en:intern:netzwerk:vlan-konzept_rafisa
Unterschiede
Hier werden die Unterschiede zwischen zwei Versionen angezeigt.
en:intern:netzwerk:vlan-konzept_rafisa [2024/05/13 09:57] – Automatic push translation e.rueefli | en:intern:netzwerk:vlan-konzept_rafisa [2024/06/13 13:27] (aktuell) – Automatic push translation e.rueefli | ||
---|---|---|---|
Zeile 2: | Zeile 2: | ||
^ Version | ^ Version | ||
| 0.1 | First draft | 08.08.2019 | | 0.1 | First draft | 08.08.2019 | ||
- | | 0.2 | Additions | + | | 0.2 | Additions |
- | | 1.0 | Review and release | + | | 1.0 | Review and release |
| 2.0 | New version | | 2.0 | New version | ||
- | | 2.1 | Additions | + | | 2.1 | Additions |
- | | 2.2 | Additions | + | | 2.2 | Additions |
- | | 2.3 | Additions | + | | 2.3 | Additions |
- | | 2.4 | Additions | + | | 2.4 | Additions |
- | | 2.5 | Additions | + | | 2.5 | Additions |
- | | 2.6 | Additions | + | | 2.6 | Additions |
| 3.0 | New version | | 3.0 | New version | ||
- | | 3.1 | Additions | + | | 3.1 | Additions |
- | | 3.1 | Additions | + | | 3.1 | Additions |
- | | 3.2 | Additions | + | | 3.2 | Additions |
- | | 3.3 | Additions | + | | 3.3 | Additions |
- | | 3.4 | Additions | + | | 3.4 | Additions |
- | | 4.0 | Additions | + | | 4.0 | Additions |
+ | | 4.1 | VLAN61_DEPL added | 13.05.2024 | ||
===== Subnet concept ==== | ===== Subnet concept ==== | ||
- | All locations receive a /24 network from the larger private network 172.16/12, i.e. 172.16.0.0/ | + | All locations receive a /24 network from the larger private network 172.16/12, i.e. 172.16.0.0/ |
^ Network address range ^ CIDR notation ^ Shortened CIDR notation ^ Number of addresses^ Number of networks according to network class (historical) ^ | ^ Network address range ^ CIDR notation ^ Shortened CIDR notation ^ Number of addresses^ Number of networks according to network class (historical) ^ | ||
Zeile 35: | Zeile 36: | ||
| Vevey | 172.21.0.0/ | | Vevey | 172.21.0.0/ | ||
| Basel | 172.22.0.0/ | | Basel | 172.22.0.0/ | ||
+ | | Hetzner | ||
+ | |||
===== Standard VLAN list ===== | ===== Standard VLAN list ===== | ||
- | ^ VLAN name ^ Abbreviation | + | ^ VLAN name ^ Abbreviation |
- | | ||||||| | + | | |
- | ^ VLAN management | + | ^ VLAN management |
- | | VLAN01 | + | | VLAN01 |
- | | VLAN02 | + | | VLAN02 |
- | ^ VLAN Server | + | ^ VLAN Server |
- | | VLAN10 | + | | VLAN10 |
- | | VLAN11 | + | | VLAN11 |
- | | VLAN13 | + | | VLAN13 |
- | | VLAN14 | + | | VLAN14 |
- | | VLAN15 | + | | VLAN15 |
- | ^ VLAN clients | + | ^ VLAN clients |
- | | VLAN21 | + | | VLAN21 |
- | | VLAN22 | + | | VLAN22 |
- | | VLAN23 | + | | VLAN23 |
- | ^ VLAN VoIP ^ ^ ^ 30 ^ | + | ^ VLAN VoIP ^ |
- | | VLAN30 | + | | VLAN30 |
- | ^ VLAN Printer | + | ^ VLAN Printer |
- | | VLAN40 | + | | VLAN40 |
- | ^ VLAN Lab | + | ^ VLAN Lab |
- | | VLAN50 | + | | VLAN50 |
- | | VLAN51 | + | | VLAN51 |
- | | VLAN52 | + | | VLAN52 |
- | | VLAN53 | + | | VLAN53 |
- | | VLAN54 | + | | VLAN54 |
- | ^ VLAN Special | + | ^ VLAN Special |
- | | VLAN60 | + | | VLAN60 |
- | ^ VLAN DMZ | + | | VLAN61 |
- | | VLAN70 | + | | VLAN62 |
- | | VLAN71 | + | ^ VLAN DMZ |
+ | | VLAN70 | ||
+ | | VLAN71 | ||
===== Basic authorisation matrix ===== | ===== Basic authorisation matrix ===== | ||
The matrix is read row by column (access allowed/not allowed from row to column) | The matrix is read row by column (access allowed/not allowed from row to column) | ||
- | ^ VLAN ^ 01 ^ 10 ^ 11 ^ 13 ^ 14 ^ 15 ^ 21 ^ 22 ^ 23 ^ 30 ^ 40 ^ 5x ^ 60 ^ 70 ^ 71 ^ WAN ^ | + | ^ VLAN ^ 01 ^ 02 ^ 10 ^ 11 ^ 13 ^ 14 ^ 15 ^ 21 ^ 22 ^ 23 ^ 30 ^ 40 ^ 5x ^ 60 ^ 61 ^ 62 ^ 70 ^ 71 ^ WAN ^ |
- | | 01_MGMT | + | | 01_MGMT |
- | | 10_SRVAUTH | + | | 02_VIRTMGMT |
- | | 11_SRVGLOB | + | | 10_SRVAUTH |
- | | 13_SRVPUB | + | | 11_SRVGLOB |
- | | 14_SRVAUSB | + | | 13_SRVPUB |
- | | 15_SRVLERN | + | | 14_SRVAUSB |
- | | 21_CLAUSB | + | | 15_SRVLERN |
- | | 22_CLLERN | + | | 21_CLAUSB |
- | | 23_CLGUEST | + | | 22_CLLERN |
- | | 30_VOIP | + | | 23_CLGUEST |
- | | 40_LP | ❌ | ❌ | ❌ | ✔️ | + | | 30_VOIP |
- | | 5x_LAB0x | + | | 40_LP | ❌ | ❌ | ❌ | ❌ | ✔️ |
- | | 60_SIGN | + | | 5x_LAB0x |
- | | 70_MGMTDMZ | + | | 60_IoT |
- | | 71_SRVDMZ | + | | 61_DEPL |
- | | WAN | ❌ | ❌ | ❌ | ❌ | ❌ | ❌ | ❌ | ❌ | ❌ | ❌ | ❌ | ❌ | ❌ | ❌ | ❌ | ✔️ | + | | 62_SIGN |
+ | | 70_MGMTDMZ | ||
+ | | 71_SRVDMZ | ||
+ | | WAN | ❌ | ❌ | ❌ | ❌ | ❌ | ❌ | ❌ | ❌ | ❌ | ❌ | ❌ | ❌ | ❌ | ❌ | ❌ | ❌ | ❌ | ❌ | ✔️ | ||
+ | | | | ||
en/intern/netzwerk/vlan-konzept_rafisa.1715587020.txt.gz · Zuletzt geändert: 2024/05/13 09:57 von e.rueefli