LAN Routing
1748072 Members
5514 Online
108758 Solutions
New Discussion

Re: Where to place a Layer 3 switch on the network and what is the default VLAN and Management VLAN?

 
sierradump
Occasional Advisor

Where to place a Layer 3 switch on the network and what is the default VLAN and Management VLAN?

We are building our new network from scratch and struggling with the implementation of our new 5412zl switch?  The goal is to replace our existing daisy chain of layer 2 switches and single /22 subnet with the 5412zl utilizing routing and 5 VLANs.

 

We are currently stuck at planning the IP Addressing for the network and wondering where the firewall and switch fit into the network?

 

Below is an outline we have come up with, but once we fired up the switch - we got stuck at assigning the switch itself an IP Address?  We know that when we create VLANs we assign the switch an IP Address within each of those networks -- But what about the main switch IP -- the one under the "Quick Setup" menu.  When you first turn the switch on, it is set to "DHCP" we want to assign that a Static IP - but where on the network is best practices to assign it? 

 

And what is the default_VLAN and Management VLAN?  I suppose the default VLAN is VLAN 1, but what exactly does that mean and what's the difference between that and the Management VLAN.  How does it all fit together?

 

 

 

 

VLAN 101:  Servers etc...

Network:   10.10.1.0 /24

Switch IP:  10.10.1.1

 

VLAN 102:  Wired Data
Network:   10.10.2.0 /24
Switch IP:  10.10.2.1

VLAN 103:  Wired Data   
Network:   10.10.3.0 /24
Switch IP:  10.10.3.1

VLAN 116:  VoIP
Network:   10.10.16.0 /24
Switch IP:  10.10.16.1

VLAN 120:  WiFi
Network:   10.10.20.0 /24
Switch IP:  10.10.20.1

 

 

1 REPLY 1
paulgear
Esteemed Contributor

Re: Where to place a Layer 3 switch on the network and what is the default VLAN and Management VLAN?

Best practice is to have a separate VLAN (any number you want is fine) that is used just for the management addresses of the switches and other network equipment.  If you set this to be the management-vlan on the switch, then only hosts on that VLAN will be allowed to manage the device via ssh, web, or SNMP.

Resources:

Hope that helps.

 

Paul

Regards,
Paul