The design of the network architecture is very complex and is the best place to reflect the technical level of a network engineer. The following architecture is a traditional architecture recommended by Cisco. Of course, Cisco's latest architecture is not the case but the traditional architecture has undergone multiple tests. It is absolutely stable so I personally recommend this kind of architecture. When you are a designer, try to be close to this architecture.
At the time of design, the most important thing is simple, efficient and there must be some reservations. Sometimes customers can not fully propose themselves. The business needs this requires designers to think about whether the business flow in the next five or ten years can meet the development needs of customers.
The above architecture is Cisco's most traditional. Of course, the most stable and classic, and my personal favorite architecture, It’s basically can see such architecture in all books. Sure, the traditional architectural advantage is stability but the shortcomings are also obvious that not suitable for the current situation of big data traffic. Therefore, it is also a backward structure.
This architecture diagram has been updated in the above architecture. As you can see, this diagram is actually the most ideal architectural design for a campus network. In fact, when designing an enterprise, you can also refer to the design of this architecture.
ASA’s infrastructure
Example 1:
This infrastructure is recommended by Cisco. It can be seen from the above that it is very suitable for some enterprises or companies to do FO architecture. The main advantage is that there are different ISPs that provide export. And through multiple sets of virtual walls to achieve redundancy and mutual backup. We need to pay attention to the fact that the bottom of the router. There should be a switch in the middle, the interface between the two firewalls and the router is configured in a network segment otherwise there is a problem.
I believe that everyone must be familiar with this picture. This is the infrastructure of the most classic F0. In fact, in the real project, the architecture is like this. Note that Cisco's ASA When doing F0, you need to put the interface into the same network segment otherwise it will not succeed.
Therefore, how to design a good network framework is also a necessary skill for network engineers. I hope this article will help you guys !
The above content must be known as a CCIE. If you still feel that the CCIE written exam and CCIE LAB exam are difficult to pass, then joinPASSHOT. We will let you more easily to pass the CCIE exam.
Comments