Skip to content
MicrosoftLab.ch
Blog

Naming Convention

General Format

Section titled “General Format”
<type>-<function>-<location>-<number>
ComponentDescriptionExamples
typeDevice/resource typesrv, clt, sw, fw, tpl
functionPrimary functiondc, pve, jump, pki
locationSite identifierzrh (Zürich)
numberSequential number01, 02, 03

Device Types

Section titled “Device Types”
PrefixDescriptionExample
srvServer (physical or virtual)srv-dc-zrh-01
cltClient workstationclt-admin-zrh-01
swNetwork switchsw-core-zrh-01
fwFirewall/Gatewayfw-edge-zrh-01
tplTemplatetpl-ws2025-zrh-01

Server Function Codes

Section titled “Server Function Codes”
CodeDescriptionExample
dcDomain Controller (Forest Root)srv-dc-zrh-01
dccDomain Controller (Child Domain)srv-dcc-zrh-01
pveProxmox VE Hostsrv-pve-zrh-01
rcaRoot Certificate Authoritysrv-rca-zrh-01
icaIssuing Certificate Authoritysrv-ica-zrh-01
pkiPKI Web Repositorysrv-pki-zrh-01
jumpJump Host / Bastionsrv-jump-zrh-01
fileFile Serversrv-file-zrh-01
sqlSQL Serversrv-sql-zrh-01
rpiRaspberry Pisrv-rpi-zrh-01

Network Naming

Section titled “Network Naming”

Switch Types

Section titled “Switch Types”
CodeDescriptionExample
coreCore/Aggregation Switchsw-core-zrh-01
distDistribution Switchsw-dist-zrh-01
edgeEdge Firewallfw-edge-zrh-01

VLAN Naming

Section titled “VLAN Naming”

Format: zrh-<purpose>-v<id>

VLAN IDNameDescription
1zrh-default-v1Default (UniFi devices)
10zrh-mgmt-v10Management
20zrh-san-v20Storage (SAN)
30zrh-srv-v30Servers
40zrh-clt-v40Clients
50zrh-dmz-v50DMZ
60zrh-vpn-v60VPN

LAG/Bond Naming

Section titled “LAG/Bond Naming”

Format: po-<remote-host>-<number>

On DeviceLAG NameConnected To
sw-core-zrh-01po-pve01-01srv-pve-zrh-01
sw-core-zrh-01po-pve02-01srv-pve-zrh-02
sw-core-zrh-01po-edge01-01fw-edge-zrh-01
srv-pve-zrh-01po-core01-01sw-core-zrh-01

Active Directory Naming

Section titled “Active Directory Naming”

Domains

Section titled “Domains”
TypeFQDNNetBIOS
Forest Rootmicrosoftlab.chMSLAB
Child Domaincorp.microsoftlab.chCORP

DNS Zones

Section titled “DNS Zones”
ZoneReplicationPurpose
microsoftlab.chForestForest Root Domain
corp.microsoftlab.chForestChild Domain

Organizational Units

Section titled “Organizational Units”
corp.microsoftlab.ch
├── OU=Corp
│   ├── OU=Users
│   ├── OU=Computers
│   │   ├── OU=Servers
│   │   └── OU=Clients
│   ├── OU=Groups
│   └── OU=Service Accounts

VM ID Schema

Section titled “VM ID Schema”

Format: VLAN * 10 + sequential number

VLANVM ID RangeExamples
30 (Servers)300-399300 (DC), 305 (Child DC), 310 (Root CA)
40 (Clients)400-499400 (Admin Client), 490 (Template)

Detailed VM ID Allocation

Section titled “Detailed VM ID Allocation”
300-309: Domain Controllers
310-319: PKI Infrastructure
320-329: File Services
330-339: Database Servers
340-349: Application Servers
350-359: Legacy Servers
360-369: Modern Server Collection
370-379: Management & Jump Hosts
390-399: Server Templates


400-409: Client VMs
490-499: Client Templates

Firewall Rule Naming

Section titled “Firewall Rule Naming”

Format: FW_<ACTION>_<SOURCE>_<DESTINATION>_<SERVICE>

Examples:

  • FW_ALLOW_ZRH-DC-ZRH-01_DNS_EGRESS - Allow DC DNS to external
  • FW_DENY_ZRH-SRV-V30_Internet_EGRESS - Block Server VLAN to Internet