Re: Restart: VLAN question...

Bod43@xxxxxxxxxxxxx wrote:

anoop wrote:
Hi,

It looks to me as if you want:-
NO VLANS - well one on each switch
i.e. the default.

On the Domain Controller switch:-
Configure all ports except the Domain Controller as PVE
Configure the Domain Controller port as the uplink

On the Internet switch:-
In order to prevent classes talking to each other
when more than one is pluggeg into the internet
you do the same thing on the Internet switch.
i.e. Firewal port PVE
Nothing else

Done.

Can both the domain controller switch and the internet switch be combined into one SRW2016? Domain range: Port 1-6 with uplink Port 8 and Internet range: Port 9-14 and uplink port 16? Or will this cause unexpected side effects?

This will allow the following.

All PCs/printers will be able to talk to the DC
No PCs will be able to talk to another class
No PCs will be able to talk to the internet
PCs within a class will be able to talk to each other.

Then you can plug in the Internet cable to class
room switches as you require.
Is that what you want?

Yeah, exactly.

However, in another forum one guy wrote:

PVE's are used between like switches to extend your VLAN topology across your switch topology so if you had 2 or more SRW2016s, they can all be combined to make it look like you had on really big SRW2016 that had 32 ports or more that you can then split up into separate VLANs. It does not apply here to the specific scenario that you want a solution to. And per the parameters that you gave, this feature does not work with non-linksys, non-PVE capable switches, so the 2 unmanaged switches fitting into the non-linksys, non-PVE capable catagory will not work.


The only think left though is that you mentioned
"subnets". I think you didn't mean it.

All workstation computers, the domain controller and the router's LAN address are on the same subnet.

I bet you have a central printer:-(((

Yes, several.

A professional level solution to this
would be to put each PC on a different subnet and
change the firewall permissions as required to
permit/deny access.

The classes consist almost always of different students (with different subject choices) so this will be very difficult to manage.

regards geir
.

Relevant Pages

  • RE: Network not accessible!!?
    ... So I would say you have some sort of port mirroring on the ... on the switch lately. ... the internet on either one of the two other PC's (named ...
    (microsoft.public.windowsxp.network_web)
  • Re: Enable / disable internet access in selected classrooms
    ... We have several classrooms networked which need continous access to the domain controller and in addition, internet access only when allowed by the teacher. ... All classrooms which have the blue cable plugged into one of the classroom switch' ports will have internet access, and no access when this blue cable is uplugged. ...
    (comp.security.firewalls)
  • Re: Qos for video Conferencing
    ... I am looking at a NetGear 48 port switch for just ... Will it be a large problem without being able to implement QoS on the ... Mbit T1 to the Internet. ...
    (comp.dcom.sys.cisco)
  • Re: VLAN, switch, router
    ... For this you need Switch with mac-address VLAN assignments. ... I would like to provide two offices with with internet ... On router's port there will be 2 VLANs with different ...
    (comp.dcom.sys.cisco)
  • Configure VLANs on D-Link switch..
    ... We would like to use this switch as one of the LAN distributors to the ... connected to port #15 and an internet connection is connected to port #16. ... The clue is that we need to be able to switch the internet connection to ... ports shal be connected to each other (and to the domain controller on port ...
    (comp.dcom.lans.ethernet)