ITNE2003R Network Configuration and Management Project
Assignment Objectives
This assessment item will assess the unit learning outcomes specified in the unit descriptors. It checks your understanding about configuring and troubleshooting medium-size networks.
In this project you will demonstrate your knowledge and skills in subnetting an IP address space, configuring VLANs, routing protocols, NAT and ACL on routers and switches as per the requirement of the given scenario.
The following video tutorials can help you refresh your knowledge on IP subnetting, static routing and dynamic routing:
Subnetting:
- https://www.youtube.com/watch?v=YdprN_CFVOo
- https://www.youtube.com/watch?v=Deq9Dq-Kc-k
- https://www.youtube.com/watch?v=6wpnYAAfTFo
Static Routing:
Dynamic Routing:
Configure RIPv2 and OSPF:
NAT:
Assignment Scenario
You are working for a networking solution provider. Your team has asked you to design a network solution for the requirements specified by Initech and test it using Packet Tracer simulation platform before deploying the real network and document the specifications.
Initech is a company founded in 2009 which provides IT management software solutions. Initech has 2500 employees and is headquartered in Houston, USA and has branches in different countries such as UK, China, and Australia.
Company Requirements
Initech Australia provides management software solutions to companies in Australia. The head office of the company is situated in Melbourne. It has branches in Sydney and Perth. Company wants to Implement a network which supports potential growth over the next five years, and they have hired your company to layout the network with an expectation of 20% growth of current IP requirements. (For the simplicity of the case study and to limit the scope we have ignored the connections to the international branches.)
At present, there are 80 employees at department of Support Services, 30 employees in department of Consulting, 15 employees in department of Marketing, and 5 employees in the department of Finance providing their service to the head office which is stationed in Melbourne. Company has also 6 employees working as Technicians who travel between all sites to audit and provide onsite troubleshooting services to customers. Melbourne head office also hosts the server farm for the network. These servers contain web servers, Domain Controllers, DHCP and file servers which carry company sensitive information.
Melbourne head office is spread across 2 major buildings which are 10 km apart from each other. Building A is a two-storied building with Support Services and Consulting department employees on 2nd floor. Marketing and Finance department employees are stationed on 1st floor. Building B also contains department of Support Services and department of consulting. Server Farm is hosted in building A.
The Sydney branch spans across a single area which is 50 meters x 30 meters and has a building floor of size 25 meters x 20 meters. It includes all departments in company.
Perth branch spans across a land of 25 meters x 25 meters with 15 meters x 15 meters building floor dimensions and it includes department of Support and Consulting.
Company requests at least one separate printer for each department in each Branch. Each department also has a separate server reserved which acts as a domain controller. Network Administrators group who is working for the Support group in Melbourne should have access to all the devices over the network to both monitor and configure if necessary, using a secured connection. Initech insists the network to be reliable and secured to the maximum extend.
Company prefers to use private addresses as a security concern and prefers to buy a range of public addresses which could be used for internet connections using Network Address Translation (NAT).
The company requires the implementation of following security policies to control the flow of IP traffic within its network and to the Internet.
For clarity, all the requirements requested by the company is listed in point form bellow.
- Access Rules for Group Access VLANs
- All VLANs are permitted to access internet unless specifically denied below.
- VLAN to VLAN access, is denied unless specifically permitted below.
- PC hosts in the Consulting VLAN are permitted access to the Marketing, Finance, and printers VLAN.
- PC hosts in the Finance VLAN are permitted access to the Marketing VLANs and printers.
- PC hosts in the Marketing VLAN are permitted access to the Internet and printers. PC hosts in Support VLANs are permitted access to all VLANs.
(Use a Table G to record the testing of the ACLs - add Rows as needed)
Your Task
The Service Delivery Manager of your company has asked you to design and configure the network infrastructure for Initech company, specify all the details about network devices and technologies to be used and implement the simulation using Packet Tracer. After creating the topology, you need to configure the network based on the given requirements and test to make sure it is working properly. You will submit screenshots of your topology, conficuration and verification and testing in the report. You also will demonstrate your simulation on week 12 and test the connectivity of your network based on the given requirements.
Remember that all your screenshots should include your student ID as the hostname of router (e.g. Melbourne3-S1234).
Assessment Criteria and Instructions
As part of your Assessment Criteria, you should prepare a formally written report supporting all your design choices implemented in Packet Tracer with necessary screenshots of configuration and verification commands. In addition, you need to demonstrate your solution with the simulated network in Packet Tracer and all the commands that are configured on networking devices.
Use the table structures in the Appendix A when you are preparing the report for the project which are also being used for documentation of the project by Your company.
- Document the VLSM Design.
- Document Router and Switch Details for each site. Separate tables should be created for each router and switch.
- Document the IP address plan.
- Record NAT and ACL configuration, testing and connectivity results.
- Record the processes of configuring and verifying routing protocols (OSPF or RIP)
- Discuss the management and troubleshooting strategies for this network and explain in detail what management protocols and tools you would use for it.
The guidelines and instructions for the report are in Appendix B.
APPENDIX A
Table A: VLSM Design
Number of host addresses required |
Subnet Network Address |
Subnet Mask |
Broadcast Address |
Range of valid host IP addresses |
Max Number of Hosts Possible |
VLAN Name |
Table B: Assigned IP Host Addresses
VLANName |
Server/PCName |
IPAddress |
SubnetMask |
DefaultGatewayIPAddress |
Table C: Router Table
Site: Router Name:
Interface/ Sub Interface Type/Number |
Description and Purpose |
Network/ VLAN Name |
Network Address |
Interface IP address |
Subnet Mask |
Table D: Switch Table
Site: Switch Name:
Management VLAN IP Address: Default Gateway IP Address:
Port Number |
Description and Purpose |
Assigned to VLAN |
Switch port Access/Trunk |
Encapsulation |
Table E: Router Details
Name |
Model |
#of Ports |
Location |
Configured routing protocol |
NAT configured? |
ACL configured? |
Table F: Switch Details
Name |
Model |
#of Ports |
Location |
Management VLAN IP Address |
Default Gateway Address |
IP |
Management VLAN |
Table G: Record of ACL Testing
Source Host |
Destination Host/Server |
Protocol |
Expected Result |
Achieved Yes/No |
Table H: Record of NAT tables
Router Name:
Inside Local Address |
Inside Global Address |
Outside Local Address |
Outside Global Address |
APPENDIX B – REPORT
Report – Each team should submit one report.
However, each chapter should be written by one member of the group. The report should have at least 5 chapters each chapter done by each member. In the beginning of the report, you should clearly indicate who has done each chapter.
Chapter No |
Done by |
1 – Introduction & Requirement Gathering | |
2 – Design | |
3 – Switch Configurations | |
4 – Router Configurations | |
5– Access List Configurations | |
6– NAT Configurations | |
7- Network Management analysis | |
5 Conclusion, References and Appendix |
Your Report should consist of at least following items. The report should consist of content, explanations, figures, tables, and screenshots of your configurations.
Title page
Declaration
Acknowledgement
Abstract
Table of contents
Table of Figures
Table of Tables
Introduction
Requirements (for each branch)
Design
- Topology
- Design – for each branch
- Constraints
- Assumptions
- Others (if any)
Configurations
- Basic configurations
- IP addressing
- Switching Configuration
- Interfaces
- VLAN and Trunking
- Routing
- Interfaces
- NAT
- Routing Protocols Access
List configuration
- Requirements
- Configurations
Conclusions
References
Appendix