CMDB
10 min read Published on 07/01/2026

VLAN and IP Address Management

Master your network addressing

In brief

The KaliaOps IPAM module enables complete VLAN management with automatic network calculations (mask, broadcast, DHCP range). The visual dashboard shows utilization rates, IP conflict detection prevents errors, and full assignment history supports audit and forensics.

IPAM overview

IPAM (IP Address Management) centralizes network addressing management.

Why use IPAM?

  • Complete visibility: All VLANs and IPs in one place
  • Error prevention: Automatic conflict detection
  • Capacity planning: Utilization rate monitoring
  • Audit: Traceability of IP assignments

Scope

KaliaOps IPAM manages:

  • VLANs: Network segments with configuration
  • IP addresses: Assigned to assets
  • IP history: Assignment timeline

Access

Menu CMDB → VLANs for VLAN list and management.

Creating a VLAN

1

Access the VLANs module

Menu CMDB → VLANs.

2

Click "New VLAN"

Open the creation form.

3

Enter basic information

Fill in:

  • VLAN Number: Unique identifier (1-4094)
  • Name: Descriptive name (e.g., "Production Servers")
  • Network: CIDR notation (e.g., 192.168.10.0/24)
  • Gateway: Router address
4

Configure DHCP (optional)

If DHCP is used:

  • Addressing type: Static, DHCP or Mixed
  • DHCP start: First address of the range
  • DHCP end: Last address of the range
  • DNS servers: Resolution servers
5

Assign to a site

Select the site where this VLAN is deployed, or mark it as global.

6

Save

KaliaOps automatically calculates: netmask, broadcast address, available host count.

Tip: Use clear naming conventions: VLAN-100-PROD-SERVERS is easier to identify than VLAN100.

Addressing types and environments

Addressing types

TypeDescription
StaticManually assigned fixed IPs
DHCPDynamically assigned by DHCP server
MixedPart static (servers), part DHCP (workstations)

Environments

Categorize VLANs by environment:

EnvironmentTypical use
ProductionLive services
TestFunctional testing
DevelopmentDevelopment work
StagingPre-production validation
DMZDemilitarized zone
ManagementAdministration and monitoring

Impact on organization

Filtering by environment allows:

  • Finding all production VLANs
  • Isolating test environments
  • Security analysis by zone

IPAM dashboard

The IPAM dashboard provides a global view of your network addressing.

Key metrics

  • Total VLANs: Count of configured VLANs
  • Total addresses: Sum of available IPs
  • Assigned addresses: IPs assigned to assets
  • Overall utilization: Usage percentage

Utilization per VLAN

For each VLAN, the dashboard shows:

  • Progress bar with usage percentage
  • Number of assigned/available addresses
  • Color indicator (green/orange/red)

Thresholds

UtilizationIndicatorAction
< 70%GreenComfortable capacity
70-90%OrangePlan expansion
> 90%RedUrgent: VLAN saturated

Subnet visualization

Subnet grid

The visual grid displays the IP address space:

  • Occupied cells: Assigned addresses (with asset name)
  • Free cells: Available addresses
  • Reserved cells: Gateway, broadcast, DHCP

Navigation

  • Click on an IP to see the assigned asset
  • Use filters to show/hide reserved ranges
  • Zoom on specific ranges for large networks

Information on hover

Hovering over an IP shows:

  • Assigned asset name
  • Assignment date
  • Asset type

Free address search

The interface identifies:

  • Next available IP
  • Contiguous free ranges
  • Gaps in addressing

IP conflict detection

KaliaOps automatically detects IP address conflicts.

Conflict types

  • Duplicate IP: Same IP assigned to multiple assets
  • Out of range: IP outside the VLAN network
  • Reserved IP: Use of gateway or broadcast

Detection on creation

When assigning an IP to an asset:

  • KaliaOps checks existing assignments
  • Warning displayed if conflict detected
  • Assignment blocked if duplicate

CMDB health rules

Predefined rules monitor conflicts:

  • duplicate-ip-addresses: Detects duplicate IPs
  • network-asset-without-vlan: Network assets without VLAN

Conflict resolution

If a conflict is detected:

  1. Identify conflicting assets
  2. Verify the correct assignment
  3. Update or remove duplicate
  4. Document the resolution
Tip: Regularly run CMDB health checks to detect and resolve IP conflicts before they cause incidents.

IP history

KaliaOps maintains a complete IP assignment history.

Recorded information

For each assignment:

  • IP address: Assigned address
  • Asset: Equipment that held this IP
  • Assigned at: Start date
  • Released at: End date (if applicable)
  • Source: Manual, DHCP, Import, API
  • User: Person who made the assignment

Use cases

  • Security audit: Who had which IP on a given date?
  • Forensics: Post-incident investigation
  • Compliance: Proof of IP control

Access

  1. Open the VLAN detail page
  2. Click the "IP History" tab
  3. Filter by period, asset, or IP

Permission

IP history access requires the ipam.history permission.

Global VLANs

Global VLANs span multiple sites.

Use case

VLANs routed between sites:

  • Stretched VLANs (VXLAN, EVPN)
  • Shared management VLANs
  • Multi-site disaster recovery

Configuration

  1. When creating the VLAN, check "Global VLAN"
  2. Don't assign a specific site
  3. The VLAN is visible from all sites

Specifics

  • Addresses can be assigned to assets from different sites
  • Conflict detection works across all sites
  • The dashboard aggregates global statistics

Good practices

  • Use global VLANs sparingly
  • Document the architecture justifying the choice
  • Monitor latency for stretched VLANs
Key points
  • Automatic network calculations (mask, broadcast, DHCP range)
  • Visual dashboard with utilization rates per VLAN
  • Automatic IP address conflict detection
  • Complete assignment history for audit/forensics
  • Multi-site global VLAN support
Back to documentation Next article CMDB lifecycle management