i have a rather large network spanned across a 25 acre facility that has several buildings, a large warehouse with multiple IDFs (to distribute PoE switching) and several outdoor equipment (wifi/cameras) on light poles. This network is is aggregated using two 1544F switches. the two 1544F switches are port-channeled on ports 27 and 28 using 2 x 2.5Gbps SFPs to provide a 5Gbps backplane and ports 25 and 26 are uplinked to two separate 1544 ethernet switches (so each 1544 switch is connected to both fiber switches to provide uplink redundancy). The LAN consists of several VLANs to segregate traffic for different business entities residing in the premises for both voice and data, guest wireless, security systems, HVAC, handheld barcode scanners etc. all VLANs point to the IP 10.10.xxx.1 as their default gateway
I only have 1 router (Adtran 5305) at the moment that provides internet access over DS3 MPLS (secondary 10Mbps circuit is due in next few months)
I have a design question. I understand that with one router and single internet service my options for L2/L3 resilience are limited but I want to design my network the right way so I am prepared to scale it when the time comes.
Challenge 1. If I configure 10.10.xx.1 addresses on sub-interfaces of Adtran 5305 that will be straight forward but in case if the switch to which the router is connected failed I will have to manually move the router cable from the broken switch to the working switch and it should be fine. downside is that router's inside interface will become very busy doing inter-vlan routing.
Q2 To keep the router's inside interface from being the bottleneck I could make vlan interfaces on one of the switch as 10.10.xxx.1 if that switch failed I will have to manually create the vlan interfaces on 2nd 1544 switch and move the cable across can I avoid this by doing VRRP between the two 1544 switches? (i understand i will still have to physically move the router cable over)
i am open to all ideas/suggestions
network-Rev2.pdf 579.7 K