Re: How expand domain subnet?

Thanks for advice on best practice, and correcting my IP terminology.

But if my LAN was going to contain less than 200 Ethernet nodes, would my
proposed scheme work, and with reasonable efficiency?
--
Newell White


"Bill Grant" wrote:

As an aside, that would be a 22-bit subnet, not a 26-bit. A 26-bit
subnet would reduce the number of possible clients to 62 .

192.168.1.0/24 represents the subnet containing the addresses
192.168.1.1 through 192.168.1.254 . The 24-bit subnet mask is 255.255.255.0
.. 192.168.1.0/26 represents the subnet containing the addresses 192.168.1.1
through 192.168.1.62 . The subnet mask is 255.255.255.192 . An address like
192.168.1.73 would be in the next IP subnet of 192.168.1.64/26 .

I agree with Phillip. Stay with /24 . If you want groups of machines
to use different gateways, put them in their own 24-bit subnet and and point
them to a gateway in that subnet. If you want these groups to see each
other, route between the segments/subnets.

"Phillip Windell" <@.> wrote in message
news:uHyB7iC3GHA.3944@xxxxxxxxxxxxxxxxxxxxxxx
No.

Add a new segment. Don't create segments larger than /24. Keep the
maximum number of hosts per segment to 250-300,...which is what the /24
does with 254 hosts. Ethernet begins to loose efficiency with too many
hosts.

If you need more, create a new segment and place a LAN Router between the
segments.


--
Phillip Windell [MCP, MVP, CCNA]
www.wandtv.com


"Newell White" <NewellWhite@xxxxxxxxxxxxxxxxxxxxxxxxx> wrote in message
news:666F68C3-FA7C-4ED1-8D1C-A6F7157DD064@xxxxxxxxxxxxxxxx
We currently have a 192.168.1/24 LAN with 2 fixed-IP Win2K3 DCs (AD
integrated, both WINS and DHCP), a fixed-IP PIX firewall, and dynamic-IP
XP
workstations, and VPN clients (managed by PIX firewall).

I want to expand this to a 192.168.0/26 LAN, and believe the necessary
steps
are:

1) Configure the primary DC TCP/IP to use 255.255.252.0 mask, repeat for
secondary DC.

2) Configure DHCP on each DC to use 192.168.0/26 scope, with
non-overlapping
lease pools (192.168.2/24, 192.168.3/24)

3) Expand inside subnet of PIX firewall to 192.168.0/26

Is it this simple, or have I overlooked something?

Later I wish to add further firewalls, each with own ADSL link. To assign
users to a particular firewall, I assume easiest method is to assign them
to
OUs with different logon scripts, which overwrite the DHCP-assigned
gateway
by means of a 'route add 0.0.0.0' command.

TIA,
--
Newell White





.

Relevant Pages

  • Re: [SLE] DSL problem
    ... If the DSL modem ... assigned a valid external IP by the ISP and then route IPs in your subnet to ... the inet facing NIC in your firewall box or alternately to a hub/switch. ... private IPs on the lan to the internet. ...
    (SuSE)
  • Re: queer dns access problem
    ... on your subnet, but when it comes time to get out of your subnet it ... The following is why I don't think its a firewall issue. ... If by the same segment, you mean within the same 10.1.5.x domain, I ... Pinged the default gateway. ...
    (RedHat)
  • Re: 3 NICs on Windows 2k3
    ... >I currently use Win2k3 as a router providing shared access to an Internet ... > connection from my LAN. ... > (as obviously we are all inside the firewall). ... > another NIC to my server which can be used as a seperate segment for the ...
    (microsoft.public.win2000.ras_routing)
  • Re: LAN RAS setup guide?
    ... due to you having a single subnet LAN that does not already have a LAN ... Router making the Routing Decisions which leave your Firewall as the Default ...
    (microsoft.public.windows.server.networking)
  • Re: How expand domain subnet?
    ... subnet would reduce the number of possible clients to 62. ... Add a new segment. ... and VPN clients (managed by PIX firewall). ...
    (microsoft.public.windows.server.networking)