Jump to content


Limpan

Planning new domain/network

Recommended Posts

Hi, escuse me if you think I'm posting in the wrong section but since I felt it is a pretty basic design question I but it here.

 

I work as a teacher (CS) and as such I am redesigning a small school network, essentially my lab network. My goal is to have the network partitioned with VLANs and to be able to run SCCM12 to manage my computers.

 

There's about 12 PCs in one classroom.

There's about 16 student laptops mostly on wireless but with wired network access in the classroom mentioned above.

There's a few old servers that will run VMWare ESXi and they will be managed by the students.

There's 2 other PCs that are used by our design students and thus have Wacom tablets, PS and SolidWorks in a room nearby that will need internet access, at the least.

There's 3 computers used by me and a colleague. I need to be able to manage everything. My colleague only needs access to his NAS (Drobo).

 

I have one server (Dell PE1950) that will run VMware ESXi.

I have one server (Dell PE860) not able to run virtualization (it will probably be used as a NAS later on).

I have three switches (Linksys SRW224g4) that can be connected (with LACP) so that I get a network with 2GBps backbone and 100MBps to the clients. The wireless network is built with mostly Linksys APs that do 802.11g.

I also have a bunch of NAS (consumer grade, Netgear DuoNAS).

 

My thoughts at the moment:

One VM with pfSense (firewall) that will route traffic between my VLANs.

One VM with Windows Server 2008 R2 as DC (DHCP, DNS, AD) and file server.

One VM with Windows Server 2008 R2 with SCCM12.

 

I split the network with VLANs:

VLAN 1: Management network

VLAN 2: Classroom with 12 PCs + 2 design PCs. DNS + DHCP managed by Windows server.

VLAN 3: Wireless with Laptops. DNS + DHCP managed by Windows server.

VLAN 4: Old servers for student labs. DNS managed by pfSense.

VLAN 5: My colleagues PC and his Drobo. DNS + DHCP managed by pfSense.

VLAN 6: Wireless guest network for students' devices. DNS + DHCP managed by pfSense.

 

At the moment the network is not very advanced nor very well cared for so I have to do something. First step will be to get VMware ESXi up and running with the firewall and DC.

 

Now my questions:

1) Am I way out of my league? Is this a overdesigned, overengineered solution to a problem that shouldn't exist?

 

2a) Should I have fewer VLANs? Maybe I shouldn't separate VLAN 2 and 3?

 

2b) How should I connect my servers to VLAN 2 + 3? Should I give both servers two NICs, one in each VLAN or should only the DC have two NICs? Where should I place my SCCM machine?

 

3) Do I need a second DC? If so, it will be run on the same VMware host as the first DC.

 

4) Anything else I should be aware of? Any other questions I should seek the answers to?

 

Thank's in advance and forgive me for a rather lengthy post.

Share this post


Link to post
Share on other sites

Join the conversation

You can post now and register later. If you have an account, sign in now to post with your account.

Guest
Reply to this topic...

×   Pasted as rich text.   Paste as plain text instead

  Only 75 emoji are allowed.

×   Your link has been automatically embedded.   Display as a link instead

×   Your previous content has been restored.   Clear editor

×   You cannot paste images directly. Upload or insert images from URL.

Loading...


×
×
  • Create New...

Important Information

We have placed cookies on your device to help make this website better. You can adjust your cookie settings, otherwise we'll assume you're okay to continue.