Difference between revisions of "Subnets and VLANS"
From DCWiki
(Updated with latest version from itdocs) |
(Updated from itdocs) |
||
(One intermediate revision by one other user not shown) | |||
Line 18: | Line 18: | ||
|16||Xirrus_Wireless||10.40.16.0/22||Xirrus AP's||172.20.160.1,10.40.16.1||6509||Cole B-18||[[Bellona]] & [[Victoria]] | |16||Xirrus_Wireless||10.40.16.0/22||Xirrus AP's||172.20.160.1,10.40.16.1||6509||Cole B-18||[[Bellona]] & [[Victoria]] | ||
|- | |- | ||
− | |20|| | + | |20||Switches, printers, a few stragglers||172.20.0.0/16||legacy internal stuff from before we had VLANs. Cisco (wired and wireless) management VLAN. Printers still live here (soon to move to VLAN 7), at 172.20.6.x. All of this stuff is routed in the core 6509, as opposed to at our layer 3 switches.||172.20.160.1, 172.20.0.254, 172.20.64.254, 172.20.160.254||6509||Cole B-18|| [[Bellona]] & [[Victoria]] |
|- | |- | ||
|n/a||n/a||64.254.160.0/21||UMass ASA Translation addresses. 64.254.163.204 - 254 are reserved for static translations. PAT (overflow addresses are 64.254.163.201 and 64.254.163.202.||n/a||n/a||n/a||n/a | |n/a||n/a||64.254.160.0/21||UMass ASA Translation addresses. 64.254.163.204 - 254 are reserved for static translations. PAT (overflow addresses are 64.254.163.201 and 64.254.163.202.||n/a||n/a||n/a||n/a | ||
Line 76: | Line 76: | ||
|114||Misc_Facstaff||172.25.65.0/24||Merrill, RCC, and Dakin (and possibly others) Faculty and Staff||172.20.160.1,172.25.65.1||6509||Cole B-18||[[Bellona]] & [[Victoria]] | |114||Misc_Facstaff||172.25.65.0/24||Merrill, RCC, and Dakin (and possibly others) Faculty and Staff||172.20.160.1,172.25.65.1||6509||Cole B-18||[[Bellona]] & [[Victoria]] | ||
|- | |- | ||
− | |115||VPN||172.25.66.0/24||Addresses assigned to people using the VPN||172.20. | + | |115||VPN||172.25.66.0/24||Addresses assigned to people using the VPN||172.20.160.1,172.25.66.1||6509||Cole B-18||charon (VPN concentrator) |
|- | |- | ||
|116||OneCard||172.25.67.0/24||iStars, alarms and whatnot - Adam's stuff||172.20.160.1,172.25.67.1||6509||Cole B-18||[[Bellona]] & [[Victoria]] where applicable - mostly static | |116||OneCard||172.25.67.0/24||iStars, alarms and whatnot - Adam's stuff||172.20.160.1,172.25.67.1||6509||Cole B-18||[[Bellona]] & [[Victoria]] where applicable - mostly static | ||
Line 88: | Line 88: | ||
|120||Labs||172.30.32.0/22||Public labs||172.20.162.6, 172.30.32.1||3560||Library Switch - closet in Ground floor stairwell||[[Bellona]] & [[Victoria]] | |120||Labs||172.30.32.0/22||Public labs||172.20.162.6, 172.30.32.1||3560||Library Switch - closet in Ground floor stairwell||[[Bellona]] & [[Victoria]] | ||
|- | |- | ||
− | |121||Arts_Village||172.25.192.0/22||Arts Village FacStaff wired||172.20.162. | + | |121||Arts_Village||172.25.192.0/22||Arts Village FacStaff wired||172.20.162.5, 172.25.192.1||WS-C3560E-48PD||ASH 2nd Floor Mechanical Room||[[Bellona]] & [[Victoria]] |
|- | |- | ||
− | |122||ASH_Media||172.25.136.0/22||ASH gigabit media VLAN||172.20.162. | + | |122||ASH_Media||172.25.136.0/22||ASH gigabit media VLAN||172.20.162.5, 172.25.136.1||WS-C3560E-48PD||ASH 2nd Floor Mechanical Room||[[Bellona]] & [[Victoria]] |
|- | |- | ||
|123||Lib_Media_Basement||172.25.140.0/22||Library Media Basement and Liebling VLAN||172.20.160.1, 172.25.140.1||6509||Cole B-18||[[Bellona]] & [[Victoria]] | |123||Lib_Media_Basement||172.25.140.0/22||Library Media Basement and Liebling VLAN||172.20.160.1, 172.25.140.1||6509||Cole B-18||[[Bellona]] & [[Victoria]] | ||
Line 102: | Line 102: | ||
|130||Voice||172.25.32.0/19||Mitel VOIP VLAN||172.20.160.1, 172.25.32.1||6509||Core - Cole B-18||Mitel 3300 | |130||Voice||172.25.32.0/19||Mitel VOIP VLAN||172.20.160.1, 172.25.32.1||6509||Core - Cole B-18||Mitel 3300 | ||
|- | |- | ||
− | |131||Outlying||172.25.216.0/22||Physical Plant, Children's Center, Multisport, Weneczek, Kerminsky||172.20. | + | |131||Outlying||172.25.216.0/22||Physical Plant, Children's Center, Multisport, Weneczek, Kerminsky||172.20.162.77, 172.25.216.1||WS-C3560-24PS||water heater closet in Children's Center||[[Bellona]] & [[Victoria]] |
|- | |- | ||
|132||Test_VLAN||172.30.240.0/21||Josiah's sandbox VLAN||172.20.162.5, 172.30.240.1||WS-C3560E-24PS-E||ASH 2nd Floor Mechanical room||netreg or [[Bellona]] & [[Victoria]], depending on current router helper addresses | |132||Test_VLAN||172.30.240.0/21||Josiah's sandbox VLAN||172.20.162.5, 172.30.240.1||WS-C3560E-24PS-E||ASH 2nd Floor Mechanical room||netreg or [[Bellona]] & [[Victoria]], depending on current router helper addresses | ||
|- | |- | ||
− | |133||Blair_Hall||172.25.212.0/22||Blair, Red Barn, Admissions, HR, etc||172.20.162. | + | |133||Blair_Hall||172.25.212.0/22||Blair, Red Barn, Admissions, HR, etc||172.20.162.57, 172.25.212.1||WS-C3560E-12D||Blair Hall Server Room||[[Bellona]] & [[Victoria]] |
|- | |- | ||
|134||Wallace||172.30.80.0/20, 10.30.80.0/20||netreg'ed wireless||Merrill - 172.20.160.119, 172.30.80.1||3560E-12D||Merrill G-6||netreg | |134||Wallace||172.30.80.0/20, 10.30.80.0/20||netreg'ed wireless||Merrill - 172.20.160.119, 172.30.80.1||3560E-12D||Merrill G-6||netreg | ||
Line 115: | Line 115: | ||
|- | |- | ||
|136||PS_Alarms||n/a||Alarms over to Mt. Holyoke||n/a||n/a||n/a||n/a | |136||PS_Alarms||n/a||Alarms over to Mt. Holyoke||n/a||n/a||n/a||n/a | ||
+ | |- | ||
+ | |1731||ASA_DuoVPN||64.254.173.0/25||VLAN just so the ASA VPN Concentrator and clients can have a network all to themselves||172.20.160.1, 64.254.173.1||6509||Cole B-18||None | ||
|- | |- | ||
|174||VCL_External||64.254.174.0/24||External VCL VLAN - there's an internal one too... for what?||172.20.160.1, 64.254.174.254||6509||Cole B-18||The master VCL Machine or something - Chris? | |174||VCL_External||64.254.174.0/24||External VCL VLAN - there's an internal one too... for what?||172.20.160.1, 64.254.174.254||6509||Cole B-18||The master VCL Machine or something - Chris? | ||
|- | |- | ||
|175||Student_Servers||64.254.175.0/24||Student Servers||172.20.160.1, 64.254.175.254||6509||Cole B-18||[[Eileithyia]] | |175||Student_Servers||64.254.175.0/24||Student Servers||172.20.160.1, 64.254.175.254||6509||Cole B-18||[[Eileithyia]] | ||
+ | |- | ||
+ | |188||Academic_Servers||192.101.188.0/24||Academic Servers||172.20.160.1, 192.101.188.254||6509||Cole B-18||None | ||
|- | |- | ||
|203||eduroam||172.31.120.0/21||worldwide federated edu 802.1x-authenticated wireless||172.20.160.119, 172.20.160.47, 172.31.120.1||3560E||Merrill and Film/Photo (HSRP)||[[Bellona]] & [[Victoria]] | |203||eduroam||172.31.120.0/21||worldwide federated edu 802.1x-authenticated wireless||172.20.160.119, 172.20.160.47, 172.31.120.1||3560E||Merrill and Film/Photo (HSRP)||[[Bellona]] & [[Victoria]] |
Latest revision as of 07:43, 22 June 2017
Our network is split up into a number of VLANs, which roughly correspond to subnets, though this is not entirely a one-to-one relationship, as VLAN 20, the "old" VLAN, has a large number of subnets in it - basically anything we haven't moved over to the new model yet. See Theory of Operation for more info on the larger plan here. This page aims to document what VLANs we have, what subnets are in them, where they live and what their function is.
VLAN ID | VLAN name | subnet(s) | Comments/Description | Router device addresses: management, gateway | Router Device Type | Router Physical Location | DHCP Server |
---|---|---|---|---|---|---|---|
8 | Aerohive_Wireless | 10.40.8.0/22 | Aerohive AP's | 172.20.160.1,10.40.8.1 | 6509 | Cole B-18 | Bellona & Victoria |
10 | H3C_Wireless | 10.40.1.0/24 | H3C AP's | 172.20.160.1, 10.40.1.254 | 6509 | Cole B-18 | Bellona & Victoria |
12 | Ubiquiti_Wireless | 10.40.12.0/22 | Ubiquiti Unifi AP's | 172.20.160.1,10.40.12.1 | 6509 | Cole B-18 | Bellona & Victoria |
16 | Xirrus_Wireless | 10.40.16.0/22 | Xirrus AP's | 172.20.160.1,10.40.16.1 | 6509 | Cole B-18 | Bellona & Victoria |
20 | Switches, printers, a few stragglers | 172.20.0.0/16 | legacy internal stuff from before we had VLANs. Cisco (wired and wireless) management VLAN. Printers still live here (soon to move to VLAN 7), at 172.20.6.x. All of this stuff is routed in the core 6509, as opposed to at our layer 3 switches. | 172.20.160.1, 172.20.0.254, 172.20.64.254, 172.20.160.254 | 6509 | Cole B-18 | Bellona & Victoria |
n/a | n/a | 64.254.160.0/21 | UMass ASA Translation addresses. 64.254.163.204 - 254 are reserved for static translations. PAT (overflow addresses are 64.254.163.201 and 64.254.163.202. | n/a | n/a | n/a | n/a |
n/a | n/a | 64.254.172.2-64.254.172.100 | vpn2 addresses | n/a | n/a | n/a | n/a |
n/a | n/a | 66.251.24.0/22 | Paetec ASA Translation addresses block 1. Actually starts at 66.251.24.10 - below that is management addresses, etc. PAT (overflow) address is 66.251.24.9 | n/a | n/a | n/a | n/a |
n/a | n/a | 74.8.88.0/22 | Paetec ASA Translation addresses block 2. PAT (overflow) address is 74.88.88.1 | n/a | n/a | n/a | n/a |
33 | IT Servers | 192.33.12.0/24 | IT servers | 172.20.160.1, 192.33.12.254 | 6509 | Cole B-18 | none |
40 | Infrastructure | 10.40.0.0/24 | VM Hosts, Network Storage, UPS, etc. | 172.20.160.1, 10.40.0.254 | 6509 | Cole B-18 | none |
41 | SAN Fabric | 10.41.0.0/16 | VMHost to SAN connectivity | None | - | Cole B-18, LO G-8 | none |
42 | Datatel Idiocy | 10.42.0.0/16 | Datatel "Secure" FTP Transport | None | - | ||
43 | VCL Management | 10.43.0.0/16 | Virtual Computing Lab Backend Network | None | - | Eileithyia | |
44 | VCL Infrastructure | 192.168.100.0/24 | VCL Infrastructure VLAN shared with Amherst College via switch at 148.85.178.115 | ||||
45 | CEPH OSD Fabric | 10.45.0.0/16 | Ceph | None | |||
46 | OpenStack | 10.46.0.0/16 | OpenStack | None | |||
47 | ElasticSearch | 10.47.0.0/16 | non-routed elasticsearch cluster network | None | |||
50 | Eric Carle Wired | 192.168.0.0/16 | Eric Carle Museum wired data network, routed out through our data network | 172.20.160.82, 192.168.0.1 | 3560G | Eric Carle Museum basement | Bellona & Victoria |
51 | Eric Carle Private | n/a | Eric Carle Museum PCI-compliant data network, routed out through their own Comcast modem and a firewall | n/a | n/a | n/a | n/a |
100 | Networking | 172.25.160.0/21 | "networking" vlan. I think all this has in it right now is netreg and netvmhosts... not really sure what else it was intended to be for. | 172.20.160.1, 172.25.160.1 | 6509 | Cole B-18 | none |
102 | Public_Wireless | 172.30.64.0/20 | hampguest - through UMass, firewall rules in porter/paetec firewall on outgoing to limit ports available. Move to Windstream link in the summer for summer programs in dorms, UMass during school year | 172.20.160.47, 172.20.160.119 (HSRP), 172.30.64.1 | 3560E's (HSRP) | Film/Merrill | Bellona & Victoria |
104 | Student_VPN | 172.30.96.0/21 | Student VPN Addresses | 172.20.160.1,172.30.96.1 | 6509 | Cole B-18 | hecate (student VPN concentrator) |
105 | Dakin | 172.30.136.0/21, 10.30.136.0/21 | wired subnet - student dorms. The 10.0's are unregistered users, same below. | 172.20.160.132, 172.30.136.1 | 3560E-12D | Dakin G-21 | minos |
106 | Merrill | 172.30.144.0/21, 10.30.144.0/21 | see above | 172.20.160.119, 172.30.144.1 | 3560E-12D | Merrill G-6 | minos |
107 | Prescott | 172.30.152.0/21, 10.30.152.0/21 | see above | 172.20.161.50, 172.30.152.1 | 3560E-12D | mech room in front of 84 | minos |
108 | Greenwich | 172.30.160.0/21, 10.30.160.0/21 | see above | 172.20.161.20, 172.30.160.1 | 3560E-12D | Basement of Donut 3 | minos |
109 | Enfield | 172.30.168.0/21, 10.30.168.0/21 | see above | 172.20.161.3, 172.30.168.1 | 3560E-12SD | HVAC room near tennis courts, next to the laundry room, by the Women's Center | minos |
110 | Library | 172.25.208.0/22 | Library wired facstaff | 172.20.162.6, 172.25.162.1 | 3560E-48PD | Closet in Ground floor stairwell | Bellona & Victoria |
111 | Cole | 172.25.204.0/22 | Cole Science Center wired facstaff | 172.20.162.15, 172.25.204.1 | 3560E-48PD | Room with sliding door behind Jeff Schmittlein's Office | Bellona & Victoria |
112 | FPH | 172.25.200.0/22 | Franklin Patterson Hall wired facstaff | 172.20.162.51, 172.25.200.1 | WS-C3560-24TS | Ground Floor closet immediately on right inside office inside back door facing the circle | Bellona & Victoria |
113 | Public Safety | 172.25.64.0/24 | Public Safety officer computers, etc | 172.20.162.6,172.25.64.1 | 3560 | Closet in Ground floor stairwell | Bellona & Victoria |
114 | Misc_Facstaff | 172.25.65.0/24 | Merrill, RCC, and Dakin (and possibly others) Faculty and Staff | 172.20.160.1,172.25.65.1 | 6509 | Cole B-18 | Bellona & Victoria |
115 | VPN | 172.25.66.0/24 | Addresses assigned to people using the VPN | 172.20.160.1,172.25.66.1 | 6509 | Cole B-18 | charon (VPN concentrator) |
116 | OneCard | 172.25.67.0/24 | iStars, alarms and whatnot - Adam's stuff | 172.20.160.1,172.25.67.1 | 6509 | Cole B-18 | Bellona & Victoria where applicable - mostly static |
117 | Vendors | 172.25.68.0/22 | Third-party vendors | 172.20.160.1,172.25.68.1 | 6509 | Cole B-18 | Bellona & Victoria |
118 | HVAC | 172.25.72.0/22 | HVAC: 72.x is AutoMatrix ( vmhost29 ), 73.x is Automated Logic/Yankee Tech ( WebCtrl ) | 172.20.160.1,172.25.72.1 | 6509 | Cole B-18 | none - all static so far |
119 | Bon_Appetit_POS | n/a | Private VLAN for Bon Appetit's private PCI-compliant Point of Sale network with its own router | n/a | theirs | TBD | theirs |
120 | Labs | 172.30.32.0/22 | Public labs | 172.20.162.6, 172.30.32.1 | 3560 | Library Switch - closet in Ground floor stairwell | Bellona & Victoria |
121 | Arts_Village | 172.25.192.0/22 | Arts Village FacStaff wired | 172.20.162.5, 172.25.192.1 | WS-C3560E-48PD | ASH 2nd Floor Mechanical Room | Bellona & Victoria |
122 | ASH_Media | 172.25.136.0/22 | ASH gigabit media VLAN | 172.20.162.5, 172.25.136.1 | WS-C3560E-48PD | ASH 2nd Floor Mechanical Room | Bellona & Victoria |
123 | Lib_Media_Basement | 172.25.140.0/22 | Library Media Basement and Liebling VLAN | 172.20.160.1, 172.25.140.1 | 6509 | Cole B-18 | Bellona & Victoria |
124 | EDH | 172.25.220.0/22 | EDH and Writing Center | 172.20.162.12, 172.25.220.1 | 3560E-48PD | EDH Mech Closet by front office | Bellona & Victoria |
125 | Kern | 172.25.144.0/22 | Kern Center | 172.20.160.88, 172.25.144.1 | WS-C3560E-48PD-SF | Kern Center Basement | Bellona & Victoria |
126 | Lemelson | 172.25.148.0/22 | Lemelson and Art Barn | 172.20.160.78, 172.25.148.1 | WS-C3560-24PS-E | Lemelson mech closet | Bellona & Victoria |
130 | Voice | 172.25.32.0/19 | Mitel VOIP VLAN | 172.20.160.1, 172.25.32.1 | 6509 | Core - Cole B-18 | Mitel 3300 |
131 | Outlying | 172.25.216.0/22 | Physical Plant, Children's Center, Multisport, Weneczek, Kerminsky | 172.20.162.77, 172.25.216.1 | WS-C3560-24PS | water heater closet in Children's Center | Bellona & Victoria |
132 | Test_VLAN | 172.30.240.0/21 | Josiah's sandbox VLAN | 172.20.162.5, 172.30.240.1 | WS-C3560E-24PS-E | ASH 2nd Floor Mechanical room | netreg or Bellona & Victoria, depending on current router helper addresses |
133 | Blair_Hall | 172.25.212.0/22 | Blair, Red Barn, Admissions, HR, etc | 172.20.162.57, 172.25.212.1 | WS-C3560E-12D | Blair Hall Server Room | Bellona & Victoria |
134 | Wallace | 172.30.80.0/20, 10.30.80.0/20 | netreg'ed wireless | Merrill - 172.20.160.119, 172.30.80.1 | 3560E-12D | Merrill G-6 | netreg |
134 | Wallace | 172.26.0.0/20, 10.26.0.0/20 | Facstaff Wireless | 172.20.160.119, 172.20.160.47,172.26.0.1,10.26.0.1 | 3560E | Merrill and Liebling (HSRP) | pasiphae |
135 | PS_Radio | n/a | Radios over to Mt. Holyoke - not routed here | n/a | n/a | n/a | n/a |
136 | PS_Alarms | n/a | Alarms over to Mt. Holyoke | n/a | n/a | n/a | n/a |
1731 | ASA_DuoVPN | 64.254.173.0/25 | VLAN just so the ASA VPN Concentrator and clients can have a network all to themselves | 172.20.160.1, 64.254.173.1 | 6509 | Cole B-18 | None |
174 | VCL_External | 64.254.174.0/24 | External VCL VLAN - there's an internal one too... for what? | 172.20.160.1, 64.254.174.254 | 6509 | Cole B-18 | The master VCL Machine or something - Chris? |
175 | Student_Servers | 64.254.175.0/24 | Student Servers | 172.20.160.1, 64.254.175.254 | 6509 | Cole B-18 | Eileithyia |
188 | Academic_Servers | 192.101.188.0/24 | Academic Servers | 172.20.160.1, 192.101.188.254 | 6509 | Cole B-18 | None |
203 | eduroam | 172.31.120.0/21 | worldwide federated edu 802.1x-authenticated wireless | 172.20.160.119, 172.20.160.47, 172.31.120.1 | 3560E | Merrill and Film/Photo (HSRP) | Bellona & Victoria |
204 | Gromit | 172.31.128.0/21, 10.31.128.0/21 | wireless subnet - academic spaces, any Hampshire community member has access. The 10.0's are unregistered users | 172.20.160.119, 172.20.160.47, 172.31.128.1 | 3560E | Merrill, Film/Photo (HSRP) | minos |
205 | Dakin_Wireless | 172.31.136.0/21, 10.31.136.0/21 | wireless subnet - student dorms. The 10.0's are unregistered users, same below. | 172.20.160.132, 172.31.136.1 | 3560E-12D | Dakin G-21 | minos |
206 | Merrill Wireless | 172.31.144.0/21, 10.31.144.0/21 | see above | 172.20.160.119, 172.31.144.1 | 3560E-12D | Merrill G-6 | minos |
207 | Prescott Wireless | 172.31.152.0/21, 10.31.152.0/21 | see above | 172.20.161.50, 172.31.152.1 | 3560E-12D | mech room in front of 84 | minos |
208 | Greenwich Wireless | 172.31.160.0/21, 10.31.160.0/21 | see above | 172.20.161.20, 172.31.160.1 | 3560E-12D | Basement of Donut 3 | minos |
209 | Enfield Wireless | 172.31.168.0/21, 10.31.168.0/21 | see above | 172.20.161.3, 172.31.168.1 | 3560E-12SD | HVAC room near tennis courts, next to the laundry room, by the Women's Center | minos |