campus wide network
DESCRIPTION
Report File for campus wide networkTRANSCRIPT
A Project Report On
Installation of Campus Wide Network(Prepared in IS Department, BEL)
a) ISO – 9001- 2000 b) ISO 14001 c) ISO - 18001 OHSAS
CERTIFICATION
BHARAT ELECTRONICSGHAZIABAD
Submitted by: Aman Garg (CS/11/11006)
INTRANETWORKING, INFORMATION SYSTEM DEPARTMENT
CONTENTS
ACKNOWLEDGEMENT
CERTIFICATE
PREFACE
ABOUT BEL, THE ORGANIZATION
HISTORY OF BHARAT ELECTRONICS LIMITED
CORPORATE MOTTO, MISSION & OBJECTIVE
MILESTONES
AWARDS
MANUFACTURING UNITS
ROTATION PROGRAM
D & ER
EMMCA
IS
THE PROJECT
CASE STUDY
EPILOGUE
2
3
4
5
11
18
45
46
1
INTRANETWORKING, INFORMATION SYSTEM DEPARTMENT
ACKNOWLEDGEMENT
I am very thankful to all the members of the Information System
Department. Each of them was extremely co-operative and helping,
without this help & guidance it would not have been possible for me to
complete this project. They all have been very supportive in my work
with their encouragement or criticism. I am deeply indebted to all of
them and welcome this opportunity to benefit further from their
contribution.
I pay my sincere thanks to Mr. DINESH GOEL (Manager-IS)
who permitted me to work in this Department and guided through the
tough times.
It is apt to mention that this practical experience is definitely
going to enhance my knowledge.
Sincerely,
Aman Garg
2
INTRANETWORKING, INFORMATION SYSTEM DEPARTMENT
CERTIFICATE
Dated: JULY 6th, 2013
This is to certify that Mr. Aman Garg, a student of B.Tech (COMPUTER SCIENCE), has successfully completed his summer training in Information Systems Dep’t., Bharat Electronics Limited, Ghaziabad from 28TH May 2013 to 06TH July 2013.
A Project titled “INSTALLATION OF CAMPUS WIDE NETWORK” was assigned to him. In this period he worked diligently and made valuable contribution in developing the Project. All his work is genuine and original and was timely completed.
His conduct during the course of the training was excellent.
Mr. Dinesh Goel (Manager – IS)
PROLOGUE
The four weeks industrial training is a part of 4-yr Bachelor of
Technology course. Practical industrial training mainly aims at making
3
INTRANETWORKING, INFORMATION SYSTEM DEPARTMENT
one aware of the industrial environment, which essentially means that
one gets to know the limitations, constraints as well as freedom under
which an Engineer works. One also gets an opportunity to watch from
close quarters that indicates Manager relation.
This training mainly involves industrial and complete knowledge
of designing, developing and testing of various modules recognized by
the industry.
BEL, THE ORGANIZATION
History of Bharat Electronics Limited…
With over four decades of manufacturing experience Bharat Electronics Limited has pioneered the professional electronics movement in India. With continuous upgradation of technology, commitment to quality and constant innovation, BEL has grown into a multi product, multi unit, and multi technology company.
BEL has set up impressive infrastructure and manufacturing facilities in their nine ISO certified production units around the country.
4
INTRANETWORKING, INFORMATION SYSTEM DEPARTMENT
BEL has also established two joint ventures - with General Electric Medical Systems, USA for X-ray tubes and Multitone, UK for paging systems and has a subsidiary company BEL Optronic Devices Limited for the manufacture of Image Intensifier tubes.
BEL has nurtured itself to be known as one of the best public sector units in the nation. A peep into Bharat Electronics's Archives section, gives an idea of the progress at BEL.
BEL has production units established at different parts of the country. The year of establishment and location are as follows:
Year of establishment Location
1954
1972
1979
1979
1984
1984
1985
1985
1986
Bangalore
Ghaziabad
Pune
Taloja (Maharashtra)
Hyderabad
Panchkula (Haryana)
Chennai
Machhilipathnam (A.P.)
Kotdwara (U.P.)
Motto Mission and Objectives…The passionate pursuit of excellence at BEL is reflected in a reputation with its
customers that can be described in its motto, mission and objectives:
CORPORATE MOTTO"Quality, Technology and Innovation."
CORPORATE MISSIONTo be the market leader in Defense Electronics and in other chosen fields
and products.
5
INTRANETWORKING, INFORMATION SYSTEM DEPARTMENT
CORPORATE OBJECTIVES To become a customer-driven company supplying quality products at
competitive prices at the expected time and providing excellent customer support.
To achieve growth in the operations commensurate with the growth of professional electronics industry in the country.
To generate internal resources for financing the investments required for modernization, expansion and growth for ensuring a fair return to the investor.
In order to meet the nation's strategic needs, to strive for self-reliance by indigenization of materials and components.
To retain the technological leadership of the company in Defense and other chosen fields of electronics through in-house Research and development as well as through Collaboration/Co-operation with Defense/National Research Laboratories, International Companies, Universities and Academic Institutions.
To progressively increase overseas sales of its products and services.
To create an organizational culture which encourages members of the organization to realize their full potential through continuous learning on the job and through other HRD initiatives?
Milestones in Chronological Order… Bharat Electronics Ltd has natured itself to be known as one of the best public sector units in the nation. A peep into Bharat Electronics Ltd milestones section gives an idea of the progress at Bharat Electronics Ltd.
YEAR MILESTONE
1954 Incorporation of BEL
1956 Equipment production started at Bangalore
1961 Receiving Valves
1962 Germanium Semiconductors
1966 Radar’s
6
INTRANETWORKING, INFORMATION SYSTEM DEPARTMENT
1967 Transmitting Tubes
1968 HF & Broadcast Equipment, Silicon Semiconductor
1970 X-ray Tubes & manetrones
1971 Integrated Circuits & Hybrid micro circuits
1972 B/W TV Picture Tubes
1974 Ghaziabad Unit
1979 Pune Unit
1982 Space Electronics Division
1983 Machilipatnam Integrated with BEL
1985 Madras & Panchkula Units , Broadcast & TV , Digital Communication Equipment Division
1986 Kotdwara ,Taloza & Hyderabad Units
1987 Naval Equipment Division
1988 Central Research Laboratory Bangalore
1989 Telecom-Switching & Transmission System & Mass Mfg. Facility
1991 EMI/EMC Test Facilities & Computer Software
1992 SATCOM
1993 CRL- Ghaziabad
1994 ISO-9002 Accreditation and successively ISO-9001 Accreditation in 1996
Awards for BEL…
Sl.No.Details of the Award Year
1.FICCI Award for Research in Science & Technology(for the corporate initiative of R&D)
1990
2.
DSIR National R&D Award(for successful commercialization of Public Funded R&D)(for D&E project handled at BEL-GAD)
1992
3.
DSIR National R&D Award(for in house R&D efforts under Electronics & Electrical Industries Sector)(for D&E projects handled at BEL-Bangalore, Machilipatnam & Ghaziabad)
1993
7
INTRANETWORKING, INFORMATION SYSTEM DEPARTMENT
4.
DSIR National R&D Award(for in house R&D efforts under Electronics Industries Sector)(for D&E Projects handled at BEL-Bangalore & Ghaziabad)
1995
5.
DSIR National R&D Award(for successful commercialization of Public Funded R&D)(for D&E projects handled at BEL-Bangalore & Panchkula)
1998
6.Defense Technology Absorption Award '98(Sponsored by DRDO)(for D&E projects handled at BEL-Hyderabad)
1999-2000
7.
Award for Excellence in R&D for the year 1998(sponsored by Ministry of Information Technology, GoI)(for BEL-Ghaziabad's developments of various IFF Systems)
2000-2001
8.
Award for Excellence in Professional Electronics for the year 1998(sponsored by Ministry of Information Technology, GoI)(for BEL-KOT's excellent performance in Production, R&D & its commitment to Quality & Service)
2000-2001
9.
Award for Contribution in areas of Defense R & D to Col. (Retd.) H. S. Shankar, Director ( R & D) for the year 2001-2002(sponsored by Society for Defense Technologists - SODET)
2001-2002
Manufacturing Units:
BANGALORE (KANARATAKA)
BEL started its production activities in Bangalore on 1954 with 400W high frequency
(HF) transmitter and communication receiver for the Army. Since then, the Bangalore
Complex has grown to specialize in communication and Radar/Sonar Systems for the
Army, Navy and Air-force.
BEL’s in-house R&D and successful tie-ups with foreign Defense companies and Indian
Defense Laboratories has seen the development and production of over 300 products in
Bangalore alone. The Unit has now diversified into manufacturing of electronic products
for the civilian customers such as DoT, VSNL, AIR and Doordarshan, Meteorological
8
INTRANETWORKING, INFORMATION SYSTEM DEPARTMENT
Dept., ISRO, Police, Civil Aviation and Railways. As an aid to Electorate, the unit has
developed Electronic Voting Machines that are produced at its Mass Manufacturing
Facility (MMF).
GHAZIABAD (UTTER PRADESH)
The second largest Unit at Ghaziabad was set up in 1974 to manufacture special types
of radar for the Air Defense Ground Environment Systems (Plan ADGES). The Unit
provides Communication Systems to the Defense Forces and Microwave Communication
Links to the various departments of the State and Central Govt. and other users. The
Unit’s product range included Static and Mobile Radar, Tropo scatter equipment,
professional grade Antennae and Microwave components.
PUNE (MAHARASHTRA)
This Unit was started in 1979 to manufacture Image Converter Tubes. Subsequently,
Magnesium Manganese-dioxide Batteries, Lithium Sulphur Batteries and X-ray
Tubes/Cables were added to the product range. At the present the Laser Range Finders
for the Defense services.
MACHILIPATNAM (ANDHRA PRADESH)
The Andhra Scientific Co. at Machilipatnam, manufacturing Optics/Opto-electronic
equipment was integrated with BEL in 1983. The product line includes passive Night
Vision Equipment, Binoculars and Goggles, Periscopes, Gun Sights, Surgical Microscope
and Optical Sights and Mussel Reference Systems for tank fire control systems. The Unit
has successfully diversified to making the Surgical Microscope with zoom facilities.
PANCHKULA (HARYANA)
To cater the growing needs of Defense Communications, this Unit was established in
1985. Professional grade Radio-communication Equipment in VHF and UHF ranges
entirely developed by BEL and required by the Defense services are being met from this
Unit.
CHENNAI (TAMIL NADU)
9
INTRANETWORKING, INFORMATION SYSTEM DEPARTMENT
In 1985, BEL established another Unit at Chennai to facilitate manufacture of Gun
Control Equipment required for the integration and installation and the Vijay anta tanks.
The Unit is now manufacturing Stabilizer Systems for T-72 tanks, Infantry Combat
Vehicles BMP-II; Commander’s Panoramic Sights & Tank Laser Sights are among others.
KOTDWARA (UTTER PRADESH)
In 1986, BEL started a unit at Kotdwara to manufacture Telecommunication Equipment
for both Defense and civilian customers. Focus is being given on the requirement of the
Switching Equipment.
TALOJA (MAHARASHTRA)
For the manufacture of B/W TV Glass bulbs, this plant was established in collaboration
with coming, France in 1986. The Unit is now fully mobilized to manufacture 20’’ glass
bulbs indigenously.
HYDERABAD (ANDHRA PRADESH)
To coordinate with the major Defense R&D Laboratories located in Hyderabad, DLRL,
DRDL and DMRL, BEL established a Unit at Hyderabad in 1986. Force Multiplier Systems
are manufactured here for the Defense
ROTATIONROTATION -PROGRAMME
The first week of the training consists of a rotational training
programme comprising of a visit to different sections of the
organization. Out of the various nine departments in BEL, rotational
visit is done in the ones related to the streams. The trainees in groups
are sent to the departments and they are to report to the D.G.M where
they are told about the activities and projects being undertaken. The
rotational training proves to be quite significant in getting an overview
about the organization as it imparts knowledge about the basic
questions like-what, how, where?
The departments are allowed to be visited for two days in each
department. The departments covered in the rotational training were:-
10
INTRANETWORKING, INFORMATION SYSTEM DEPARTMENT
1. D & E or Development and Engineering
2. EMMCA or Equipment Modular Command & Control
Application
3. IS or Information Systems
IS: Information System…
This department deals with the financial information of the organization. It also
provides various information to organization and employee.
Employee daily entry.
Pay of the employee.
Required list of the purchase item.
Maintenance of the networking system.
This department also deals with the networking system of organization. All the data
of the organization is stored here in the computer (servers). It also sees the
requirement of the employee on the computers. They provide various information
through intranet to the employee like
11
INTRANETWORKING, INFORMATION SYSTEM DEPARTMENT
Internal and co-operate office circular.
Internet
Net term (internal software)
IS department is responsible for BEL’s own homegrown manufacturing and control
system called BELMAC. It comprises of almost all modules a modern ERP system but
is host and dumb terminal based.
12
INTRANETWORKING, INFORMATION SYSTEM DEPARTMENT
NETWORK
THE PROJECT(INSTALLATION OF CAMPUS WIDE NETWORK)
Aim: To plan, design, implement & establish a campus wide network.
13
INTRANETWORKING, INFORMATION SYSTEM DEPARTMENT
Description: A NETWORK is the mechanism that enables distributed
computers and their users to communicate and share resources.
A Network at its simplest is anything that enables two or more
computers to communicate with each other and/or other devices. This
enables users to use computers and networks to share information,
collaborate on a work item, print and even communicate directly
through individually addressed messages.
There is need for standardization of the aspects of the network. Today,
many different standards bodies are responsible for defining national
and/or international standards for different aspects of information
technologies, including data communications and networking. Although
frequently these standard bodies either collaborate or cooperate to
ensure as universal set of standards as possible, there can still be
some confusion, although overwhelming effect is positive. We give
below the names of some standard organizations:-
1. ANSI-AMERICAN NATIONAL STANDARD INSTITUTE
2. IEEE-INSTITUTE OF ELECTRICAL & ELECTRONICS ENGINEERS
3. ISO-INTERNATIONAL ORGANISATION FOR STANDARDIZATION
4. IEC-INTERNATIONAL ELECTROTECHNICAL COMMISION
5. IAB-INTERNET ARCHITECTURE BOARD
Part-I: To prepare the user nodes/workstation.
In order to prepare and enable the client/user end workstations to
become part of LAN setup it must have the following requirements:
14
INTRANETWORKING, INFORMATION SYSTEM DEPARTMENT
Hardware Requirements
Software Requirements
Hardware Requirements
To enable the client/user and workstation to become a part of LAN
setup we need to fulfill following hardware requirements:
Minimum 128 MB RAM (256 MB RAM recommended).
A NOS (Network operating system) should be installed on the
system (as recommended by Microsoft).
It must support or consist of TCP/IP protocol suite.
A Network Interface Card should be installed on the PCI slot in the
system cabinet. e.g. Realtek RTL8139/810x Family Fast.
A Network Interface Card (NIC) is a printed circuit board that is
installed in a computer’s I/O bus. The back of the card contains a
physical interface for a specific connector type. Each connector type is
designed for a specific transmission media. This card provides the
connectivity between a computer’s internal system resources and the
external resources connected to the network. It embodies the logic of
LAN’S Data Link and Physical Layers.
15
INTRANETWORKING, INFORMATION SYSTEM DEPARTMENT
16
INTRANETWORKING, INFORMATION SYSTEM DEPARTMENT
Software Requirements
After establishing the hardware now our next step is to install
necessary software required. The software requirements are:
TCP/IP protocol stack
A protocol suite is a suite of related communication protocol that offers
users the mechanism and services required to communicate with other
network connected machines. From the user’s perspective, the
protocol stack is that what makes a network usable. It is a connection
oriented protocol. It is different from UDP (User Datagram Protocol) in
which the connection is not established and a data is sent in the form
of packets. Data is sent in the form of packets and a connection is
established between the sender and receiver.
The most important function of the network protocol is to make sure
that information reaches the network location .It accomplishes this
task by routing packets of information to location specified by the
Internet Protocol Addresses.
The TCP/IP header contains two addresses:
The source address that the message comes from and
The destination address that it is being sent to.
Because humans don’t relate to strings of numbers very well
computers are typically identified by names. For information to reach
the address where humans wanted to be some resolution must be
reached between the numerical IP address understood by the
computer and the alpha numeric names given to them. To accomplish
this TCP/IP relies on a group of protocols and services that represent
17
INTRANETWORKING, INFORMATION SYSTEM DEPARTMENT
special advanced name and address resolution functions .These
protocols and services include:
DNS-Domain Name System
WINS-Window’s Internet Naming Services
DHCP-Dynamic Host Configuration Protocol
ARP-Address Resolution Protocol
In addition to these supporting protocols associated with IP/Computer
name resolution, the TCP/IP protocol suite includes support for:
Electronics Mail Transportation
File And Print Services
Web Browsing
Network Troubleshooting
18
INTRANETWORKING, INFORMATION SYSTEM DEPARTMENT
Naming Convention
Before creating the first user account a naming convention must be
established. The most workable system for creating username is one
19
INTRANETWORKING, INFORMATION SYSTEM DEPARTMENT
that enables easy identification of the users yet is flexible enough to
allow unique naming. A naming system that consists of either the first
initial and last name or the first name and last initial are two that are
workable and limit user confusion. NBP is a Name Binding Protocol
contains the four basic functions:
1. Name Registration
Name registration registers the unique logical name in an NBP registry
database.
2. NAME LOOKUP
Name Lookup is provided to a computer that request’s another
computer’s address. This request is made and resolved transparently.
If the request is made using an object name NBP converts the name to
a numeric address. NBP always attempt to resolve such requests by
looking at the local node number. If no match is found, it broadcast a
request to other internetwork, if match still can not be found, the
request times out and requestor receives an error message.
3. Name Configuration
Configuration request are used to verify object-address relationship.
4. Name Deletion
Device on any network are periodically shut down or removed. When it
happens, a name deletion request is sent, and object name-to-
addressing tables are automatically updated.
We below give a snapshot which confirms our point of unique name of
a computer system.
20
INTRANETWORKING, INFORMATION SYSTEM DEPARTMENT
Valid IP Address
21
INTRANETWORKING, INFORMATION SYSTEM DEPARTMENT
An IP address is a 32-bit binary addressing scheme to identify
networks, network devices, and network connected machines. These
are strictly regulated by the Internet Network Information center
(InterNIC). Although it is entirely possible for a network administrator
to arbitrarily select unregistered IP address, this practice should not be
condoned .Computers having such spurious IP addresses can only
function properly with in the confines of their domain.
There are five classes of IP addresses each defined by an alphabetic
character: Class A, B, C, D and E. Each address consists of two parts: a
network address and a host address. The five classes represent
different compromises between the number of supportable networks
and hosts. Although these networks are binary, they are normally
identified with a dotted decimal style format ex: (135.65.121.6) to
facilitate the human usage. The dots are used to separate the address
four octants. Range of IP addresses for each class is given below:
Class A – 1.0.0.0 to 126.0.0.0.
Class B - 128.1.0.0 to 191.256.0.0.
Class C – 192.0.1.0 to 223.255.254.0.
Class D - 224.0.0.0 to 239.255.255.254.
Class E - there is no class E address for use
on the net.
We give below an example of unique IP address of a system. Here we
see that the computer has 80.0.68.13 as the IP address. Theses IP
addresses are provided by the protocol known as Dynamic Host
Configuration Protocol (DHCP).
22
INTRANETWORKING, INFORMATION SYSTEM DEPARTMENT
PART 2: TO PREPARE A NETWORKING INFRASTRUCTURE
To establish a networking infrastructure we have to fulfill the following
requirements:
23
INTRANETWORKING, INFORMATION SYSTEM DEPARTMENT
Hardware Requirements
Software Requirements
Hardware Requirements
Some Networking Devices
In the physical layer, we find the repeaters. These are analog devices that are connected to two cable segments. A signal appearing on one of them is amplified and put out on the other. Repeaters do not understand frames, packets, or headers, they understand volts. E.g. Classic Ethernet was designed to allow 4 Repeaters, in order to extend maximum cable length from 500 Mts to 2500 Mts.
A Hub has a number of input lines that it joins electrically. Frame arriving on any of the lines are sent out on all the others. If two frames arrive at the same time they will collide, just as on Coaxial cable. The entire hub forms a single collision domain. All lines coming into hub must operate at same speed. Hubs unlike repeaters do not amplify signals (usually) and are designed to hold multiple line cards each with multiple inputs, otherwise differences are slight.
A Bridge connects two or more LANs. When a frame arrives software in the Bridge extracts the destination address, from the frame header and looks it up in the table to see where to send the frame. For Ethernet this address is the 48 bit destination address. Like a Hub, modern Bridge has line cards, usually for 4 to 8 input lines of a certain type. A line card for Ethernet can’t handle, say token ring frames because it doesn’t know where to find destination address in the frame header. With a Bridge, each line is its own collision domain, in contrast to a Hub.
Switches are similar to bridges in that both route on frame addresses. Main difference is that a Switch is most often used to connect individual computers.
A Router is a device that forwards data packets along networks. A router is connected to at least two networks, commonly two LANs or WANs or a LAN and its ISP network. Routers are located at gateways, the places where two or more networks connect. Routing is a process preformed by a router which moves packets of data around the
24
INTRANETWORKING, INFORMATION SYSTEM DEPARTMENT
Internet. A router makes sure that a message is sent and received and is part of what makes TCP/IP such a useful protocol suite.
To be able to successfully start routing a router uses headers and a forwarding table to find the destinations for packets. A router uses the ICMP protocol section of the TCP/IP protocol suite. Routers use headers and forwarding tables to determine the best path for forwarding the packets, and they use protocols such as ICMP to communicate with each other and configure the best route between any two hosts.
Very little filtering of data is done through routers
A network gateway is an internetworking system, a system that joins two networks together. A network gateway can be implemented completely in software, completely in hardware, or as a combination of the two. Depending on their implementation, network gateways can operate at any level of the OSI model from application protocols to low-level signaling.
A Cisco router is a computer device that receives or forwards data packets to and from the Internet towards a destination in the process called routing. A router is the essential component of the computer networking that enables any sent data to arrive at the right destination.
A router (broadband router) is also a device that enables two or more computer to receive data packets from the Internet under one IP address at the same time.
Remember that to be able to connect to the Internet; a computer must have an IP address unique from the rest of the computers. Therefore, every computer connected to the Internet has it own IP address. It is like having a fingerprint or ID as an access pass to be
able to enter the web. With the presence of the router, this ?fingerprint? or ?ID? could be shared by two or more computer at the same time.
In simplest form, a router makes two or more computer use the Internet at the same with one access pass.
25
INTRANETWORKING, INFORMATION SYSTEM DEPARTMENT
Application Layer Application Gateway
Transport Layer Transport Gateway
Network Layer Router
Data link Layer Bridge, Switch
Physical Layer Repeater, Hub
26
INTRANETWORKING, INFORMATION SYSTEM DEPARTMENT
Layer3 switch (Central Switch) Router
1 Chassis based switch architecture with scalable back pane bandwidth over 32 Gbps.
2 Multi-layer switching performance over 15 Million pps (64 Byte).
3 Should support voice and data integration on the same switch to provide a single platform for running a multi-service network.
4 Should provide for capability to integrate VoIP using IP Telephone in the campus.
5 Should have provision to upgrade current 10BAseT/100BaseTX modules for in-line power to IP phones or should allow for the same externally.
6 Efficient intranet multimedia and multicast support through protocol independent multicast (PIM), Internet Group Management Protocol (IGMP), and GARP Multicast Registration Protocol (GMRP) delivering end to end, scalable bandwidth for multimedia and multicast applications.
7 Should support QoS policies enforced by using Layer 2, 3, and 4 information such as, precedence bits from IP, and 802.1p frames or layer 4 port numbers.
8 Support for in-built protocol based Server load balancing for optimal server utilization.
9 Support for fast Web Caching for optimal network utilization. Support for Web Caching Control protocol (WCCP2).
10 Support for multiple queues with configurable thresholds employing queue management techniques like WRED, WRR, and type of service / class of service (ToS/CoS) mapping mechanism to ensure that QoS is maintained as packets traverse Layer 2 and Layer 3 boundaries.
11 Support for wide range of IP, IPX, and IP multicast routing protocols.
12 Support for over 32000 MAC addresses.13 IEEE 802.1Q, 802.1p, 802.3x14 Ethernet: IEEE 802.3u, 100Base TX, 100Base FX.15 Gigabit Ethernet: IEEE 802.3z.
27
INTRANETWORKING, INFORMATION SYSTEM DEPARTMENT
16 Support for hot standby redundancy on Layer 3.17 Support for SNMP MIB-II, 4 groups of RMON-1 (RFC 2819)
on each ports and RMON-2 (RFC 2021) through external Network Analysis Module.
18 Support for SMON – Switch monitoring.19 Support for IEEE 802.1D Spanning-Tree Protocol instance
per VLAN preferred.20 Modular architecture for quick replacement of faulty
modules.21 Redundancy and fault tolerance :
o Requirement for redundant switching matrix / Supervisory / Controller in central switch.
o Requirements for supporting redundant, load sharing and hot pluggable power supply.
o Requirement for Redundant Supervisory and Management module.
o Requirement for Redundant System clocks.o Requirement for Redundant Fan modules.
22 Requirement for hot swappable I/O modules.23 Support for over 4000 VLANs.24 Security: Switch to support Secure Port filtering, TACACs+
and IP permit lists, dynamic ACLs and MD5 Route authentication shall be preferred. If the same is offered by connecting an external device, then it is to be indicated.
25 Port requirement :o Gigabit Ethernet – provision for over 40 ports.o Fast Ethernet – 48 ports 10 BaseT / 100 BaseTX.
Option to enhance port count to over 200, should be able to support inline power if required.
o WAN ports support option for T1/E1, T3/E3, HSSI, ATM, and POS in the same chassis for future upgradeability.
o Voice support using FXS (at least 48 ports in the same chassis), E1.
26 Single TFTP download for entire chassis for the purpose of upgrade of Switch S/W.
27 Advanced diagnostic support for troubleshooting requirements.
28
INTRANETWORKING, INFORMATION SYSTEM DEPARTMENT
Layer 2 Switches (Distribution Switches)
1 24/48 port 10Base T/100Base TX ports with full-duplex operation and auto sensing on each switched 10/100 port.
2 Modular field – replaceable Gigabit modules support SX, LX, LH and ZX (extended reach over 70km) capability.
3 Over 10 Gbps aggregate switching fabric.4 Over 8 Million pps forwarding rate.5 Support for at least 16 MB DRAM and 4 MB of Flash Memory.6 Dual priority forwarding queues on each 10/100 and Gigabit
Ethernet port with support for 802.1p.7 Bandwidth aggregation over 10/100 and Gigabit Ethernet up to 4
Gbps.8 Per port broadcast storm protection.9 Support for 4 groups of RMON – History, statistics, alarms, and
events on board. Support for 9 groups by using external analyzer through use of SPAN (Switch Port Analyzer).
10 Support for NTP (Network Time Protocol).11 8192 MAC Addresses.12 802.1Q VLAN configuration on all ports.13 Support for IEEE 802.1D Spanning – Tree Protocol instance per
VLAN preferred. Please indicate.14 IEEE 802.1p ready. Must provide two priority queues on 10/100
ports and 8 priority queues on Gigabit Ethernet ports allowing users to prioritize data packets.
15 Support for 802.3x full duplex on all ports.16 Support for switches to be stacked or clustered and manageable
using a single IP address.17 Support for up to 250 port based VLANs.18 Bandwidth aggregation support for Inter-switch links.19 Imbedded web based Network Management Software to
configure and manage all stacked/clustered switches. Quote for external HTTP server in case it is required.
20 Support for SNMP MIB – II, SNMP MIB extensions, Bridging MIB (RFC 1493).
21 Support for Telnet and Command Line Management.22 Support for IP multicast.23 Multifunction LEDs per port for port status, half-duplex/full-
duplex, and 10BaseT/100BaseT indication as well as switch-level status LEDs for system, RPS, and bandwidth utilization.
29
INTRANETWORKING, INFORMATION SYSTEM DEPARTMENT
Access Switches
1 Support for at least 8 ports of 10BaseT/100BaseTX working simultaneously is required.
2 Support for Auto-sensing and Auto-negotiation on each port.3 Support for Web-based network management in addition to
regular management using SNMP.4 Support for at least 4 port-based VLANs.5 Internal power supply is required.
HUB Specifications
1 16 port of 10 Mbps each.2 Unmanaged and standalone.3 One AUI port.4 Inbuilt power supply.5 19” Rack Mounted.6 Front LED for Status and Link.
Following Minimum Configuration required with above parameters.
1. Minimum 9 Slot Chassis 1 Nos.2. Supervisory / Controller Module 1 Nos.3. Min. 10 Gigabit Ports 8 Nos. 1000 BaseSX & . 2 Nos 1000 BaseLX.4. Redundant Supervisory / Controller 1 Nos Module5. Redundant Power Supply 1 Nos.6. 1 Port QC-12 Uplink Module 1 Nos.7. 36 / 48 Port 10/100 BaseTX Module 1 Nos.
30
INTRANETWORKING, INFORMATION SYSTEM DEPARTMENT
UTP Cabling Specifications
1 Enhanced CAT-5 cable (4 pair)
comply with ISO/IEC ISO 11801 ANSI/TIA/EIA/568 A/Bshould preferably be tested and verified to exceed the draft TIA specifications for 1000Base T (Gigabit Ethernet)CMR ratedUL verifiedUL listedMinimal delay skew < 8 nsElectrical characteristics:Impedance 100Ω ± 15 Ω from 1MHz to 350 MHzDC Resistance 28.6 Ω / 305m MaxResistance unbalance 5% maxPhysical characteristicsConductor: solid copperConductor diameter: 0.511 ± 0.005 mmInsulation: polyolefinInsulation thickness: 0.125 ± 0.03 mmJacket: PVCOuter diameter: 5.1 ± 0.4 mmMax Temperature: 75 0C
2 Enhanced CAT-5 UTP Information Outlets
Comply with TIA/EIA/568 A/BAngled SocketHigh Durability RJ45 InterfaceMechanicalTermination Tools:Krone (BT Inserter Wire 2A)/11IDC terminals:Suitable for 0.4 mm – 0.6 mm solid or stranded cable, max D.1.5 mmTwo wires may be terminated for Daisy chain applications25 re terminals possible.RJ45 Connector:Body material UL 94VOThermoplastic, suitable for minimum 1000 mating cyclesConnector composition:1.25 mm gold over 2.5 mm nickel over phosphor bronzeElectricalDC Resistance: 20 mΩ or lessDC Resistance Imbalance: 2.0 m Ω or less
31
INTRANETWORKING, INFORMATION SYSTEM DEPARTMENT
Insulation Resistance: >100 M ΩAttenuation (dB)@1 MHz 0.0121 or better@16 MHz 0.0193 or better@100 MHz 0.1052 or betterNear End Crosstalk@1 MHz 84.26 or better@16 MHz 60.03 or better@100 MHz 42.32 or betterReturn Loss (dB)@1 MHz 51.26 or better@16 MHz 36.99 or better@100 MHz 18.06 or better
3 Patch Cord (Enhanced CAT-5)7 ft3 ft
Comply with TIA/EIA/568 A/BUTP / RJ45 Patch cords4 Pair cable assembly that is fully compatible with voice, data and video applicationsConstructed of stranded UTP cable for maximum flexibility and integrityBuilt in strain relief on connectors(Boots)Mechanical SpecificationsCableGauge: 24 AWG stranded copper wire pair count: 4 pairs individually color codedSequenceWiring sequence in 568 A and 568 B availableLengths: 0.3m; 0.6mm; 1.0mm; 1.5mm; 2.0mm; 3.0mm; 4.5mm; 5.0mm; 6.0mm; 7.0mm; 8.0mm; 9.0mm; 10.0mm;Temperature range: -40 0C to 60 0CCrimping PlugHousing: natural polycarbonate UL 94V-2Contract Material: Phosphor BronzeContact Plating: 1.25mm gold over 2.5mm NickelCable to PlugTensile strengths: 7.71 kg minElectrical characteristicsCableTIA/EIA category 5 LAN PerformanceETL verifiedDC resistance per lead 0.085 Ω/m nominalDC resistance unbalanced 3% nominalNominal mutual capacitance 49.6 pF/mCharacteristic Impedance 100Ω (15 % from 1 to 100MHz)ACA Approval
32
INTRANETWORKING, INFORMATION SYSTEM DEPARTMENT
4 Jack panels / patch panels (Enhanced CAT-5)
Comply with TIA/EIA/568 A/BCapable accommodating 22-26 AWG solid/standard wires along with cable management clamps on rear and front sideCapable of mounting on 19” rack
5 Wall mount racks 12 U
Single/Double section rack 600 mm wide X 500 mm deepRigid frame which can be fixed to the wallAdjustable 19” rails in the frontFixed mounting rails in the rearTop & Bottom cable entry facilityFront section with glass doorLoad rating 40 KGMaterial made of steel & power coatedSteel door & glass door trims to be powder coated
6 Floor mount rack 42 U
With 800 mm deepFront Glass Door and back Steel Door
7 PVC channel casing & capping
ISI makeStandard class – A PVC channelPVC channel used should have 25% free space to accommodate the further requirementsThe PVC channel with casing & capping should be fired & cold/alkali retardant and rodent proof
8 GI pipe Class B typeISI Make
9 Information outlet
EN 60603 – 7 (IEC 603 – 7) and EN 28877 (ISO 8877)8 positions modular MGS 200 connector and of the insulation displacement typeCapable of receiving of 24 AWG solid and stranded wiresShould be either surface or flush mounted, single or dual sockets
Software Requirements
33
INTRANETWORKING, INFORMATION SYSTEM DEPARTMENT
DNS Servers
DNS servers called name servers manage portion of a hierarchical
namespace-a group of related objects contained within a small subset
of the realm of the network. The entire namespaces hierarchical to
allow for the unique identification by name of every system attached to
the connected networks and registered in database maintained by
34
INTRANETWORKING, INFORMATION SYSTEM DEPARTMENT
name servers. The DNS hierarchy is divided into domains or zones that
form an inverted tree that starts at the route and branches downward
through independently managed domains. Authority to manage host
name-to-IP address mappings within a domain is delegated by an
administrator of a domain holding a position in the hierarchy directly
above the domain.
Any given name server knows only about the domains it’s
directly responsible for managing as well as the name servers for any
domains directly above and below its managed domains in the DNS
hierarchy. System that are represented by entries in a domain
database on a name server can be uniquely identified with in the DNS
hierarchy using a combination of host name and domain name for e.g.:
if a system has a host name of “SNOOPY” with in the domain base for
foo.bar.com, it can be contacted by a client system outside the domain
using the name snoopy.foo.bar.com, as long as the client system
resolves names with the name server with the same hierarchy. This
combination of host name and domain name is sometimes referred to
as an FQDN (Fully Qualified Domain Name).
Remote Access Server (RAS)
Remote access is the ability to get access to a computer or a network from a remote distance. In corporations, people at branch offices, telecommuters, and people who are traveling may need access to the corporation's network. Home users get access to the Internet through remote access to an Internet service provider (ISP). Dial-up connection through desktop, notebook, or handheld computer modem over regular telephone lines is a common method of remote access. Remote access is also possible using a dedicated line between a computer or a remote
35
INTRANETWORKING, INFORMATION SYSTEM DEPARTMENT
local area network and the "central" or main corporate local area network. A dedicated line is more expensive and less flexible but offers faster data rates. Integrated Services Digital Network (ISDN) is a common method of remote access from branch offices since it combines dial-up with faster data rates. Wireless, cable modem, and Digital Subscriber Line (DSL) technologies offer other possibilities for remote access. A server that is dedicated to handling users that is not on a LAN but need remote access to it. A remote access server is the computer and associated software that is set up to handle users seeking access to network remotely. Sometimes called a communication server, a remote access server usually includes or is associated with a firewall server to ensure security and a router that can forward the remote access request to another part of the corporate network. A remote access server may include or work with a modem pool manager so that a small group of modems can be shared among a large number of intermittently present remote access users. A remote access server may also be used as part of a virtual private network (VPN).
ePolicy Orchestrator (EPO)
ePolicy Orchestrator® is a security management solution that gives you a coordinated defense against malicious threats and attacks. As your central hub, you can keep protection up to date; configure and enforce protection policies; and monitor security status from one centralized console.
Benefits:1 Enforces compliance and updates2 ePolicy Orchestrator lets you effectively manage policy
compliance and updates;3 You lower the risk of noncompliant systems compromising your
security Comprehensive security management4 Handle all your enterprise-wide system protection with this
centralized management infrastructure. 5 It covers anti-virus, anti-spy ware, host IPS, content filtering, and
Microsoft® patch assessment Find non-compliant systems6 It helps you identify noncompliant systems that increase your
risk of vulnerability and infection Assesses Microsoft patch compliance
7 You can assess Microsoft patch compliance and audit your current patch rollout processes; it informs you about your exposure to new exploits and vulnerabilities Monitors security all day, every day
36
INTRANETWORKING, INFORMATION SYSTEM DEPARTMENT
8 You can monitor security status 24/7, evaluate your policy status, and find your network's vulnerabilities from one centralized
Features:1 Noncompliant system detection2 ePolicy Orchestrator lowers your risks due to noncompliant
systems by alerting you when such systems are connected to your corporate network Patch compliance and reporting
3 ePolicy Orchestrator lets you search for a file, service, registry key, or specific Microsoft patch; you can monitor the compliance by viewing detailed graphical reports Virus tracking and notification
4 It tracks new anti-virus security updates every hour and deploys them to appropriate systems without your intervention Automatic and fast global updating
5 Updates are distributed efficiently and quickly, so that you can respond to new and emerging threats more quickly
6 McAfee ePolicy Orchestrator delivers a coordinated, proactive defense against malicious threats and attacks. As a central hub for system security, you work through a single console to keep protection up to date, enforce protection policies, and lower the risk of infection and vulnerability due to noncompliant systems.
7 ePolicy Orchestrator enforces compliance and updates. It enables your administrators to handle enterprise-wide protection using anti-virus, anti-spy ware, system firewalls, host IPS, and content filtering. It will also check for critical Microsoft® security patches, and pinpoint a virus source and take remedial action.
Mail ServerA host server which holds e-mail messages for clients. The client (the program you use to get your e-mail) connects to the mail server and retrieves any messages that are waiting for you.The computers at your ISP that handle email coming into your account as well as all the email you send out. A mail transfer agent or MTA (also called a mail server, or a mail exchange server in the context of the Domain Name System) is a computer program or software agent which transfers electronic mail messages from one computer to another.
Dynamic Host Configuration Protocol (DHCP)
It is a client server networking protocol. The Dynamic Host Configuration Protocol (DHCP) is a protocol that automates the
37
INTRANETWORKING, INFORMATION SYSTEM DEPARTMENT
assignment of IP addresses; subnet masks default routers, and other IP parameters. The assignment usually occurs when the DHCP configured machine boots up, or regains connectivity to the network. The DHCP client sends out a query requesting a response from a DHCP server on the locally attached network. The DHCP server then replies to the client PC with its assigned IP address, subnet mask, DNS server and default gateway information. The assignment of the IP address usually expires after a predetermined period of time, at which point the DHCP client and server renegotiate a new IP address from the server's predefined pool of addresses. Configuring firewall rules to accommodate access from machines who receive their IP addresses via DHCP is therefore more difficult because the remote IP address will vary from time to time. You'll probably have to allow access for the entire remote DHCP subnet for a particular TCP/UDP port. Most home router/firewalls are configured in the factory to be DHCP servers for your home network.
DHCP operations fall into four basic phases. These phases are IP lease request, IP lease offer, IP lease selection, and IP lease acknowledgement.
IP Lease Request -- Whenever a computer comes on line, it checks to see if it currently has an IP address leased. If it doesn't, it requests a lease from a DHCP server. Because the client computer doesn't know the address of a DHCP server, it uses 0.0.0.0 as its own IP address and 255.255.255.255 as the destination address. Doing so allows the client to broadcast a DHCPDISCOVER message across the network. Such a message consists of the client computer's Media Access Control (MAC) address (the hardware address built into the network card) and its NetBIOS name.
IP Lease Offer -- When a DHCP server receives an IP lease request from a client, it extends an IP lease offer. This is done by reserving an IP address for the client and broadcasting a DHCPOFFER message across the network. This message contains the client's MAC address, followed by the IP address that the server is offering, the subnet mask, the lease duration, and the IP address of the DHCP server making the offer.
IP Lease Selection -- When the client PC receives an IP lease offer, it must tell all the other DHCP servers that it has accepted an offer. To do this, the client broadcasts a DHCPREQUEST message containing the IP address of the server that made the offer. When the other DHCP servers receive this message, they withdraw any offers that they might have made to the client. They then return the address that they had reserved for the client back to the pool of valid addresses that they can offer to another computer. Any number of DHCP servers can respond to an IP lease request, but the client can only accept one offer per
38
INTRANETWORKING, INFORMATION SYSTEM DEPARTMENT
network interface card.
IP Lease Acknowledgement -- When the DHCP server receives the DHCPREQUEST message from the client, it initiates the final phase of the configuration process. This acknowledgement phase involves sending a DHCPACK packet to the client. This packet includes the lease duration and any other configuration information that the client might have requested. At this point, the TCP/IP configuration process is complete.
CASE STUDY
We have defined all the networking aspects theoretically and than
we have used our concepts practically i.e. we have established a
network consisting of 100 nodes (approx.). For our objective first of
all we enabled each computer system with:
An NIC (Network Interface Card). The network Interface Card is
designed for specific IP addresses.
We have loaded a network recommended operating system in all
the systems.
We fulfilled the RAM requirement for a system.
UTP Cable (Unshielded Twisted Pair).
Fiber Optics Cable
I/O box
Switches
39
INTRANETWORKING, INFORMATION SYSTEM DEPARTMENT
Rack
These all were the hardware requirements.
After the hardware requirements, we come to software
requirements which are:-
Assigning of IP address by DNS (Domain Name System) or
DHCP (Data Host Configuration Protocol).
Each Computer is assigned a specific Name so that it can be
easily identified on the network.
We divided all the computers in different group, and assigned
each group a specific WORKGROUP name.
We used TCP/IP protocol suit to enable the transfer of date.
We made Enterprise Level Anti Virus Solution to test the
different modules.
EPILOGUE
I have finished the industrial training scheduled in Bharat Electronics Limited and I am very thankful to the employees of HRD department and Systems department for letting access all the means under their control which were necessary for fulfillment of the training and lending a helping hand in tough times. I would say that I had a wonderful experience in BEL and wish for the progress of the company to reach greater heights.
I was involved in a project along with 2 other unpaid trainees (upt’s), this actually helped me understand the aspects of teamwork and how a team should go about a project in a methodical and planned manner.
On a personal and a moral front I have understood that one should always enjoy the work he is doing and only then one can actually be successful, another lesson is that no matter how senior an employee you are there will always be someone who needs your guidance and help, and also consequently there will always be someone from whom you can learn and gain something, so never be shy or egoistic in doing so.
And last but not the least aspect is that there is no substitute to hardwork, be that from catching the bus at 7:30 in the morning to
40
INTRANETWORKING, INFORMATION SYSTEM DEPARTMENT
reach the workplace or at the work in the office, so hats off to my parents and employees who have been doing this for a long time to earn their living and feeding us.
41