Logical Network Map.

by

Network Separation by IP Ranges

To ensure security, organization, and efficiency, Offtube’s network has been divided into three main segments:

💼 Client Network (LAN-CLIENTS)

  • Purpose: Connects user laptops accessing services.

  • Users: Employees and general-use devices.

  • Access Restrictions: May apply to limit access to internal resources.

  • IP Range: 192.168.1.0/24

Connected Devices:

  • User laptops

  • Mobile devices via WiFi (optional)

🖥️ Server Network (LAN-SERVERS)

  • Purpose: Hosts virtual servers and systems running company services.

  • Access: Protected by firewalls and restricted access policies.

  • IP Range: 192.168.2.0/24

Connected Devices:

  • Virtual servers on user machines

  • Physical servers (if added in the future)

🔧 Administration Network (LAN-ADMIN)

  • Purpose: Reserved for network management and maintenance.

  • Access: Exclusive to admins and the machine acting as a router.

  • IP Range: 192.168.3.0/24

Connected Devices:

  • Router device

  • Network administrators’ machines

  • Monitoring systems

💾 Backup Network (LAN-BACKUP)

  • Purpose: Dedicated space for storing and protecting critical data.

  • Recovery: Ensures fast recovery in case of data loss or failure.

  • Location: Can be a separate segment or part of the server network.

Connected Devices:

  • Backup server – Stores regular backups of systems.

  • Cloud backup solution – Optional for remote redundancy.

Backup Policies:

  • Scheduled backups based on data criticality

  • Encrypted data to ensure confidentiality

  • Quick restore mechanisms in case of failure

🧭 Explanation of the Logical Network Map

🔎 What does the logical map represent?

The logical map shows how devices communicate, which IP addresses they use, and how information flows across the network.
Unlike the physical map (which shows cables and hardware), the logical map helps visualize data management, IP schemes, and security policies.

🧱 Logical Infrastructure Overview

VLAN and IP Range Segmentation

  • Each network (Clients, Servers, Admin) is isolated to reduce unnecessary traffic and increase security.

  • The router handles communication between networks and with the Internet.

Traffic Management

  • The Admin network has privileged access to all other segments.

  • Clients cannot access servers directly.

  • The Server network is protected and only accessible to authorized devices.

Security Policies

  • Firewalls block unauthorized inter-network traffic.

  • NAT (Network Address Translation) protects internal devices.

  • Network traffic is monitored from the Admin network.

✅ Benefits of this Network Structure

Enhanced Security

  • Clients can’t reach servers without permission.

  • Admins have full control over the network.

Optimized Performance

  • Segmented traffic prevents congestion.

  • Servers are isolated from user network traffic.

Scalability

  • More devices or services can be added by extending subnets.

🔚 Conclusion

With this network structure, Offtube ensures efficient, secure, and organized communication. Segmenting the network improves traffic management and reduces security risks.

Leave a Comment

Esta web utiliza cookies propias y de terceros para su correcto funcionamiento y para fines analíticos y para mostrarte publicidad relacionada con sus preferencias en base a un perfil elaborado a partir de tus hábitos de navegación. Contiene enlaces a sitios web de terceros con políticas de privacidad ajenas que podrás aceptar o no cuando accedas a ellos. Al hacer clic en el botón Aceptar, acepta el uso de estas tecnologías y el procesamiento de tus datos para estos propósitos.
Privacidad