[fw-wiz] need opinion of security experts on network design



Hi All,
I've been asked to give an opinion on a network design in which the
designer did the following to a network on multiple buildings of
multiple floors:
1-each floor is a separate VLAN
2-all switches in the floors are layer 3 switches (no layer 2 switches at all)
3-no VLAN spans multiple swtiches,
4-each of the floors' switches are connected via point-to-point
interconnecting VLAN to a core switch
5-No spanning tree at all in the network as each switch is a different
unique VLAN
6-All VLANs routing are done via OSPF protocol
so i have about 50 VLANs with about 50 interconecting VLANs

can any one gives me his opinion from security point of view on that design?

thank you very much

regards,
Nad
_______________________________________________
firewall-wizards mailing list
firewall-wizards@xxxxxxxxxxxxxxxxxxxxx
https://listserv.icsalabs.com/mailman/listinfo/firewall-wizards



Relevant Pages

  • Re: [fw-wiz] need opinion of security experts on network design
    ... I've been asked to give an opinion on a network design in which the ... 1-each floor is a separate VLAN ... 4-each of the floors' switches are connected via point-to-point ...
    (Firewall-Wizards)
  • Re: [fw-wiz] need opinion of security experts on network design
    ... multiple floors: ... 1-each floor is a separate VLAN ... 4-each of the floors' switches are connected via point-to-point ... 5-No spanning tree at all in the network as each switch is a different ...
    (Firewall-Wizards)
  • More Table Structure Help PLEASE
    ... There are multiple Sites and at each site there are multiple buildings and ... Vlan 2 Bldg1 Machine B ... Vlan9 Bldg2 MachineE ... Then notice how Vlan 20 resides in Bldg1 and Bldg2 ...
    (microsoft.public.access.tablesdbdesign)
  • Re: More Table Structure Help PLEASE
    ... multiple Vlans, but a machine can only belong to one Vlan, in One building ... SiteID - Autonumber ... one Vlan may reside in multiple ...
    (microsoft.public.access.tablesdbdesign)
  • Re: More Table Structure Help PLEASE
    ... It is important to track machines by VLAN and BUILDING. ... Theater VLANS will reside ONLY in the ARTS building. ... multiple Vlans, but a machine can only belong to one Vlan, in One ... VlanID - foreign key from tblVlans ...
    (microsoft.public.access.tablesdbdesign)