wireless lan design - university of...
TRANSCRIPT
Wireless LAN Design
Supervisor - Dr. Cyrus WekesaExaminer - Dr. G.S.O Odhiambo
Gitau Ayub MakimeiF17/10456/2003
PJ 068
Objectives
n The objective of this project was to understand the current network topology of UON and to come up with a design of a local wireless network for the University of Nairobi (UON WLAN) built upon the 802.11 wireless network standards.
Functional Specification for the UON WLAN infrastructure n Secure wireless networks shall complement rather than
replace an institution’s wired network
n Institutions should provide secure wireless access to curriculum and administration resources from a wide range of work spaces in the institution
n Wireless networking equipment shall conform to the IEEE 802.11a/b/g standards.
n Wireless networks shall be secured.
PC PC PC PC PC PC PC PCRemote workgroups Local workgroups
Campus Backbone
BuildingBackbone
Router
Switch
Core
Distribution
Access
Router
LAN Architecture
UON Campuses connecting to servers at the ICT center
Core servers
Lower Kabetekikuyu
Main campus
Parklands
Other remote campuses
chiromo Proposed Kenya scienceCore router
ICT center
Campus-Wide: Main Campus Backbone
AdministrationBuilding
Gandhi WingAmerican WingADD
ICT
SWAJKML
Education
JKML BACKBONE BUILDER
2KM
Digital Leased Line Inter-Campus Links
KENYA DATA NETWORKS(DIGITAL LEASED LINES)
UoN Backbone
Proposed Kenya science LAN Lower Kabete LANParklands campus LAN
University-Wide Internet Connectivity
ProxyServer
EmailServer
WebServer
DNS Server
Leased LineSatellite
FirewallRouter
INTERNET
Analyze Requirements
Develop Internetwork Structure (Topology)
Set Up Addressing and Naming Conventions
Hardware/software setup
Implement, Monitor,Maintain the Network
Design Methodology
Security measures
Overview
n Main areas of the University campus that drive the requirements of wireless access-solution;
Students
University ServicesLecturers
The Need for VLANsDue to the difference in service requirements of students, lectures and University services, they are grouped into different VLANs;This is due to the fact that, they require different authentification levels.
VLANsLibServ (L ) -Students Don (D) - LecturersMainOFc (M) –Front officesAdmin (X) –Network administrators
Main campus Coverage area
BS- bookshopEB- education buildingH- hyslopGW- Gandgi wing844- 844 building
Membership
Assignment of MAC addresses to different VLANs.
MAC Address VLAN
1212354145121 L
2389234873743 X
3045834758445 L
5483573475843 M
Security Measures
Use of security switches and firewall.Example Catalyst 2948G switch (Cisco) ; can be configured to work as a VMPS
Use of RADIUS authentification.Remote Authentification Dial-In-User Service- used to manage Access to the internetor internal network.It provides a centralized authentification and accounting for stations to connect and use a network service
Mac addressing.Only stations with permission access the wireless service
Use of VLANsThis offers internal security
Reduced broadcasting strength of APs where possible
Security Measures
ConclusionWith the UONWLAN, students can have a powerful work tool that can be used to solve queries, researches, university projects and several other activities. As bigger is the use of these equipments from the students, more will be their degree of freedom and work capability.
The UON WLAN can deliver a very different user experience in the Education campus. It enables students to access information and study no matter where they are in the campus and no matter what time it is.
The experience of understanding the UON network topology and designing a WLAN has been invaluable. Through the process of this project, practical knowledge has been gained about realistic projects in industry. After having such a positive experience, the future seems promising and bright.