it. support networking threaded case study school: r.e. miller by: shane coyne. andrea martyn. gary...
Post on 20-Dec-2015
217 views
TRANSCRIPT
IT. Support Networking
Threaded Case Study
School: R.E. Miller
By:Shane Coyne.
Andrea Martyn.Gary Hall.
Barry Gray.
Presented by:Gary Hall & Andrea Martyn
On Fri 6th June 2003 @ 11:45am
WAN TOPOLOGYWAN TOPOLOGY(Wide Area Network)(Wide Area Network)
SECTION 1.Wide Area Network (WAN)
The WAN will connect the schools and the administrative offices with the district office for the purpose of delivering data
The WAN will be based on two layer hierarchical model.
TCP/IP & Novell IPX are the only protocols accepted for WAN
IGRP is the routing protocol we used for the WAN
•3 Regional Hubs. •Phoenix N. W (data centre)•Greenway (service centre)•Shaw Butte school
Logical Addressing SchemeLogical Addressing Scheme
We have decided to use a class c We have decided to use a class c addressing schemeaddressing scheme
• 10.10.1.x – students10.10.1.x – students• 10.10.2.x – teachers/admin10.10.2.x – teachers/admin
LAN TOPOLOGYLAN TOPOLOGY(Local Area Network)(Local Area Network)
Local Area Network (LAN) & Wiring Scheme
Cable types for transport: 1) Ethernet 10base-t 2) 100base-TX 3) 100base-FX
Horizontal cabling: cat 5 unshielded twisted pair(100mb)Vertical (backbone) cabling: fiber optic multimode cable
MDF at central point of LAN (all cabling will be terminated here)
POP (point of presence) for wan will be at the MDF.
Routers/LAN switches will be placed in the MDF
There will be three IDFs at the re miller
Each room must have 4 cat 5 UTP cable runs, with one terminated at the teachers workstation. The other three are for the students. A total of 325 computers will be installed at the R.E.Miller school.
ServersDNS/E-mail Server
Each school will contain a host for DNS and e-mail service (local post office / mail server) Enterprise Server. (One Machine can handle both DNS and E-Mail)
DNS update process will flow from individual school to the hub server then to the district hub.
All regional Hubs can use Mesh topology.
Administrative Server
Each School should contain an Administrative Server.
Server will run TCP/IP as its OSI Layer 3 & 4 protocols.
Library ServerOnline information / retrieval system (Enterprise Server).
Uses Layers 3 & 4 (TCP/IP) of the OSI model.
Application ServerLocated at central location (Enterprise Server).
Will run programs such as word, excel, and power point.
Other Servers
All other servers will be departmental servers (Workgroup Servers).
Security
•Utilize a double firewall implementation.
•Internet-exposed applications residing on a public backbone network.
•All connections initiated from the Internet into the schools private network will be refused.
•3 logical network classifications: administrative, curriculum, and external (with secured •connections between them)
•2 physical LAN infrastructures 1 administrative and 1 curriculum.
•Place each server according to its function and placed on the appropriate LAN.
•Each School should have a file server.
•Using ACL on routers all traffic from the curriculum LAN will be prohibited on the admins LAN.
•E-Mail and directory service should pass freely between the two physical LANS.
•ACL’s are to be controlled at the District office (TFTP).
•A user ID and Password policy will be published and strictly enforced on all computers
LAN TOPOLOGY LAN TOPOLOGY (Local Area Network)(Local Area Network)
Main Distribution Facility (MDF)Main Distribution Facility (MDF)
The storage space which contains the hardware The storage space which contains the hardware for the main hub of the network.for the main hub of the network.
In the next floor plan, the rooms shaded in blue In the next floor plan, the rooms shaded in blue represent data media termination points. The represent data media termination points. The Red shaded represents the POP. This will also be Red shaded represents the POP. This will also be the location of the MDF (Main Distribution the location of the MDF (Main Distribution Facility).Facility).
MDFMDF
2 LanSwitch 3548 XL enterprise edition
Cisco 3660 6-slot Modular Router-AC
Intermediate distribution facilityIntermediate distribution facility ((IDF)IDF)
The central point of a star The central point of a star topology where the hub is topology where the hub is located.located.
There should be one on each There should be one on each floor and/or within a 1000 sq. floor and/or within a 1000 sq. meter radius.meter radius.
(IDF)(IDF)
3548 XL Enterprise Edition2 LanSwitch
2 Patch Panel 64 RJ-45 ports
In this room, the location of the MDF to the rooms is more than 90m, so In this room, the location of the MDF to the rooms is more than 90m, so two IDFs are needed to connect the rooms. The green shading two IDFs are needed to connect the rooms. The green shading
represents the rooms connected with the IDF to the far left.represents the rooms connected with the IDF to the far left.
Bitmap Image
Wiring DiagramWiring Diagram
Logical Topology (Star Topology)Logical Topology (Star Topology)
Equipment requiredEquipment required
Server: 1.5GHz Intel® Pentium® 4 Processor with 512MB Ram, an ATI Radeon 32Mb Video and 80GB of Drive Space.
Switch: 24-port 10/100 Base-TX Fast Ethernet Switch. Switch: 24-port 10/100 Base-TX Fast Ethernet Switch.
Patch Panel: CTG's Enhanced CAT5 with 110-Type termination, meeting and exceeding EIA/TIA TSB-40 CAT5e connecting hardware specifications.
Why use Vlans?Why use Vlans?
They logically segment the NetworkThey logically segment the Network Can use existing hubs & switchesCan use existing hubs & switches Control Broadcasts ( prevent who the Control Broadcasts ( prevent who the
data is sent to Eg prevent students data is sent to Eg prevent students getting access to the administration getting access to the administration network)network)
Save money because less Save money because less administration depending on if port administration depending on if port centric, static or dynamiccentric, static or dynamic
VLAN’sVLAN’s
Two VLANS are requiredTwo VLANS are required Curriculum Curriculum
– StudentStudent AdministrativeAdministrative
– Teachers, Admin staffTeachers, Admin staff
Access Control Lists (ACL’s)Access Control Lists (ACL’s)
Allows us to permit or deny users / or Allows us to permit or deny users / or an entire network from the network.an entire network from the network.
Limits traffic on the Network, Limits traffic on the Network, therefore increasing the network therefore increasing the network performance.performance.
Can be standard (1-99) or Extended Can be standard (1-99) or Extended (100-199)(100-199)
Who gets Access to what?Who gets Access to what?
Students AccessStudents Access
– Application SeverApplication Sever– InternetInternet– LibraryLibrary
Students DeniedStudents Denied
– Activity on the DNS serverActivity on the DNS server– Administrative serverAdministrative server
Teachers AccessTeachers Access
– InternetInternet– DNS server for e-mailDNS server for e-mail– Administrative serverAdministrative server– Application serverApplication server– Library serverLibrary server
Sample ACLSample ACL
This prevents students accessing the This prevents students accessing the administration networkadministration network
Access-list 101 deny ip 10.10.1.2 0.0.0.255 Access-list 101 deny ip 10.10.1.2 0.0.0.255 10.10.2.3 0.0.0.255 10.10.2.3 0.0.0.255
Permit any anyPermit any any Int EOInt EO Access group 101 in Access group 101 in ExitExit
Interior Gateway Routing Protocol Interior Gateway Routing Protocol ((IGRP)IGRP)
A proprietary interior gateway protocol A proprietary interior gateway protocol used to exchange information used to exchange information between Cisco systems routers.between Cisco systems routers.
Is responsible for sending & receiving Is responsible for sending & receiving enhanced IGRP packets enhanced IGRP packets
IGRP ConfigurationIGRP Configuration
Done at global config modeDone at global config mode
Re_Miller(config)# router igrp 108Re_Miller(config)# router igrp 108
Re_Miller(config)# Network Re_Miller(config)# Network 128.168.1.0128.168.1.0
Re_Miller(config)# Network Re_Miller(config)# Network 128.168.2.0128.168.2.0
Re_Miller(config)# ExitRe_Miller(config)# Exit
Pro’sPro’s
The benefits of setting up the network as The benefits of setting up the network as shown are:shown are:– Speed: with fiber going to each switch, there is Speed: with fiber going to each switch, there is
1 gigabit of bandwidth available with possible 1 gigabit of bandwidth available with possible improvements in technology. improvements in technology.
– Less interference: fiber has less interference Less interference: fiber has less interference from magnetic fields, etc. from magnetic fields, etc.
– Non-centralized: control is closer, if there is a Non-centralized: control is closer, if there is a local problem local problem
– Room for future growth in LAN and WAN. Room for future growth in LAN and WAN.
Con’sCon’s
The negative aspects of setting up the The negative aspects of setting up the network as shown are:network as shown are:– Non-centralized: with an IDF in each building Non-centralized: with an IDF in each building
there may be difficulty locating a problem. there may be difficulty locating a problem. – Varied equipment: with 4 different models of Varied equipment: with 4 different models of
switches there will be additional programming switches there will be additional programming time needed. time needed.
– Cost: the quantity of switches and fiber needed Cost: the quantity of switches and fiber needed has increased the cost. has increased the cost.
– Security: with many locations, there is more of Security: with many locations, there is more of a possibility of break-in or theft. a possibility of break-in or theft.