Documenti di Didattica
Documenti di Professioni
Documenti di Cultura
( _______________________ )
(Shams ur rehman)
Table of Contents
Introduction...........................................................................................................................................2
1.1 Project information:...............................................................................................................2
1.2 Project Background:...............................................................................................................2
1.3 Project Summary...................................................................................................................3
1.4 Project Objectives:.................................................................................................................3
1.5 Project Methodology.............................................................................................................4
1.6 Network Design Diagram.......................................................................................................4
1.7 Project Network Lab Simulation Diagram..............................................................................5
1.8 IP Schema..............................................................................................................................6
1.8.1 Selection and Using of the Routing Protocol for the project..........................................6
References.............................................................................................................................................7
Introduction
1.1 Project information:
The Bakhter Bank is one of the private Banks with nearly 700 employees in different
provinces of the country and main office in Kabul City.
We are planning to equip its administrative staff with technology and transform its manual
Administrative processes into computerized paperless system in the long run. To expand
accessibility and connectivity of technology related systems to all administrative
Departments.
The goal of this project is to plan and design a new network infrastructure for Bakhter Bank
that enable clients from Head quarter and Branches to have access to CBS (Core Banking
Solution) Software.
Our new network topology design will have the following parts for Bakhter Bank:
The entire branches financial database is individual and not synced with HO
Database.
1
Branches computers are in workgroup not in a centralized domain which violet
network/system security policy.
As the Bakhter Bank branches are not connected to Bakhter HQ, so all the process will take
long time to get prepared.
Also there is no proper method for troubleshooting, checking and auditing the branches.
All the problems were mentioned above could be covered by the New Bakhter Bank
Network Infrastructure which we have planned to design.
2
7. Creating secure tunnel between branches and HQ
8. Restricting of un authorized users from accessing internet via Access Control List
3
1.5 Project Methodology
In order to take care of availability, confidentiality and reliability of Bakhter network and
system, we have planned to build a secure network scheme by using latest CISCO and
Microsoft products.
2. GNS 3 Simulator
5. Putty
6. E-draw Max
Devices Used:
System Requirement:
Windows XP
Windows 7
4
Upon understanding the requirements from Bank, it was clear that we would require stringent
security with 100% fallback at all critical levels. The Objective of Network connectivity was
to enable Centralized communication to Oracle Flexcube Server which was the Core banking
application. All branches should be able to connect to Data Center, by any means of WAN
connectivity such as Internet IPSec, Radio Links or private Leased Circuits.1
1 I. Foster, C. Kesselman, and S. Tuecke, "The Nexus Approach to Integrating Multithreading and Communication," Journal of Parallel and
Distributed Computing, 37:70-82, August 1996. Page#20
5
1.8 IP Schema
I have planned this IP
address Schema with respect
to RFC 1918 address space
with adequate ip ranges
for all locations and the IP
address witch I have
designed for Bakhter Bank is
to reduce overlapping and
waste of IP addresses.
1.8.1 Selection and Using of the Routing Protocol for the project
I decided to use dynamic routing protocol in my project because of redundancy and load
balancing between unequal cost interfaces.
I select CISCO EIGRP routing protocol, EIGRP is CISCO proprietary and it is the only
protocol that support unequal cost load balancing between interfaces.
6
References
Websites
http://www.cisco.com/c/en/us/support/docs/ip/enhanced-interior-gateway-routing-protocol-eigrp/16406-
eigrp-toc.html
http://www.cisco.com/en/US/docs/ios/12_2t/12_2t15/feature/guide/ft_glbp.html
http://www.cisco.com/c/en/us/td/docs/security/pix/pix72/quick/guide/dmz_p.html
http://docwiki.cisco.com/wiki/Internetworking_Technology_Handbook
http://www.cisco.com/c/en/us/products/switches/catalyst-6500-series-switches/index.html
http://www.cisco.com/c/en/us/products/collateral/routers/3900-series-integrated-services-routers-
isr/data_sheet_c78_553924.html
http://www.cisco.com/c/en/us/products/switches/catalyst-3750-x-series-switches/index.html
http://www.cisco.com/c/en/us/products/collateral/security/asa-5500-series-next-generation-
firewalls/product_data_sheet0900aecd802930c5.html
http://www.cisco.com/c/en/us/td/docs/security/asa/asa82/configuration/guide/config/nat_dynamic.html
Foster, C. Kesselman, and S. Tuecke, "The Nexus Approach to Integrating Multithreading and
Communication," Journal of Parallel and Distributed Computing, 37:70-82, August 1996