Best Practices for Setting Up VLANs for NIVOMAX Network Edition Applications

Disclaimer

SYNAXIOM does not distribute NIVOMAX Viewer setup files directly to end users. To obtain the necessary setup files, users must download a copy directly from the Technical Publications Supplier's NIVOMAX Self Serve portal, subsequent to agreeing to the terms and conditions stipulated therein. The Technical Publication Supplier, possessing a valid Distribution ID for their copy of the NIVOMAX Applications, is the sole distributor. Access to and use of the NIVOMAX Viewer is contingent upon the purchase of a Data License for a digital product from the Technical Publications Supplier. The digital product downloaded will function exclusively with the viewer provided by the respective Supplier. Users are advised that the distribution of NIVOMAX Viewer setup files may be governed by applicable export control regulations depending on their region.

Licensing

It is not necessary for end-users to purchase a separate NIVOMAX license. The Technical Publications Supplier from whom you have acquired your Data License has already procured the requisite licenses from SYNAXIOM. By extending an invitation, they include you within their authorized user pool, as permitted under their NIVOMAX license agreement. You are authorized to use the NIVOMAX software provided the Technical Publications Supplier maintains a valid NIVOMAX software license.

Confidentiality

This document (“Document”) contains confidential and proprietary information owned by SYNAXIOM Inc. (“SYNAXIOM”). No part of this Document may be reproduced, copied, or distributed in any form or by any means without the prior written permission of SYNAXIOM Inc. Unauthorized use, disclosure, or reproduction of this Document is strictly prohibited. Any third-party intellectual property mentioned herein is the property of their respective owners, and such mention is for informational purposes only and does not imply any association with or endorsement by the owners.

This page must not be removed before distributing the document. It must remain present in all shared copies to ensure proper communication and compliance.

Best Practices for Setting Up VLANs for NIVOMAX Network Edition Applications

Last Updated on August 13, 2024 | 3 min read


Why Use VLANs?

VLANs are used to logically segment network traffic, particularly in environments where different devices have distinct network requirements. For NIVOMAX Network Edition applications, in more sophisticated setups, VLANs help in isolating server traffic from client traffic, which can include both wired and Wi-Fi clients. This setup minimizes unnecessary broadcast traffic, reduces security risks, and optimizes performance by ensuring that each VLAN is tailored to the specific needs of the devices it supports.

Example Configuration

Consider the following VLANs for a typical setup:

  • Server VLAN (VLAN 10): Hosts NIVOMAX application servers, with IP addresses in the range 192.168.10.0/24. This VLAN is isolated to protect sensitive data and to ensure stable, high-performance access to the servers.
  • Wired Client VLAN (VLAN 20): Includes all wired client devices, with IP addresses in the range 192.168.20.0/24. This VLAN is optimized for stable, high-speed connections to the servers.
  • Wi-Fi Client VLAN (VLAN 30): Contains all Wi-Fi client devices, with IP addresses in the range 192.168.30.0/24. This VLAN is designed to handle the variability of wireless connections while maintaining performance.

VLAN Segmentation

Server VLAN: Isolate servers on VLAN 10 to minimize broadcast traffic and enhance security. This VLAN should have controlled access to other network resources.

Client VLANs: Separate wired and Wi-Fi clients into VLANs 20 and 30, respectively. This allows for different security and performance policies tailored to each client type.

Inter-VLAN Routing

Use a Layer 3 switch or router to enable necessary communication between VLANs. Implement Access Control Lists (ACLs) to restrict traffic, allowing only required protocols and services to pass between VLANs.

Network Performance Optimization

Quality of Service (QoS): Apply QoS policies to prioritize critical traffic, particularly between servers and clients. This is especially important in Wi-Fi environments where bandwidth can fluctuate.

Wi-Fi Considerations: Given that Wi-Fi (WLAN) can introduce variability in performance, ensure strong signal coverage and minimize interference by using modern Wi-Fi standards (e.g., Wi-Fi 6).

Security Considerations

Firewalls and ACLs: Implement robust firewall rules and ACLs to restrict unnecessary access between VLANs. Only allow essential communication, such as client access to specific services on the server VLAN.

Network Monitoring: Continuously monitor network traffic to detect potential security breaches or performance issues, especially across different VLANs.

IP Address Management

Static IPs for Servers: Assign static IP addresses to servers within VLAN 10 to ensure consistent network performance and ease of management.

DHCP for Clients: Use DHCP to efficiently manage IP addresses for wired and Wi-Fi clients, with separate scopes for each VLAN.

Redundancy and High Availability

Redundant Network Paths: Ensure redundancy in network connections, particularly for the server VLAN, to avoid single points of failure.

Load Balancing: Use load balancers to evenly distribute traffic across multiple servers in VLAN 10, preventing any single server from becoming a bottleneck.

Compliance and Documentation

Documentation: Maintain detailed records of VLAN configurations, including IP schemes, routing rules, and ACLs, to aid in troubleshooting and future audits.

Regular Audits: Perform periodic reviews of the VLAN setup to ensure compliance with best practices and to make adjustments as network demands evolve.

References

For further details on network performance, consider reviewing the articles on LAN, WAN, and VPN Considerations for NIVOMAX and Network Performance Best Practices. These resources provide additional insights on optimizing your network environment for NIVOMAX Network Edition applications.


For the latest documentation on this and other important topics, please refer to the NIVOMAX Help Center. The NIVOMAX Help Center is your primary resource for up-to-date information, guidelines, and self-serve support for NIVOMAX.

This document also has an online version which may be more up-to-date.


CONFIDENTIAL

This document is the property of SYNAXIOM Inc.