we started up a relationship with that IT business management consultant company (who also are the Cisco partners/resellers we are going through)

              They are NOT a business management consultant company. They are sales people. Please stick to the correct terms. Calling sales people consultants empowers the very behaviour the CIO is using here. It legitimizes what he's done, where the is no possible excuse for it, in reality.

              Well I don't know what else to do or who to go through for help. I don't know how to find the right people and I'm bad at weeding out things that aren't what they seem.

              But it's not your job. It's the CIO's job. Are you saying that he's business incompetent now and can't or simply won't do his job?

              dave247D 1 Reply Last reply Reply Quote 0
              • dave247D
                dave247 @scottalanmiller
                last edited by

                @scottalanmiller said in VLAN confusion:

                @dave247 said in VLAN confusion:

                @scottalanmiller said in VLAN confusion:

                @dave247 said in VLAN confusion😆 @scottalanmiller said in VLAN confusion:

                We did have a Dell VAR who I've cut ties with because he was terrible. Then we started up a relationship with that IT business management consultant company (who also are the Cisco partners/resellers we are going through)

                They are NOT a business management consultant company. They are sales people. Please stick to the correct terms. Calling sales people consultants empowers the very behaviour the CIO is using here. It legitimizes what he's done, where the is no possible excuse for it, in reality.

                Well I don't know what else to do or who to go through for help. I don't know how to find the right people and I'm bad at weeding out things that aren't what they seem.

                But it's not your job. It's the CIO's job. Are you saying that he's business incompetent now and can't or simply won't do his job?

                He's the one who chose that company I mentioned.

                1 Reply Last reply Reply Quote 0
                • scottalanmillerS
                  scottalanmiller @dave247
                  last edited by

                  @dave247 said in VLAN confusion:

                  ... and I'm bad at weeding out things that aren't what they seem.

                  In any of the cases that have come up, as anything been different than it seems?

                  Walk through it carefully. Maybe there is something you can fix, like misusing terms that people use to mislead you, or emotionally reacting and wanting to defend people that have no reasonable defense or such.

                  Your Dell VAR... the title alone is enough to tell us that they'd be bad for you. The Cisco VAR, same thing. The CIO bringing in sales people instead of consultants, people calling sales people consultants. Having an ISP for the phones.

                  All of those things should be obviously bad based on what they are, and I would assume, were all transparently those things from the onset. Did any of them lie or hide their true nature?

                  dave247D 1 Reply Last reply Reply Quote 0
                  • scottalanmillerS
                    scottalanmiller
                    last edited by

                    My guess, and this is only a guess, is that you have an emotional desire to see people as good, as working in your interest, in being your friends. And this overlay of emotions leads you to try to rationalize how the CIO might be being ethical, and just making mistakes. How the sales people might be consultants, who also sell. And so forth.

                    It's called "rationalizing" and all people do it. But it isn't that what they are is not obvious. If this is what you are doing, it's that it is so obvious that you panic and try to, in your mind, make them out to be good people even when it is obvious that they are bad actors taking advantage of the company that you are trying to protect.

                    1 Reply Last reply Reply Quote 0
                    • scottalanmillerS
                      scottalanmiller
                      last edited by

                      In other words, if we asked a computer about these people, it would tell us that they are bad actors. We know enough to know that. Logically it is apparent. It's human emotions that make it feel confusing. We all have them, so learning to shut them down when analyzing these things is very important.

                      1 Reply Last reply Reply Quote 0
                      • dave247D
                        dave247 @scottalanmiller
                        last edited by

                        @scottalanmiller said in VLAN confusion:

                        @dave247 said in VLAN confusion:

                        ... and I'm bad at weeding out things that aren't what they seem.

                        In any of the cases that have come up, as anything been different than it seems?

                        Walk through it carefully. Maybe there is something you can fix, like misusing terms that people use to mislead you, or emotionally reacting and wanting to defend people that have no reasonable defense or such.

                        Your Dell VAR... the title alone is enough to tell us that they'd be bad for you. The Cisco VAR, same thing. The CIO bringing in sales people instead of consultants, people calling sales people consultants. Having an ISP for the phones.

                        All of those things should be obviously bad based on what they are, and I would assume, were all transparently those things from the onset. Did any of them lie or hide their true nature?

                        hmm... I'll have to think about this. I'm heading to my lunch now so I'll continue this discussion when I get back. Thanks for your input, Scott.

                        1 Reply Last reply Reply Quote 0
                        • dave247D
                          dave247 @scottalanmiller
                          last edited by

                          @scottalanmiller said in VLAN confusion:

                          @dave247 said in VLAN confusion:

                          ... and my current understanding is that I would want a separate VLAN to use with that separate subnet.

                          Also incorrect. VLANs basically require subnetting (or overlaps) but you never use a VLAN for subnetting. Subnets are simple and effective, VLANs are complex. You only use a VLAN for management and security purposes, never performance, subnetting or any other purpose.

                          Stepping back in the discussion a bit.. I didn't understand your reply here. Isn't it best-practice to have a single network on a VLAN? Like, if I had a company network of 200 systems on one network and a LAB network of 20 systems, I wouldn't want them sharing the same switch/VLAN, would I?

                          scottalanmillerS 2 Replies Last reply Reply Quote 0
                          • dave247D
                            dave247 @Dashrender
                            last edited by

                            @dashrender said in VLAN confusion:

                            @jaredbusch said in VLAN confusion:

                            Then you change your few static devices (if you do not have only a few static systems, you have other issues).

                            What JB means by this is - he uses static assignments in DHCP for things like printers. This allows you to reboot a printer to get the new settings when things like this change.

                            Servers are about the only thing that should be set statically, the rest can rely on Static DHCP assignment.

                            oh man.. the printers.. I forgot about all the statically assigned printers we have. My company has about 30 statically assigned printers. That will be a huge pain in the butt to change..

                            scottalanmillerS 1 Reply Last reply Reply Quote 0
                            • scottalanmillerS
                              scottalanmiller @dave247
                              last edited by

                              @dave247 said in VLAN confusion:

                              @dashrender said in VLAN confusion:

                              @jaredbusch said in VLAN confusion:

                              Then you change your few static devices (if you do not have only a few static systems, you have other issues).

                              What JB means by this is - he uses static assignments in DHCP for things like printers. This allows you to reboot a printer to get the new settings when things like this change.

                              Servers are about the only thing that should be set statically, the rest can rely on Static DHCP assignment.

                              oh man.. the printers.. I forgot about all the statically assigned printers we have. My company has about 30 statically assigned printers. That will be a huge pain in the butt to change..

                              Move them to DHCP while you do it. two bird, one stone.

                              But remember, if the things in the new range don't need to print, no need to change them.

                              black3dynamiteB 1 Reply Last reply Reply Quote 0
                              • scottalanmillerS
                                scottalanmiller @dave247
                                last edited by

                                @dave247 said in VLAN confusion:

                                Stepping back in the discussion a bit.. I didn't understand your reply here. Isn't it best-practice to have a single network on a VLAN?

                                Absolutely not. VLANs are for security and management, only. Period. No other purpose for them. No best practice adds VLANs to other concerns. VLANs are widely used, because security and management needs create cause for them. But those are the singular reasons for which VLANs are sensible.

                                dave247D 1 Reply Last reply Reply Quote 0
                                • scottalanmillerS
                                  scottalanmiller @dave247
                                  last edited by

                                  @dave247 said in VLAN confusion:

                                  Like, if I had a company network of 200 systems on one network and a LAB network of 20 systems, I wouldn't want them sharing the same switch/VLAN, would I?

                                  You lept topics. You asked about subnetting, now you are asking about security. Like I keep saying, if you are VLANing for security, then you use VLANs. And VLANs imply "same switch."

                                  The issue in your example is that you need the VLAN to keep them apart, but you don't need separate subnets. You likely want separate subnets, but not for security reasons, just for convenience since the VLANs will be a pain without it. But the subnet exists solely to support the VLAN, not the other way around.

                                  1 Reply Last reply Reply Quote 0
                                  • dave247D
                                    dave247 @scottalanmiller
                                    last edited by

                                    @scottalanmiller said in VLAN confusion:

                                    @dave247 said in VLAN confusion:

                                    Stepping back in the discussion a bit.. I didn't understand your reply here. Isn't it best-practice to have a single network on a VLAN?

                                    Absolutely not. VLANs are for security and management, only. Period. No other purpose for them. No best practice adds VLANs to other concerns. VLANs are widely used, because security and management needs create cause for them. But those are the singular reasons for which VLANs are sensible.

                                    Sorry, let me change the term "VLAN" to "switch". Is it best practice to avoid having multiple networks running on a single switch? I just said VLAN because of the default VLAN..

                                    scottalanmillerS 1 Reply Last reply Reply Quote 0
                                    • scottalanmillerS
                                      scottalanmiller @dave247
                                      last edited by

                                      @dave247 said in VLAN confusion:

                                      Sorry, let me change the term "VLAN" to "switch". Is it best practice to avoid having multiple networks running on a single switch? I just said VLAN because of the default VLAN..

                                      The entire concepts of subnetting and VLANing are to run multiple networks on a single switch 🙂 Nothing wrong with that in the least. Switches are expected to run multiple networks, that's just normal and exactly what they are meant to do.

                                      dave247D 1 Reply Last reply Reply Quote 0
                                      • dave247D
                                        dave247 @scottalanmiller
                                        last edited by dave247

                                        @scottalanmiller said in VLAN confusion:

                                        @dave247 said in VLAN confusion:

                                        Sorry, let me change the term "VLAN" to "switch". Is it best practice to avoid having multiple networks running on a single switch? I just said VLAN because of the default VLAN..

                                        The entire concepts of subnetting and VLANing are to run multiple networks on a single switch 🙂 Nothing wrong with that in the least. Switches are expected to run multiple networks, that's just normal and exactly what they are meant to do.

                                        So if I had 20 different /24 networks running on the same switch stack (for whatever reason), and all of them are on VLAN 0 (I'm just saying VLAN here because everything will at least be on the default VLAN), then there will be no traffic issues whatsoever?

                                        scottalanmillerS 1 Reply Last reply Reply Quote 0
                                        • scottalanmillerS
                                          scottalanmiller @dave247
                                          last edited by

                                          @dave247 said in VLAN confusion:

                                          @scottalanmiller said in VLAN confusion:

                                          @dave247 said in VLAN confusion:

                                          Sorry, let me change the term "VLAN" to "switch". Is it best practice to avoid having multiple networks running on a single switch? I just said VLAN because of the default VLAN..

                                          The entire concepts of subnetting and VLANing are to run multiple networks on a single switch 🙂 Nothing wrong with that in the least. Switches are expected to run multiple networks, that's just normal and exactly what they are meant to do.

                                          So if I had 20 different /24 networks running on the same switch stack (for whatever reason), and all of them are on VLAN 0 (I'm just saying VLAN here because everything will at least be on the default VLAN), then there will be no traffic issues whatsoever?

                                          No, no issues, not from traffic. Things like DHCP wouldn't work, obviously.

                                          dave247D 1 Reply Last reply Reply Quote 0
                                          • dave247D
                                            dave247 @scottalanmiller
                                            last edited by

                                            @scottalanmiller said in VLAN confusion:

                                            @dave247 said in VLAN confusion:

                                            @scottalanmiller said in VLAN confusion:

                                            @dave247 said in VLAN confusion:

                                            Sorry, let me change the term "VLAN" to "switch". Is it best practice to avoid having multiple networks running on a single switch? I just said VLAN because of the default VLAN..

                                            The entire concepts of subnetting and VLANing are to run multiple networks on a single switch 🙂 Nothing wrong with that in the least. Switches are expected to run multiple networks, that's just normal and exactly what they are meant to do.

                                            So if I had 20 different /24 networks running on the same switch stack (for whatever reason), and all of them are on VLAN 0 (I'm just saying VLAN here because everything will at least be on the default VLAN), then there will be no traffic issues whatsoever?

                                            No, no issues, not from traffic. Things like DHCP wouldn't work, obviously.

                                            MY MIND IS BLOWN

                                            scottalanmillerS 1 Reply Last reply Reply Quote 1
                                            • 1
                                            • 2
                                            • 5
                                            • 6
                                            • 7
                                            • 8
                                            • 9
                                            • 10
                                            • 7 / 10
                                            • First post
                                              Last post