Get AI summaries of any video or article — Sign up free
DO NOT design your network like this!! // FREE CCNA // EP 6 thumbnail

DO NOT design your network like this!! // FREE CCNA // EP 6

NetworkChuck·
5 min read

Based on NetworkChuck's video on YouTube. If you like this content, support the original creators by watching, liking and subscribing to their content.

TL;DR

Avoid single points of failure by not daisy-chaining switches in ways where one cable or one device can isolate many endpoints.

Briefing

Network design fails when it relies on single points of failure—especially daisy-chained switches that can take down entire segments when one cable or device breaks. The core fix is to build redundancy intentionally: use a structured architecture that keeps critical traffic flowing even if a link or switch goes offline, instead of stacking devices in a way that turns one failure into widespread downtime.

A common “home-network” mistake shows up in small businesses as they grow: one router connects to a switch, then another switch is added by connecting switch-to-switch, and then again. It works until a single cable gets chewed through or a switch fails. At that point, every device hanging off the affected switch loses connectivity, which is why the design is described as having “single points of failure.” In a business setting, that kind of outage translates directly into lost time and money.

To reduce those risks, the lesson pushes toward redundancy plus a tiered layout. The first architecture is a two-tier model: access layer switches connect end devices, while distribution layer switches act as the intermediary that routes and manages traffic between access and the router. The distribution layer is treated as the “workhorse” because it handles more than forwarding—often including VLAN routing, route filtering, ACLs, IP security policies, summarization, and next-hop redundancy. Because it carries more traffic, it needs more capacity than access switches, which is why the distribution layer is described as “beastly” and typically built with higher-end hardware.

The two-tier model still leaves room for failure if only one distribution switch or one uplink exists, so the recommended approach is to add redundancy at the right places: multiple distribution switches, multiple links to each, and multiple connections up to the router. That improves resilience, but it also increases cost because higher-end multi-layer switches and routers are expensive.

When networks expand beyond a single campus building—multiple buildings, lots of inter-building traffic, and more endpoints—the architecture often shifts to a three-tier model. In this design, a dedicated core layer sits above distribution. The core is built for low latency, high reliability, and high throughput, serving as the backbone that aggregates traffic from distribution switches. Distribution then connects access to the core, while routers connect into the core as well. The result is a cleaner, more scalable campus design that avoids the messy, full-mesh connectivity that becomes unmanageable as the network grows.

An important nuance is that the “core” role doesn’t always disappear in two-tier designs; it can be collapsed into the distribution layer. This “collapsed core” model is common in practice because it can be sufficient for many organizations—especially those with one main corporate office and limited campus complexity. The trade-off is that three-tier designs become more attractive when the campus spans many buildings and needs consistent, high-speed connectivity.

By the end, the practical takeaway is to identify what architecture a real organization uses—two-tier, three-tier, or a hybrid—and compare it to the failure modes discussed: single points of failure, daisy-chaining, and where redundancy is (or isn’t) built into the design.

Cornell Notes

The transcript argues that network outages often come from single points of failure, especially when switches are daisy-chained as the network grows. A two-tier architecture separates roles: access switches connect end devices, while distribution switches handle routing and policy functions and provide the main aggregation path to the router. Redundancy improves resilience by adding multiple distribution switches and multiple uplinks, but it raises cost because distribution-layer hardware is expensive. For larger campuses with multiple buildings and heavy inter-building traffic, a three-tier model adds a dedicated core layer built for high throughput and low latency. Many real networks use a “collapsed core” where core responsibilities are folded into distribution when full three-tier complexity isn’t necessary.

Why is daisy-chaining switches considered risky as a network grows?

Daisy-chaining typically creates single points of failure. If a cable breaks (for example, a damaged uplink) or a switch fails, every device downstream of that switch can lose connectivity. Even when the topology “works” initially, one physical link or one device failure can take down a large portion of the network, which is unacceptable for business operations where downtime costs money and time.

What distinguishes the access layer from the distribution layer in a two-tier design?

Access layer switches connect end devices—computers, phones, and other endpoints—providing the ports and local connectivity. Distribution layer switches sit above them and aggregate traffic toward the router. Because distribution handles more responsibilities (including routing and policy enforcement), it must be higher-capacity than access hardware and is often implemented as a multi-layer (Layer 3) switch.

What kinds of tasks are commonly assigned to the distribution layer?

The transcript lists typical distribution-layer roles such as route filtering, VLAN routing, management functions, ACLs, IP security policies, routing-related controls, summarization, and next-hop redundancy. The key idea is that distribution is the intermediary that performs Layer 3 functions and policy decisions, not just Layer 2 switching.

How does redundancy get added in a two-tier architecture without simply adding more links everywhere?

The recommended redundancy pattern is to add additional distribution switches and multiple uplinks so that no single switch or single link failure isolates endpoints. For example, connecting two distribution switches to the router with redundant links—and ensuring each access path has an alternate—reduces the chance that one failure brings down the network. The transcript emphasizes that this improves resilience but increases cost.

When does a three-tier architecture become more appropriate than a two-tier design?

Three-tier becomes attractive when the network spans multiple buildings and needs scalable, high-speed connectivity across the campus. Adding a dedicated core layer prevents distribution switches from being overloaded by too many connections and avoids complex, hard-to-scale connectivity patterns. The core layer is designed for low latency, high reliability, and high throughput.

What is the “collapsed core” idea, and why does it matter?

In some two-tier models, the core layer’s functions are collapsed into the distribution layer. That means distribution switches take on both aggregation/routing responsibilities and the backbone role. This can be sufficient for many organizations—such as those with one main corporate office—while still delivering a simpler design than full three-tier campus architecture.

Review Questions

  1. If a network uses daisy-chained switches, what specific failure scenario would likely cause widespread downtime, and why?
  2. In a two-tier architecture, which layer typically performs routing and policy functions, and what hardware capability difference is implied between access and distribution?
  3. Compare the purpose of the core layer in a three-tier campus design to the role of distribution in a collapsed-core (two-tier) model.

Key Points

  1. 1

    Avoid single points of failure by not daisy-chaining switches in ways where one cable or one device can isolate many endpoints.

  2. 2

    Use a two-tier model to separate endpoint connectivity (access) from traffic aggregation and Layer 3 functions (distribution).

  3. 3

    Treat distribution switches as higher-capacity multi-layer (Layer 3) devices because they handle routing, VLAN routing, ACLs, security policies, summarization, and next-hop redundancy.

  4. 4

    Add redundancy by deploying multiple distribution switches and multiple uplinks to the router, rather than relying on one path.

  5. 5

    Choose three-tier architecture when scaling to multi-building campuses, using a dedicated core layer built for low latency, high reliability, and high throughput.

  6. 6

    Recognize the collapsed-core variant where core responsibilities are folded into distribution, which can be adequate for simpler campus or single-office environments.

  7. 7

    Identify the architecture used in a real organization (two-tier, three-tier, or hybrid) and evaluate it against the failure modes discussed: single points of failure and insufficient redundancy.

Highlights

Daisy-chaining switches may “work,” but one broken uplink or failed switch can drop entire groups of devices—classic single points of failure.
Distribution-layer switches are expected to do more than forward traffic: VLAN routing, ACLs, IP security policies, summarization, and next-hop redundancy are typical responsibilities.
Three-tier campus designs add a core layer to keep distribution from becoming overloaded and to support scalable, high-speed inter-building connectivity.
Collapsed-core models fold core functions into distribution, offering a simpler design that can still meet needs for many organizations.

Topics

  • Network Redundancy
  • Two-Tier Architecture
  • Distribution Layer
  • Three-Tier Campus
  • Collapsed Core Model

Get summaries like this for any content

Videos, articles, research papers — all summarized by AI and searchable in one place.

Start building your library