Network Routing Principals - Case Study Assignment PDF

Preview

Summary

Case study for network routing principles (winter 2019)...

Description

Swinburne University of Technology Sarawak Campus

TNE20002 Winter Semester 2019

Network Design and Implementation Case Study

Assignment Submission Details: • • • • •

This is a Team assignment. The Case Study is to be completed by a team of 3 to 4 persons. Team members can be drawn from across the Unit, they are not restricted to your lab class. Your team has to be registered with your instructor by email of your Team Number, Members’ Names, Student IDs and Lab Classes. Your instructor will issue with your network address specifications on request.

Mark Allocation Guide A Mark Allocation Guide will be provided with this Case study.

Case Study Deliverables The following three deliverables must be submitted: 1) A Case Study Report – structure outlined below a) Identification Details: Team or Individual b) Report Structure 2) A Packet Tracer v7.2.1 file 3) A Video Presentation file

Case Study Submission   

The deliverables must be submitted by week 6 Saturday, midnight. The submission shall be done through Canvas submission link. Late submission - a late penalty of 10% per day or part there of applies. Any special considerations must be applied in advance, otherwise forfeited.

Case Study Overview • • • • •

This case study requires the building and configuration of a network using skills gained through studying the Unit material. The case study scenario describes the project in general terms, and why the network is being built. Following the scenario description, the project is broken into a number of phases, each of which has a list of requirements. It is important to read and understand each requirement to make sure that the project is completed accurately. The following information is needed from your instructor: • Specification Number (Spec no.) • Pseudo private Class A Internal network address (to ensure uniqueness between assignments) • Class B NAT Pool Public address • Class C ISP Network Connection address • Class B ISP Internet Web Server address. (It is your responsibility to request and collect the information required for completing your assignment).

Winter Semester

Network Design and Implementation Case Study

Page 2 of 9

Case Study Requirements The Scenario “Alpine Medical Supplies” is a company that provides medical equipment for local medical centers. The Head Office occupies one building over two floors at the Kuching site. The company also has a Hire Only group in Bau and a Sales Only group in Samarahan. Head office is connected to Hiring office and Sales office by WAN Frame Relay links. Sales office is connected to the Head office via a WAN PPP Link. The company is implementing a network that should support potential growth over the next five years. The task is to design, implement and fully document the proposed company network of Alpine Medical Supplies. You must prepare: 1. A Formal Written Report 2. A Presentation on the case study (were each member of the team outlines their contributions to the project) 3. A prototype of the network (built using Packet Tracer V7.2.1 as a proof of concept that your team can build a network that will satisfy the company’s requirements).

Phase 1 – Initial Planning The Company requires you to use Packet Tracer V7.2.1 for development and demonstration of the prototype. The prototype is a proof of concept. It does not need to have in it all the devices that would be required in the actual physical implementation. Company Requirements: • 120 employees in the Sales and Hire group, based at Kuching. • 40 employees in the Marketing group, based at Kuching • 15 employees in the Site Security group must have access to the network via a wireless LAN, at each site. • 20 employees in the Administration group, based at Kuching. • 260 employees in the Hire Only group, based at Bau. • 150 employees in the Sales Only group, based in Samarahan. • A separate Server Farm subnet, you can decide the number and type of servers required • Allow address space for management of switches within the network • The ISP for the company is based in Kuching. Use Class C ISP Network connection address (given by your lab instructor) for connection to the Kuching ISP router. • Use pseudo private class A network (given by your lab instructor) for internal addressing. • Use VLSM for the IP addressing scheme. • Expect 125% growth of current IP requirements when determining size of subnets. • All devices must have IP addresses

The Tasks 1. The company requires the use of VLSM Design to ensure efficient the use of IP address space. A table is to be produced showing all possible subnets that meet the company requirements. Subnets that will not be used are to be clearly identified in the table. Table A: VLSM Design Number of host addresses required

Winter Semester

Network Address (Subnet IP)

Subnet Mask (IP Mask)

Max. Number of Hosts Possible

In Use (Yes/No)

Network Design and Implementation Case Study

Network (VLAN) Name

Page 3 of 9

2. Produce a Logical Network Diagram that includes: • Router and switch names • Router interface details • Network/subnet addresses • IP addresses on interfaces • Number of hosts per network • DCE Serial interfaces are to be clearly indicated • Link Speeds • Legends for the type of cable use. • Site Identification 3. For each location, a separate table should be created for each router and switch at the location. These tables will assist with design and development activities and used when configuring switches and routers. Table B: Router Table

Location:

Router Name:

Interface / Sub- Description interface Type / and Purpose Number

DCE / DTE (if applicable)

Speed or Clock-rate

Network (VLAN) Name

Network Address

Interface IP address

Subnet Mask

(IP mask)

(Subnet IP)

Table C: Switch Table

Location: Interface / Subinterface Type/Port/ Number

Switch Name: Description and Purpose

Speed Mbps

Management VLAN IP Address: Network Name

Duplex

Network Address (Subnet IP)

Subnet Mask (IP mask)

VLAN

Switchport Type

Encapsulation (if needed)

4. To complete the IP design, assign and tabulate PC or workstation and server addresses for each LAN in each location. • IP addresses will automatically be assigned to PCs/workstations for the Administration, Marketing, Sales and Hire LANs and Site Security groups at Kuching, Sales Only group in Samarahan and Hire Only group in Bau. • Each LAN must have its own printer. • Server and printer addresses will be statically assigned. • Record the PC and server addressing using the tables below. Table D: Statically assigned IP Host Addresses VLAN name

Server/Printer name

IP Address

Subnet Mask (IP mask)

Default Gateway IP Address

Services Provided

Table E: DHCP Server Pool IP Host Addresses VLAN Name

Winter Semester

IP Address Pool Range

Subnet Mask (IP mask)

Default Gateway IP Address

Network Design and Implementation Case Study

Page 4 of 9

Phase 2 – Routing Protocol Planning The company network will use one of the modern internal gateway protocols (IGPs) as the routing protocol with the RIPv2 as a backup: • • • • • •

Discuss and suggest a suitable dynamic IGP to connect the company’s network. Use wildcard masks of appropriate protocol to advertise subnets Indicate bandwidth on all router interfaces Set passive interface for relevant interfaces Plan a Default route to Kuching ISP Redistribute default route

Phase 3 – VLAN Planning Switches: • Reliability and redundancy must be considered • Make VLAN 199 the Switch Management VLAN • Switch ports must be secured At Kuching: • The Sales and Hire group and Marketing group are on floor 1. • The Administration group is on floor 2 • The Servers are on floor 1 • The Site Security group must have access to the network via a wireless LAN. • Site size 150metres x 300metres • Building Floor size 35metres x 50metres At Bau: • Hire Only group is on the ground floor of a single level building • Site size 150metres x 200metres • Building Floor size 20metres x 30metres At Samarahan: • Sales Only group is on the ground floor of a single level building • Site size 100metres x 100metres • Building Floor size 25metres x 30metres Table F: Switch Details Name Model # of Ports

Location

Management Default Management VLAN IP Gateway IP Vlan Address Address

VTP Mode

VTP Domain

Table G: Wireless Access Point Details Name Model SSID Channel

Winter Semester

Network Design and Implementation Case Study

Page 5 of 9

Phase 4 – Configure Routers and Routing Protocol Implement appropriate layer 3 details and briefly describe on the process of routing between different sites:    

Refer to Phase 1 for VLSM subnets and IP Address assignment. Refer to Phase 2 for details regarding the routing protocols. The Internet Web Server attached to Kuching ISP has a Class B address (given by your lab instructor). This Web Server represents the “Internet”. Configure a static route on Kuching ISP to the internal network.

Phase 5 – Configure VLANs Implement layer 2 details to the prototype network:  

Refer to Phase 1 for Company Requirements. Refer to Phase 3 for Switch Details.

Phase 6 – Configure DHCP The company wants to use DHCP.  DHCP must be configured to provide IP address information to PC workstations.  Use the information documented in Phase 1 to configure each DHCP pool.  Connect PC workstations on each of the appropriate VLANs  Configure each PC workstation to obtain its IP address automatically

Phase 7 – Configure Frame Relay and PPP  

Configure Frame Relay Switches to connect the company’s sites Configure PPP and CHAP authentication on the link to the ISP.

Phase 8 – Wireless LAN  

Determine the number of Wireless Access Routers (Linksys WRT300N) you need at the Kuching site to support the Site Security group. With the help of graph paper (scan it to include in report), show to scale the deployment of the wireless routers across the site.

Winter Semester

Network Design and Implementation Case Study

Page 6 of 9

Phase 9 – NAT Configuration The company wants to use private addresses. The addresses provided by your instructor do not belong to the 10.0.0.0/8 private range but are sufficient for the purpose of building the prototype network. 1. Configure NAT on the router that is acting as your gateway router to the Internet as follows: • Define the NAT pool. Please use the Class B NAT pool public address given to you by your lab instructor. • Assign a static address to each of the servers. • The rest of the address range can be used with the NAT pool. • Define an access control list, which will permit all IP traffic from all internal addresses. 2. Test that NAT is working from a host on any LAN or VLAN. The host should be able to ping and browse to the Internet Web Server. 3. To see the NAT translations, use show IP NAT translations

Phase 10 – Security Access Policies The company requires the implementation of ACLs to control the flow of IP traffic within its network and to the Internet. 1. Before you implement the ACLs, test that each PC is able to browse and ping the Internet Web Server, all the Internal Servers and PCs on other VLANs 2. You are to implement ACLs that will control IP traffic flow between the VLANs and LANs. The company requirements are as follows: a. PC hosts in the Sales and Hire VLAN are permitted access to the server VLAN, the Administration VLAN, and the Internet Web Server b. PC hosts in the Sales and Hire VLAN are denied access to the Marketing VLAN, Hire Only LAN at Bau and Switch Management VLAN. c. PC hosts in the Marketing VLAN are permitted access to the server VLAN, the Administration VLAN, the Internet Web Server, and Hire Only LAN in Bau. d. PC hosts in the Marketing VLAN are denied access to the Sales and Hire VLAN and Switch Management VLAN. e. PC hosts in the Marketing VLAN are denied access to Sales Only LAN in Samarahan. f. PC hosts in the Administration VLAN are permitted access to all VLANs and the Internet Web Server. g. PC hosts in the Site Security wireless LAN are permitted access to all VLANs and the Internet Web Server. 3. Use a table to record the testing of the ACLs (add Rows as needed): Table H: Record of ACL Testing Source Host

Destination Host/Server

Protocol

Expected Result

Host on Hire Only

Internet Web Server

HTTP

Success

Winter Semester

Network Design and Implementation Case Study

Achieved Yes/No

Page 7 of 9

Case Study Report - Further Details a)

Identification Details: Team OR Individual i)

Team Identification Details (remember a team must have at least 3 members) • Title Page • Team Information Page • Checklist Page (refer to Mark Allocation Guide) Example Title: *** Team Case Study Information Page *** Team: T022 Team Members Mick Mouse 1234567 Black Cat 7654321 Snow White 1233312

Tuesday Tuesday Wednesday

11:30 11:30 14:30

Case Study Specification Information Specification Number

: ______________________________

Class A Internal network address

: ______________________________

Class B NAT pool public address

: ______________________________

Class C ISP network connection address: ______________________________ Class B ISP Internet Web server address: ______________________________ Instructor who provided specification: ________________________________

b)

Case Study Report Structure

The report should include concise explanation, rationale and justification for your design and implementation. The report (excluding Appendixes) should not exceed 20 pages. (ULO involvement – 3)

o

Section A - A Logical Network Diagram

o

Section B – Discussion of Design issues, describe and provide rationale or justifications for your design choices for the following with proper reference to respective details in Appendixes:  Section B1 – IP VLSM address scheme (ULO involvement – 7)  Section B2 – Routing Protocols (ULO involvement – 1, 2)  Section B3 – VLANs, VTP and STP (ULO involvement – 6, 7)  Section B4 – Wireless LANs (ULO involvement – 7)  Section B5 – DHCP service (ULO involvement – 6)  Section B6 – NAT service (ULO involvement – 6)  Section B7 – ACLs and Security Access Policies (ULO involvement – 4)  Section B8 – WAN technology options – district-sized networks (ULO involvement – 5)  Section B9 – System Testing and Verification Strategy (ULO involvement – 6)

o

Appendix I – Tables A to H

Winter Semester

Network Design and Implementation Case Study

Page 8 of 9

o

Appendix II – Router Configurations (for each router)  Show run  Show ip interface brief o Show access-lists  Show ip route

o

Appendix III – Switch Configurations (for each switch)  Show run  Show vlan  Show spanning-tree summary

o

Appendix IV – Other Output  NAT Output as follows:  Show ip nat translation  Debug ip nat  DHCP Output as follows:  Show dhcp bindings ---- End of Document ----

Winter Semester

Network Design and Implementation Case Study

Page 9 of 9...