[c-nsp] Small office sanity check

Jason Berenson jason at pins.net
Tue Oct 12 09:44:54 EDT 2010


  Looks great, but it doesn't list LLDP or PoE as an option.

-Jason

On 10/12/10 9:29 AM, Dave Weis wrote:
> I realize it's not a Cisco device but an Adtran 3448 would fit exactly what you are trying to do.
>
> http://www.adtran.com/web/page/portal/Adtran/product/4200821E2
>
>
>
>> -----Original Message-----
>> From: cisco-nsp-bounces at puck.nether.net
>> [mailto:cisco-nsp-bounces at puck.nether.net] On Behalf Of Jason Berenson
>> Sent: Monday, October 11, 2010 9:43 PM
>> To: cisco-nsp at puck.nether.net
>> Subject: [c-nsp] Small office sanity check
>>
>>    Greetings,
>>
>> I'm trying to come up with a small office router/switch
>> configuration.
>> This would be an office with a DSL or T1 with 4-8 IP phones
>> and the same in computers.  Requirements are as follows:
>>
>> - Covad split PVC voice/data for QoS
>> - LLDP to dynamically assign VLANs to phones and keep
>> computers in VLAN 1
>> - DHCP with options capability to send config server
>> information to phones
>> - PoE that can do between 7W and 15W per port
>> - VRF to split voice/data routing
>> - As cheap as possible
>>
>> Here's what I've come up with so far:
>>
>> - Cisco 1721 with ADSL or T1 module
>> - Cisco 300 seris SRW208P-K9-NA
>>
>> Relevant portion of the 1721 config:
>>
>> ip dhcp pool voice
>>      vrf voice
>>      network 192.168.10.0 255.255.255.0
>>      dns-server 1.1.1.1 2.2.2.2
>>      netbios-node-type h-node
>>      default-router 192.168.10.1
>>      option 66 ascii "config-server"
>>      lease 30
>> !
>> ip vrf voice
>>    rd 2:1
>>    route-target export 2:1
>>    route-target import 2:1
>>
>> interface ATM0
>>    no ip address
>>    no atm ilmi-keepalive
>>    dsl operating-mode auto
>> !
>> interface ATM0.1 point-to-point
>>    ip address 10.3.5.202 255.255.255.252
>>    pvc 0/35
>>     description DATA
>>     encapsulation aal5mux ip
>>    !
>> !
>> interface ATM0.2 point-to-point
>>    ip vrf forwarding voice
>>    ip address x.x.x.x 255.255.255.252
>>    pvc 0/36
>>     description VOICE
>>     encapsulation aal5mux ip
>>    !
>> !
>> interface FastEthernet0
>>    no ip address
>>    speed 100
>>    full-duplex
>>    no cdp enable
>> !
>> interface FastEthernet0.1
>>    encapsulation dot1Q 1 native
>>    ip address y.y.y.y 255.255.255.252
>>    no cdp enable
>> !
>> interface FastEthernet0.120
>>    encapsulation dot1Q 120
>>    ip vrf forwarding voice
>>    ip address 192.168.10.1 255.255.255.0
>>    no cdp enable
>> !
>> ip nat inside source list 101 interface ATM0.2 vrf voice
>> overload ip classless ip route 0.0.0.0 0.0.0.0 10.3.5.201
>> name data ip route vrf voice 0.0.0.0 0.0.0.0 y.y.y.z name
>> voice no ip http server ip http authentication local !
>> !
>> access-list 101 permit ip 192.168.10.0 0.0.0.255 any
>>
>> This should allow for a routed public net on VLAN 1 for their
>> firewall and a NAT'd network on VLAN 120 for the phones.  Any
>> pointers, comments, recommendations are welcome.
>>
>> Thanks,
>> Jason
>>
>> _______________________________________________
>> cisco-nsp mailing list  cisco-nsp at puck.nether.net
>> https://puck.nether.net/mailman/listinfo/cisco-nsp
>> archive at http://puck.nether.net/pipermail/cisco-nsp/


More information about the cisco-nsp mailing list