Assessment Template

Course Code :
Course Name :
Unit Code :
Unit Name :
Assessment Tasks :
Student ID :
Student Name :
Trainer Name : Juan Marquez

Table of Contents
Introduction .................................................................................................................................................. 3
Overview ....................................................................................................................................................... 4
ALTEC Existing Network ................................................................................................................................ 5
Project Objectives ......................................................................................................................................... 7
Proposed Network Diagram.......................................................................................................................... 7
Proposed Logical Network Design ................................................................................................................ 8
Proposed Physical Network Design .............................................................................................................. 9
Hardware and Operating Requirements....................................................................................................... 9
Implementation Tasks................................................................................................................................. 10
Implementation .......................................................................................................................................... 11
IP Address Allocation .................................................................................................................................. 11
Core Layer Tuning ....................................................................................................................................... 12
Distribution Layer Tuning ............................................................................................................................ 13
Configure HSRP for Redundancy ................................................................................................................. 14
Configure EIGRP Routing Protocol .............................................................................................................. 16
Access Layer Tuning .................................................................................................................................... 17
References .................................................................................................................................................. 19
2|Page
Student Name: your name Student ID: your student id | Course: Diploma or Advanced
Trainer Name: Juan Marquez
Introduction
When a small organization grows rapidly, the original network that supported the organization
often cannot keep pace with the expansion. Employees at the organizations may not realize how
important it is to properly plan for network upgrades. In many cases, the business may just add various
network hardware devices, of varying quality, from different manufacturers, and different network
connection technologies, to connect new users. Often this causes a degradation in the quality of the
network as each new user or device is added. If this continues, at some point the network is unable to
properly support the types and level of network traffic that the users generate. Only when the network
starts to fail do most small businesses look for help to redesign the network.
Like other organizations, ALTEC needs an upgrade to its network infrastructure. The current
infrastructure supports print, scan, email, and internet services shared across throughout the network.
With a view to expand its educational services in higher education, ALTEC has decided to add an
additional floor to its existing campus (ground and first floor). An entire second floor has been leased;
and is being fitted out for academic operations. There are also plans to use a part of the floor as an
administrative area.
The proposed solution that follows involves significant changes to ALTEC’s network systems. The
proposed hardware used in the following design will be purchased over a period of time once approval
is received. The new basic physical network architecture will require several upgrades in hardware that
address these incompatibilities and older technologies. It will result to more efficient, reliable and easy
to maintain network.
In addition, the proposed solution requires some changes in the network configuration. When
the changes are implemented, will provide greater reliability and security for all users of the ALTEC
network. Along with the new hardware, the new network configuration will open the door for Altec to
explore new possibilities in using the network to increase overall productivity and, in the end, better
serve the needs of their students.
3|Page
Overview
ALTEC is a Registered Training Organization providing a range of vocation and higher education
courses to local and international students. ALTEC’s campus is spanned over two floors of a modern St
Kilda Road building, and used by approximately 800 students and 40 staff members. ALTEC has two
dedicated wired networks for administrative/academic and student services respectively. Print, scan,
email, and internet services are shared across the networks. The college uses its own intranet as a
communications channel, content repository, and an application sharing tool that supports day‐to‐day
college activities. The college uses separate email/data, file and print, database, and legacy servers.
ALTEC’s current network is relatively small and what we call Flat Network. In this design, most
network components are used for simple broadcasting and providing limited switching capabilities. It
has lower initial cost due to small size of the network and lower equipment costs. It is easy to design,
implement and maintain as long as the network remains small. Once the network grew bigger, it will
become extremely hard to troubleshoot whenever a network problem arises. Scalability problems
usually occurs in a flat network architecture. Transitioning to a Hierarchical network design model.
In flat or meshed network architectures, changes tend to affect a large number of systems.
Hierarchical design helps constrain operational changes to a subset of the network, which makes it easy
to manage as well as improve resiliency. Modular structuring of the network into small, easy-to-
understand elements also facilitates resiliency via improved fault isolation.
The following are the major design areas to be addressed:
 Identify the following areas:

 Number of users and type of equipment
 Projected growth
 Application requirements
 Existing network infrastructure and physical layout
 New services required
 Security and privacy considerations
 Reliability and uptime expectations
 Budget constraints
4|Page
ALTEC Existing Network
ALTEC’s existing network provides different services and applications to clients without proper
separation of authority and access.
5|Page
ALTEC is using Class C IP address 192.168.1.0 /24 throughout the whole network. With this
design, changes tend to affect whole network system. Also, troubleshooting and separating
access/traffic in this kind of network is more difficult.
6|Page
Project Objectives
The major objective of this project is to upgrade ALTEC’s network infrastructure. In particular, the
college requires that;
 Two core backbones separating staff and student/visitor access and traffic
 Different access levels and services across different floors
 Integrated voice, video, network management, and routing traffic (over VPN)
 User and department‐based control lists and traffic shaping
 An out–of–band network to access and manage the devices
 Three distinct connection layers of;
 Student Administration
 Internet
 Remote Access
 7. Future scalability to an enterprise WAN
Proposed Network Diagram
7|Page
This architecture uses a hierarchical design model to divide the infrastructure into modular
groups or layers. Breaking up the design into layers allows each layer to implement specific functions.
This simplifies the network design and therefore the deployment and management of the network.
Modularity in network design allows you to create design elements that can be replicated throughout
the network. Replication provides an easy way to scale the network as well as a consistent deployment
method.
From Class C network 192.168.1.0 /24 network, new subnets will be used to separate different
departments and areas logically. This will provide separation in broadcast domain per VLAN, limiting
broadcast storm that easily appear with Flat Network like the current network architecture of ALTEC.
Proposed Logical Network Design
With two core switches as backbones, Core Layer will have high-speed routing and redundant
connection from the router down to Distribution Layer. With two Distribution switches, connectivity to
access layer will be more efficient. The primary function is to serve as an aggregation point for multiple
8|Page
access layer switches in a given location or campus, and serve as the demarcation between the layer-2
switching and layer-3 routing functions in this design. Separation of VLANS will also start in this layer.
Physical connectivity of core switches, distribution switches, down to access layer is designed to use
fiber optic cable. The proposed design is scalable for future enterprise WAN connections.
Proposed Physical Network Design
Hardware and Operating Requirements
This section of the report covers the estimated costs for this project.
Hardware Per Unit Cost Quantity Total Cost

Cisco Nexus 9000 Series Switch $30,000.00 $2.00 $60,000.00
Cisco Nexus 7000 Series Switch $12,000.00 $2.00 $24,000.00
Cisco Firepower 8350 $62,000.00 $1.00 $62,000.00
Cisco Catalyst 2960-48-ports $5,995.00 $4.00 $23,980.00
9|Page
RJ 45 Set $50.00 $10.00 $500.00
Fiber Optic Cable OM3 per meter $13.00 $200.00 $2,600.00
SPF connector $20.00 $34.00 $680.00
Cat 6 UTP Cable $40.00 $10.00 $400.00
Services
Network Analysis and Design $100,000.00 $1.00 $100,000.00
Labor $50,000.00 $1.00 $50,000.00
Network Maintenance $50,000.00 $1.00 $50,000.00
Total Cost $374,160.00
Network Tools Per Unit Cost Quantity Total Cost

SolarWinds Network Monitoring Tool $3,000.00 $1.00 $3,000.00
Cisco Endpoint Advance Malware Protection $150.00 $2.00 $300.00
Total Cost $3,300.00
Implementation Tasks
Redesign LAN Transition from Flat Network Architecture to Hierarchical Design Model.
 Install redundant Multilayer Core Switches

o Install Multilayer Distribution Switches
o Install additional Access Layer 2 Switches for the new area (second floor)
o Implement inter-VLAN routing
o Logical separation of the following:
 Device Management VLAN
 Students VLAN
 Server VLAN
 IT Department VLAN
 Accounting Department VLAN
 Admin Department VLAN
 Limit VLANs to a single closet whenever possible

 Set trunks to on/on with no negotiate, prune unused VLANs, and use VTP transparent mode
 Perform EIGRP/Routing in the access layer
 Use Rapid PVST+ if you must span VLANs (layer 2)
 Use the Spanning‐Tree toolkit to protect against unexpected STP participation (layer 2)
 Use UDLD to protect against one‐way up/up connections
10 | P a g e
 Security:
o Add firewall to network infrastructure to secure network communication and add
application and web filtering for the users
o Configure Access list for different authentication, authorization and accounting
depending on the user account
 Configure Quality of Service (QOS) for integrated voice, video, network management, and
routing traffic
Implementation
After finalizing the required details and upgrade the network design, the implementation of network
upgrade of ALTEC will involve minimal downtime. As part of our implementation plan, an initial
network test will occur. This will be done during off-hours to minimize possible problems; however,
the final test will be done during normal business hours to completely evaluate the network
upgrade performance.
IP Address Allocation
Below is the new IP network address created for the proposed design:
Network VLAN Subnet Mask Department

192.168.1.0 60 255.255.252.0 Student Services
192.168.5.0 30 255.255.255.192 IT Department
192.168.5.64 40 255.255.255.192 Accounting
192.168.5.128 50 255.255.255.192 Admin Department
Device
192.168.5.192 10 255.255.255.224 Management
192.168.5.224 20 255.255.255.240 Servers
11 | P a g e
Network Usage
192.168.5.240 Subnet for point-to-point links
Core Layer Tuning
Configure interface VLAN of Core Switches:
CoreSwitch1# conf t
interface vlan 10
ip address 192.168.5.193 255.255.255.224
interface vlan 20
ip address 192.168.5.225 255.255.255.240
interface vlan 30
ip address 192.168.5.1 255.255.255.192
interface vlan 40
ip address 192.168.5.65 255.255.255.192
interface vlan 50
ip address 192.168.5.129 255.255.255.192
interface vlan 60
ip address 192.168.1.1 255.255.252.0
12 | P a g e
CoreSwitch2# conf t
interface vlan 10
ip address 192.168.5.194 255.255.255.224
interface vlan 20
ip address 192.168.5.226 255.255.255.240
interface vlan 30
ip address 192.168.5.2 255.255.255.192
interface vlan 40
ip address 192.168.5.66 255.255.255.192
interface vlan 50
ip address 192.168.5.130 255.255.255.192
interface vlan 60
ip address 192.168.1.2 255.255.252.0
Distribution Layer Tuning
Configure interface vlan of distribution switches:
DistributionSwitch1#conf t
interface vlan 10
ip address 192.168.5.195 255.255.255.224
interface vlan 20
ip address 192.168.5.227 255.255.255.240
interface vlan 30
ip address 192.168.5.3 255.255.255.192
interface vlan 40
ip address 192.168.5.67 255.255.255.192
DistributionSwitch1#conf t
interface vlan 10
13 | P a g e
ip address 192.168.5.196 255.255.255.224
interface vlan 50
ip address 192.168.5.131 255.255.255.192
interface vlan 60
ip address 192.168.1.3 255.255.252.0
Configure HSRP for Redundancy
CoreSwitch1 and CoreSwitch2:

conf t
interface vlan 10
standby 10 ip 192.168.5.197
standby 10 priority 110
standby 10 preempt
interface vlan 20
standby 20 ip 192.168.5.228
standby 20 preempt
interface vlan 30
standby 30 ip 192.168.5.4
standby 30 preempt
interface vlan 40
standby 40 ip 192.168.5.68
standby 40 preempt
interface vlan 50
standby 50 ip 192.168.5.132
14 | P a g e
standby 50 preempt
interface vlan 60
standby 60 ip 192.168.1.4
standby 60 preempt
Distribution Switch 1:
interface vlan 10
standby 10 ip 192.168.5.197
standby 10 preempt delay minumum 3600
interface vlan 20
standby 20 ip 192.168.5.228
interface vlan 30
standby 30 ip 192.168.5.4
interface vlan 40
standby 40 ip 192.168.5.68
Distribution Switch 2:
interface vlan 10
standby 10 ip 192.168.5.197
15 | P a g e
interface vlan 50
standby 50 ip 192.168.5.132
interface vlan 60
standby 60 ip 192.168.1.4
Configure EIGRP Routing Protocol
Router:
conf t
router eigrp 10
network 192.168.6.8
network 192.168.5.240
network 192.168.5.244
Core1:
conf t
router eigrp 10
network 192.168.5.240
network 192.168.5.248
network 192.168.6.0
Core2
router eigrp 10
network 192.168.5.244
network 192.168.6.4
16 | P a g e
network 192.168.5.252
Dis1:
conf t
router eigrp 10
network 192.168.5.248
network 192.168.6.12
network 192.168.6.16
Dist2:
router eigrp 10
network 192.168.6.20
network 192.168.6.9
network 192.168.6.24
network 192.168.6.4
Access Layer Tuning
Configuring Spanning-Tree mode Rapid-PVST

conf t
spanning-tree mode rapid-pvst
int range fa0/1-48
spanning-tree portfast
Configuring UDLD:
conf t
udld enable
int fa0/1
udld port aggressive
17 | P a g e
Configuring Trunk Ports:
interface fa0/1
switchport mode trunk
switchport nonegotiate
switchport trunk native vlan 10
Configuring VTP:
conf t
vtp domain altec
vtp mode transparent
18 | P a g e
References
 Scaling Networks Companion Guide (2017) by Cisco Press
 Campus Wired Lan (2014) by Cisco Press
 Oppenheimer, P. (2010). Top-Down Network Design: A systems analysis approach to enterprise
network design (3rd ed.). Indianapolis, IN: Cisco Press.
 Dean, T. (2010). Network+ Guide to Networks (5th ed.). Boston, MA: Cengage Learning.
 Allan Reid, Jim Lorenz. (2008) by Cisco Press
 Diane, T. (2008). Authorized Self-Study Guide Designing for Cisco Internetwork Solutions
(DESGN) (2nd ed.). Indianapolis, IN: Cisco Press.
 Teare, D., & Pacquet, C. (2005). Campus Network Design Fundamentals. Indianapolis, IN: Cisco
Press.
19 | P a g e

Assessment Template

Caricato da

Informazioni sul documento

Titolo originale

Copyright

Formati disponibili

Condividi questo documento

Condividi o incorpora il documento

Opzioni di condivisione

Hai trovato utile questo documento?

Questo contenuto è inappropriato?

Copyright:

Formati disponibili

Assessment Template

Caricato da

Copyright:

Formati disponibili

Course Code :

Trainer Name : Juan Marquez

The following are the major design areas to be addressed:

 Identify the following areas:

Proposed Network Diagram

Proposed Logical Network Design

Proposed Physical Network Design

Hardware and Operating Requirements

Hardware Per Unit Cost Quantity Total Cost

Network Tools Per Unit Cost Quantity Total Cost

 Install redundant Multilayer Core Switches

 Limit VLANs to a single closet whenever possible

Network VLAN Subnet Mask Department

Core Layer Tuning

Configure interface VLAN of Core Switches:

Distribution Layer Tuning

Configure interface vlan of distribution switches:

Configure HSRP for Redundancy

CoreSwitch1 and CoreSwitch2:

Configure EIGRP Routing Protocol

Access Layer Tuning

Configuring Spanning-Tree mode Rapid-PVST

Potrebbero piacerti anche