+ Post New Thread
Page 1 of 2 12 LastLast
Results 1 to 15 of 21
Wireless Networks Thread, IP addressing scheme feedback wanted in Technical; Hi, My head office is looking at changing our IP address scheme to suit a proposed WAN rollout next year. ...
  1. #1
    actech's Avatar
    Join Date
    Mar 2008
    Location
    Australia
    Posts
    198
    Thank Post
    50
    Thanked 20 Times in 17 Posts
    Rep Power
    17

    Question IP addressing scheme feedback wanted

    Hi,

    My head office is looking at changing our IP address scheme to suit a proposed WAN rollout next year. I have attached a spreadsheet with the proposed scheme and I would appreciate any feedback.

    Thanks
    Rowan
    Attached Files Attached Files

  2. #2

    featured_spectre's Avatar
    Join Date
    Nov 2008
    Posts
    12,503
    Thank Post
    1,684
    Thanked 2,054 Times in 1,491 Posts
    Blog Entries
    2
    Rep Power
    464
    Ok from what I can see, it looks generally sound, but why not allow for scope?

    I would do this (example IP scheme)

    Routers and switches - 10.1.1.3 - 10.1.1.250
    Servers - 10.1.2.3 - 10.1.2.250
    Wireless - 10.1.3.3 - 10.1.3.250
    Printers - 10.1.4.3 - 10.1.4.250
    Special Workstations - 10.1.5.3 - 10.1.5.250
    IP telephone system - 10.1.6.3-10.1.7.250
    Misc - 10.1.8.3 - 10.1.8.250

    This allows for massive scope, will all work on your subnet range (if i am not mistaken) and will allow you to expand or use up other IP addresses if the need arises.


    Reason 10.x.x.1, 10.x.x.2, 10.x.x.251, 10.x.x.252, 10.x.x.253, 10.x.x.254 are not used, is you never know if you need a few over lapping IP addresses.

  3. Thanks to featured_spectre from:

    actech (14th September 2010)

  4. #3
    rosswilson's Avatar
    Join Date
    Feb 2008
    Location
    Cheshire
    Posts
    47
    Thank Post
    15
    Thanked 10 Times in 10 Posts
    Rep Power
    16
    Quote Originally Posted by nephilim View Post
    Reason 10.x.x.1, 10.x.x.2, 10.x.x.251, 10.x.x.252, 10.x.x.253, 10.x.x.254 are not used, is you never know if you need a few over lapping IP addresses.
    Nephilim, could you expand upon this a little please? I am in a similar position to actech and i'm intreiged by your mention of "over lapping IP addresses". What do you mean?

    Sorry for slightly hijacking your thread actech, but hopefully my question is something that crossed your mind too

    Many thanks,

    Ross

  5. #4


    Join Date
    Jan 2006
    Posts
    8,202
    Thank Post
    442
    Thanked 1,033 Times in 813 Posts
    Rep Power
    341
    Sorry, this makes no sense to me
    How do you come up with a 32bit subnet mask?

    Routers and switches - 10.1.1.3 - 10.1.1.250
    Servers - 10.1.2.3 - 10.1.2.250
    Wireless - 10.1.3.3 - 10.1.3.250
    Printers - 10.1.4.3 - 10.1.4.250
    Special Workstations - 10.1.5.3 - 10.1.5.250
    IP telephone system - 10.1.6.3-10.1.7.250
    Misc - 10.1.8.3 - 10.1.8.250
    try using a subnet calculator.
    Online IP Subnet Calculator

    Best to lump printers and severs into the same vlan, and separate workstations geographically.

  6. #5

    featured_spectre's Avatar
    Join Date
    Nov 2008
    Posts
    12,503
    Thank Post
    1,684
    Thanked 2,054 Times in 1,491 Posts
    Blog Entries
    2
    Rep Power
    464
    cybernerd, I day say, if i'm not mistaken, i am happy to say that i have been proven wrong.

  7. #6


    Join Date
    Jan 2006
    Posts
    8,202
    Thank Post
    442
    Thanked 1,033 Times in 813 Posts
    Rep Power
    341
    I uploaded our network VLAN topology.

    The 'B' class network for servers is historical. not got around to re-addressing them all yet!
    Attached Files Attached Files

  8. Thanks to CyberNerd from:

    actech (14th September 2010)

  9. #7
    mjs_mjs's Avatar
    Join Date
    Jan 2009
    Location
    bexleyheath, london
    Posts
    1,021
    Thank Post
    37
    Thanked 111 Times in 95 Posts
    Rep Power
    38
    i'm likeing the student vlan id 666, little devils.

  10. Thanks to mjs_mjs from:

    CyberNerd (14th September 2010)

  11. #8
    mjs_mjs's Avatar
    Join Date
    Jan 2009
    Location
    bexleyheath, london
    Posts
    1,021
    Thank Post
    37
    Thanked 111 Times in 95 Posts
    Rep Power
    38
    our network is smaller than most of yours and we have 1022 possible addresses, all on one subnet, about 500 actual machines - what improvements could i make to speed things up? (we just have installed a hp540something vz switch if that helps)

  12. #9
    actech's Avatar
    Join Date
    Mar 2008
    Location
    Australia
    Posts
    198
    Thank Post
    50
    Thanked 20 Times in 17 Posts
    Rep Power
    17
    Thanks for the feedback. I understand what you mean about scope nephilim, but this is the result of talking to all the techs in our diocese. The chances of anyone filling all of the ranges set aside for different functions is minimal (it went on the highest current numbers +75%). The chances of some schools having over 400 pc's is the more likely scenario at this stage.

  13. #10


    Join Date
    Jan 2006
    Posts
    8,202
    Thank Post
    442
    Thanked 1,033 Times in 813 Posts
    Rep Power
    341
    Quote Originally Posted by mjs_mjs View Post
    our network is smaller than most of yours and we have 1022 possible addresses, all on one subnet, about 500 actual machines - what improvements could i make to speed things up? (we just have installed a hp540something vz switch if that helps)
    We only have circa 700 machines - but created much larger vlans to allow for scalability.
    Consider 500 machines in one network - every machine will send broadcast packets (arp,dhcp etc) to every other machine on the network, which they will need to process to see if the packets are for them. Creating VLAN's of say 100 machines in each network will cut this traffic by 1/5th and provide security between the different networks. HP/3com have very good documentation on vlans, it would mean setting up the core switch as a layer 3 router, tagging the ports attached to the edge switches with a vlan id, setting up the edge switches to be in those vlans and setting up appropriate dhcp scopes.

  14. #11
    mjs_mjs's Avatar
    Join Date
    Jan 2009
    Location
    bexleyheath, london
    Posts
    1,021
    Thank Post
    37
    Thanked 111 Times in 95 Posts
    Rep Power
    38
    ahh, so it would mean that broadcast stuff like WOL couldn't be sent accross the network?

  15. #12


    Join Date
    Jan 2006
    Posts
    8,202
    Thank Post
    442
    Thanked 1,033 Times in 813 Posts
    Rep Power
    341
    not normally, but some switches can be configured for directed broadcast of WOL traffic

  16. #13

    Join Date
    Sep 2010
    Location
    Southern California
    Posts
    16
    Thank Post
    0
    Thanked 0 Times in 0 Posts
    Rep Power
    0

    Recommendations

    First recommendation, get away from the 10.x.x.x network. Unless you see yourself ever coming close to using 16,000,000 addresses or need an obscene amount of networks, go with a Class B (172.16.0.0 - 172.31.255.255). Most 10.x.x.x networks never even scratch 1% of the IP address allocation. People use that network as the lazy way to never run out of addresses, rather than taking time to plan a logical network(s). A 10.x.x.x network can take days to scan if you ever feel like discovering/auditing your network resources. Additionally, I see A LOT of organizations go with a the 10.x.x.x networks, so if your company/school connects or merges with another organization/network which coincidentally runs on a 10.x.x.x, you will run into conflicts/routing issues.

    Second, broadcast domains used to be a big issue back in the day because every broadcast needs to get processed by the CPU. With today's powerful CPUs it is hardly an issue, but that is still no reason not to run a clean network. I would recommend no larger than 512 nodes per network segment. So VLANs are your friends.

    I agree with your allocations beginning with Static IPs first then Dynamic IPs.
    Personally, I would setup ranges for your devices, for example .20-.49 for switches, .50-.69 for servers, .70-.99 for wireless. It makes IDing IPs/devices easier rather than having to reference a list because the device type changes at a random number.
    I'm also a little surprised you didn't include any spares for your "General Purpose Servers".

    Lastly, don't you mean the IP will being using a /24 mask rather than /32? Unless you're using the mask to specifically identify the IP address itself in the list.

    Just my 2 cents.

    Also, if you want to fly me out to Australia I'd be happy to help you with the project.
    Last edited by cbrasga; 17th September 2010 at 07:46 AM.

  17. #14
    mjs_mjs's Avatar
    Join Date
    Jan 2009
    Location
    bexleyheath, london
    Posts
    1,021
    Thank Post
    37
    Thanked 111 Times in 95 Posts
    Rep Power
    38
    Quote Originally Posted by CyberNerd View Post
    not normally, but some switches can be configured for directed broadcast of WOL traffic
    bummer - alot of our software (rm and tutor) use broadcasting....

  18. #15
    rosswilson's Avatar
    Join Date
    Feb 2008
    Location
    Cheshire
    Posts
    47
    Thank Post
    15
    Thanked 10 Times in 10 Posts
    Rep Power
    16
    Quote Originally Posted by cbrasga View Post
    First recommendation, get away from the 10.x.x.x network. Unless you see yourself ever coming close to using 16,000,000 addresses or need an obscene amount of networks ...
    I think he is proposing to use the a /21 network mask for his subnets. It just so happens that he has chosen to use the 10.x.x.x IP address format. So the quote above is not strictly true; yes 10.x.x.x subnets do exist and they commonly have a /8 subnet mask, but in this case the OP has chosen differently.

    A /21 subnet mask would allow up to 2046 devices on one subnet. However, I do agree with you that it remains good practice to keep to the 512 devices per subnet rule.

    Ross



SHARE:
+ Post New Thread
Page 1 of 2 12 LastLast

Similar Threads

  1. New school website - Feedback wanted!
    By Crispin in forum Web Development
    Replies: 14
    Last Post: 22nd October 2010, 05:59 PM
  2. Changing IP Addressing Sheme companywide in AD Integrated DNS
    By albertwt in forum Windows Server 2000/2003
    Replies: 0
    Last Post: 3rd June 2009, 11:18 AM
  3. ISA server 2006 external IP addressing
    By nicholab in forum Windows
    Replies: 1
    Last Post: 12th March 2009, 05:01 PM
  4. CfP scheme
    By Outpost in forum Hardware
    Replies: 1
    Last Post: 17th November 2008, 08:14 PM
  5. Replies: 2
    Last Post: 26th March 2007, 08:11 PM

Thread Information

Users Browsing this Thread

There are currently 1 users browsing this thread. (0 members and 1 guests)

Posting Permissions

  • You may not post new threads
  • You may not post replies
  • You may not post attachments
  • You may not edit your posts
  •