creating a production type lab

[fsck]

I don't have the chance to work on the production network at work so I kind of want to do it at home in my lab.  I wanted to take the typical switching lab with 4 3550s but add a pair of routers to act as the core.  Then I would have pair of 3550s as the distro/aggregation layer and the other 2 3550s as the access, maybe even throw in a couple 2950s too.  I just want to make it like the production type network and practice.  Maybe after that is setup I can create an OSPF lab with some other routers connecting those with serial cables.  Is this the right approach of laying out a lab like this?
I was thinking something like this in Visio below.  I just did a quick network topology layout.

[wintermute000]

you're on the right track.

- add a cross connect between the two core switches.
- servers are usually dual homed.
- experiment with different topologies routing from core to WAN devices. Try different protocols, try redistribution, try layer 2 (i.e. VRRP or HSPR on LAN side of the WAN routers), note the different behaviour, plusses and minuses of each.
- make the spoke sites dual homed (one link into the OSPF WAN, the other into the EIGRP WAN). Make it failover properly, then do it the other way (i.e. prefer the 'other' WAN)
- create ISP router(s) as a termination point for the two BGP internet links. Pretend you are advertising a /24. Make BGP prefer one link, but be able to failover the /24 to the other.


I would strongly suggest trying GNS3 or VIRL, you can pretty much run up the whole damned thing in either. There is a good thread in this forum (started by setit) on building a GNS3 IOU server, that's free. If you want the official Cisco badge of quality (tm) then buy a VIRL license for same same but different. This is a golden age for labbing R&S, do take advantage.

[NetworkGroover]

What's the goal?  To study general R&S?

[fsck]

you're on the right track.

- add a cross connect between the two core switches.
- servers are usually dual homed.
- experiment with different topologies routing from core to WAN devices. Try different protocols, try redistribution, try layer 2 (i.e. VRRP or HSPR on LAN side of the WAN routers), note the different behaviour, plusses and minuses of each.
- make the spoke sites dual homed (one link into the OSPF WAN, the other into the EIGRP WAN). Make it failover properly, then do it the other way (i.e. prefer the 'other' WAN)
- create ISP router(s) as a termination point for the two BGP internet links. Pretend you are advertising a /24. Make BGP prefer one link, but be able to failover the /24 to the other.


I would strongly suggest trying GNS3 or VIRL, you can pretty much run up the whole damned thing in either. There is a good thread in this forum (started by setit) on building a GNS3 IOU server, that's free. If you want the official Cisco badge of quality (tm) then buy a VIRL license for same same but different. This is a golden age for labbing R&S, do take advantage.

Thank you for the great feedback wintermute000.  I'm going to try each and everyone of those lab scenarios.  I know this is the best way to learn.  To answer your question aspiringnetworker, yes this is to learn from my studies.  I find myself reading a lot in books and online but I don't feel like I have grasp the concepts and want to take it farther and lab it.

- I should of known about the cross connects between the core switches a mistake on my part.
- The idea to make the spoke sites dual homed is a good one.  I read about this alot so that will be good to put in practice.
- To create an ISP router in the lab what makes it an ISP router?  I guess I'm asking will it be setup any differently than the other routers?  I really like this one because I can finally practice BGP.

I have all this gear at work that's just laying around.  I did want to build it up for fun.  But I also have VIRL at home that I think I will build it up too for even more practice.  I just want to learn it all and not just say i learned it from a book.  I can explain what STP or BGP is and does but I want to make sure I can build it and fix it.

[wintermute000]

to create an ISP router basically make it BGP peer to your router and advertise dummy loopbacks to advertise the internet.
You can then test internet connectivity by seeing if the 'internet' IPs can ping your /24 or whatever you are advertising to the internet.
Lots of detail I can get into here, but I'll let you discover for yourself

[fsck]

Actually wintermute000 you got me very curious and would love it if you could share more.  I'm learning a lot more than expected here.  I really like that.  I am excited to try the BGP stuff. 

I will update the Visio diagram tonight and upload it.

[wintermute000]

what are you  looking for me to 'share '? Happy to answer any specific questions you have, but I'm not in a position to give you a lab on a plate so to speak

[fsck]

I can understand because that's just a massive thing, I mean that network can have all kinds of lab pieces.  You just mentioned that you could get into lots of detail so I thought you were holding back.  I think the best thing is for me to get my hands dirty in this lab and set it up.  I will ask this though when you have a setup like the diagram shows, how do you go about starting the setup.  My first thought would be to work from the inside out starting with the core and build out.  Do you take special considerations on design and configuration, maybe you have a set way you work it out.  I think that every network will be different of course I'm just wonder how to start this out as I'm cabling up everything now.  I keep thinking to start at the core.

[fsck]

I made some of the changes to the Visio diagram.  The only part I'm a little unsure about is the one link into the OSPF WAN, the other into the EIGRP WAN part. Do I have the right idea in terms of connectivity?

[icecream-guy]

looks fine, but you'll never do redistribution like that.  I'd also recommend to include your core devices in the routing instances.

[wintermute000]

+1.
Have separate internet and WAN routers at first.
Run the same WAN routing protocol, then switch it, then start playing around with redistribution.
And yes, route from core to WAN segments. Again, at first, Keep It Simple Stupid and use the same protocol, then try to make them different. Also you'd typically not run primary/secondary links via different protocols if you can help it, as ristau says. If you want to model EIGRP vs OSPF WAN, have a spoke site pure EIGRP or OSPF. Then move onto having different protocols everywhere.

[deanwebb]

OFF-TOPIC: Mad props to fsck for the Moss avatar.

[fsck]

"are you from the paaaaast?" -Roy
"yes we never want to find ourselves in invalid memory" -Moss

[fsck]

looks fine, but you'll never do redistribution like that.  I'd also recommend to include your core devices in the routing instances.

I'm not quite sure what you mean by including my core devices in the routing instance. Can you please explain?

[icecream-guy]

looks fine, but you'll never do redistribution like that.  I'd also recommend to include your core devices in the routing instances.

I'm not quite sure what you mean by including my core devices in the routing instance. Can you please explain?

So the big square boxy things in the middle needs to help the little rectangular things at the bottom, get their packets to the roundy things at the top.

You would want to populate the routing tables in the network core, hosts at the access layer need to know how to get places.   if you just populate the routing tables in the WAN distro block,  routes will never get to the core, and hosts in the access layer will not know how to get places.   you could use static routes, but with 2 connections going to 2 different providers, this will be confusing and a better plan is needed. sending the wan block IGP routes into the core will help.