IP Addressing Scheme
IP addressing scheme for the management network (10.50.100.0/24).
1. IP Range Allocation
| Range | Purpose |
|---|---|
.1 |
Gateway (pfSense) |
.10-19 |
Network devices (switches) |
.20-29 |
Identity Services (ISE) |
.30-39 |
iPSK Manager |
.40-49 |
Wireless (WLC, APs) |
.50-59 |
SIEM/Monitoring |
.60-69 |
Certificate services |
.70-79 |
Storage (NAS) |
.80-89 |
IdP/Auth (Keycloak, Authentik) |
.99 |
KVM host bridge |
.200+ |
IPMI/OOB management |
2. Current Allocations
| IP | Hostname | Purpose |
|---|---|---|
10.50.1.1 |
pfsense-01 |
pfSense firewall |
10.50.1.10 |
3560cx-01 |
Cisco 3560-CX switch |
10.50.1.20 |
ise-01 |
Cisco ISE primary |
10.50.1.21 |
ise-02 |
Cisco ISE secondary |
10.50.1.30 |
ipsk-mgr-01 |
iPSK Manager primary |
10.50.1.31 |
ipsk-mgr-02 |
iPSK Manager secondary |
10.50.1.40 |
wlc-01 |
Cisco 9800-CL WLC |
10.50.1.50 |
home-dc01 |
Windows AD/DNS/CA |
10.50.1.60 |
certmgr-01 |
Let’s Encrypt cert automation |
10.50.1.70 |
nas-01 |
Synology NAS (also hosts gitea-01 Docker) |
10.50.1.71 |
nas-02 |
Synology NAS secondary |
10.50.1.80 |
keycloak-01 |
Keycloak IdP (pending deploy) |
10.50.1.99 |
kvm-01 |
KVM hypervisor host |
10.50.1.200 |
ipmi-01 |
Supermicro BMC |
3. Naming Convention
| Type | Pattern | Example |
|---|---|---|
Internal services |
|
|
External portals |
|
|