Hi John, The first question is, how big of an IP range (per site) do you need to establish for each “LOM” (IPMI) subnet. Figure that out first (let’s say you need >= 62 host IPs per site, then I’d go with a /26 mask (i.e. 255.255.255.192) per subnet. Then, if you want to have all the blocks contiguous, I’d take the number of sites (you said 17) times the /26 block size, and allocate the smallest block that fits the IP range (this would be 32 /26’s, which is a /23; if you could get by with only 16 contiguous subnets, then you could use a /24. (anotherwords, supernetting is built on an exponential multiple of the block size.) Then yout route between the subnets.
I’d also map each layer-3 subnet to a layer-2 VLAN (or physical routed segment); if you can’t for some reason do that, you *can* map 2-more IP subnets to a single VLAN, but because of broadcast traffic bandwidth issues, etc., this is frowned upon. (But sometimes due to architecture, you have to do it.) Ping me offline if you’d like further detail... Will From: tech-boun...@lists.lopsa.org [mailto:tech-boun...@lists.lopsa.org] On Behalf Of john boris Sent: Friday, February 20, 2015 1:56 PM To: Lynda Cc: tech@lists.lopsa.org Subject: Re: [lopsa-tech] A question on routing settings Lynda, Yes it is an example. We are 172.31.xx.xx. I was trying to do this and started using 10.10.xx.xx in my example and then saw I had things mismatched. But we are private at 172.31.xx.xx and not infringing on AT&T's network On Fri, Feb 20, 2015 at 1:46 PM, Lynda <shr...@deaddrop.org<mailto:shr...@deaddrop.org>> wrote: On 2/20/2015 10:16 AM, john boris wrote: Here at $WORK I was approached with a problem. Our systems are on a private network 172.xx.xx.xx) and then we have other networks nat'd ay various points. I handle one portion of the entire Network. Each of our sites are on their own set of subnets. The team I am on wants to use a specific set of IPS for the Lights out port on a series of servers that will be on 17 different subnets. Not sure if I am explaining this properly. Example: Site 1 has its own subnet 172.10.10.xx Netmask 255.255.254.0 and its router is 172.10.10.1 which talks via VPN to our central site. For clarity we will say the central site is at 172.10.5.xx with a netmask of 255.255.248.0 This is right where I quit reading. I'm a bit concerned, since 172.10.10.x belongs to AT&T, and is not part of the delegation for "private" use that is within 172.16.0.0 - 172.31.0.0 (with subnet mask of 255.240.0.0). (Actually, AT&T owns 172.0.0.0 to 172.15.255.255). http://vlsm-calc.net/ipclasses.php I'm hoping that your examples were just free hand, and that it's not what you meant. In answer to your more specific question, I think they *will* be able to see those addresses (whether or not you're within the 172.16.x.x block or not). I'm sure I've just misunderstood something... -- Or set upon a golden bough to sing To lords and ladies of Byzantium Of what is past, or passing, or to come. (Wm Butler Yeats) _______________________________________________ Tech mailing list Tech@lists.lopsa.org<mailto:Tech@lists.lopsa.org> https://lists.lopsa.org/cgi-bin/mailman/listinfo/tech This list provided by the League of Professional System Administrators http://lopsa.org/ -- John J. Boris, Sr. Head Freshmen Football Coach Camden Catholic High School
_______________________________________________ Tech mailing list Tech@lists.lopsa.org https://lists.lopsa.org/cgi-bin/mailman/listinfo/tech This list provided by the League of Professional System Administrators http://lopsa.org/
