Network Design for an Educational Institute: Layout, VLANs, and Security, Study Guides, Projects, Research of Wireless Networking

This report presents the design and diagram of a networked system for a three-story educational facility, including the physical and logical layout, vlans, ip addresses, and security measures. The network accommodates staff, teachers, students, and servers, with a focus on meeting the needs of users, optimizing installation costs, and ensuring aesthetics. The design includes routers, switches, pcs, printers, wireless access points, and servers, with a high bandwidth infrastructure to accommodate the demand. The report also covers network maintenance, including a system maintenance plan and testing results.

Typology: Study Guides, Projects, Research

2022/2023

Uploaded on 02/17/2024

ton-duong
ton-duong 🇻🇳

2 documents

1 / 22

Toggle sidebar

This page cannot be seen from the preview

Don't miss anything!

bg1
ASSIGNMENT 2 FRONT SHEET
Qualification TEC Level 5 HND Diploma in Computing
Unit number and title Unit 2: Networking
Submission date 15/12/2023
Date Received 1st
submission
Re-submission Date Date Received 2nd
submission
15/12/2023
Student Name NGUYEN PHI DUONG Student ID BH00941
Class SE06302 Assessor name Nguyen Nam Ha
Student declaration
I certify that the assignment submission is entirely my own work and I fully understand the consequences of plagiarism. I
understand that making a false declaration is a form of malpractice.
Student’s signature P.Duong
Grading grid
P5 P6 P7 P8 M3 M4 D2
Page | 1
pf3
pf4
pf5
pf8
pf9
pfa
pfd
pfe
pff
pf12
pf13
pf14
pf15
pf16

Partial preview of the text

Download Network Design for an Educational Institute: Layout, VLANs, and Security and more Study Guides, Projects, Research Wireless Networking in PDF only on Docsity!

ASSIGNMENT 2 FRONT SHEET

Qualification TEC Level 5 HND Diploma in Computing Unit number and title Unit 2: Networking Submission date 15/12/2023 Date Received 1st submission Re-submission Date Date Received 2nd submission 15/12/ Student Name NGUYEN PHI DUONG Student ID BH Class SE06302 Assessor name Nguyen Nam Ha Student declaration I certify that the assignment submission is entirely my own work and I fully understand the consequences of plagiarism. I understand that making a false declaration is a form of malpractice. Student’s signature P.Duong Grading grid

P5 P6 P7 P8 M3 M4 D

 Summative Feedback:  Resubmission Feedback:

Grade: Assessor Signature: Date: Internal Verifier’s Comments: Signature & Date:

150 users during peak hours, computers have good conditions for fast, flexible, and future growth.

  • More users in the future. Network personnel can sit on 3 floors to control the network. Mail server is available to serve students and students in the school. Grant domain names to employees, teachers, and students. There is a webserver to serve and update information and schedule for students. employees, teachers. Network system designed for all students, teachers, and school staff to connect and use the internet. and all computers in the school can communicate with each other.
  • People: 200 students, 15 teachers, 12 marketing and administration staff, 5 higher managers including the head of academics and the programmer manager, 3 computer network administrators.
  • Resources: 50 student lab computers, 35 staff computers, and 3 Printers.
  • First floor: contains 35 staff computers, 1 Wireless and 1 printers
  • Second floor: contains 25 student lab computers, 1 Wireless and 1 printer
  • Third floor: contains another 25 student lap computers, 1 Wireless and 1 printer
  1. Logical Design The network setup for a three-story building incorporates various symbolic network devices such as routers, switches, PCs, printers, wireless access points, and servers. In this configuration, a router is linked to a layer 3 switch, facilitating connections to switches across the floors to furnish internet access to devices. Additionally, wireless access points are deployed to serve teachers and staff, extending network accessibility. Given the substantial number of users requiring simultaneous access, a high bandwidth infrastructure has been implemented to accommodate the demand. The layer 3 switch assumes a pivotal role by provisioning DHCP services for PCs on each floor and serving as the central command hub for network control and management. This comprehensive network design aims to meet the diverse connectivity needs of the building's occupants efficiently.
  1. Physical design

Teachers PCs Vlan 20 192.168.20.0 255.255.255.0 192.168.20.1 192.168.100. Marketing PCs Vlan 30 192.168.30.0 255.255.255.0 192.168.30.1 192.168.100. Staff PCs Vlan 40 192.168.40.0 255.255.255.0 192.168.40.1 192.168.100. Management PCs Vlan 50 192.168.50.0 255.255.255.0 192.168.50.1 192.168.100. Server Vlan 100 192.168.100.0 255.255.255.0 192.168.100.1 192.168.100. Web Server Vlan 100 192.168.100.5 255.255.255.0 192.168.100.1 192.168.100. DNS Vlan 100 192.168.100.6 255.255.255.0 192.168.100.1 192.168.100. DHCP Vlan 100 192.168.100.7 255.255.255.0 192.168.100.1 192.168.100. Mail Server Vlan 100 192.168.100.8 255.255.255.0 192.168.100.1 192.168.100.

P6: Design a maintenance schedule to support the networked system.

 What is a network maintance? At its core, network maintenance constitutes all the tasks and systems in place to monitor, update and run your organization’s computer network before problems strike. That “network” itself involves your entire portfolio of physical IT assets, like the hardware and servers, and non-physical IT assets, like the software and cloud access — also known as your IT ecosystem. Similar to other business functions, a healthy IT ecosystem relies on proactive, daily activities and strategic foresight rather than reactive adjustments or ad-hoc, spur-of-the-moment patches. The basic tenets of maintaining your network — and the basis of a successful regular network maintenance plan — typically include the following:

  • Network cybersecurity: Implementing robust and up-to-date network defense layers, such as traffic-managing firewalls, virtual private networks, user access controls, double authentication measures, log inspections for usage documentation, real-time breach notifications and auto-generated security reports.
  • Network performance : Analyzing top network performance concerns influencing the speed and reliability of your devices, including bandwidth usage, traffic patterns, bottlenecks, frequently down or crashed servers, connection lags, delays and more.
  • Network scalability : Ensuring proper software and hardware systems fitting your current operations, number of network users, endpoint locations and businesses functions.
  • Regular hardware and software updates : Scheduling updates prorated across network components and interfaces, which in turn bolsters both a network’s overall performance and security defenses.
  • IT infrastructure compliance: Maintaining internal compliance with company practices as well as external government regulations and industry policies. (Anon., 2023)  System maintenance plan table
  • Check hardware every 1 months
  • Scanning malware every Saturday
  • Checking users access
  • Testing software, checking software updates every 2 days
  • Backup configuration on network devices on the first day of the month
  • Checking firmware on every Thursday

P7. Implement a networked system based on a prepared design

 Step 1:

  • Remane Multiplayer Switch Core:

 Step 2

  • Configure VLANs in Multiplayer Switch:
  • IP routing in Multiplayer Switch
  • DHCP service for Student PCs, Staff PCs , Printer, IT, Server :

 Step 3: On Switch(0,1,2,3) configure vlan trunking protocol.

  • Configuration for Switch 0
  • Configuration for Switch 1:
  • Configuration for Switch 2:

 Step 4 : Configuration for Border and ISP Router:

  • Configuare Border router, set ip:
  • Configuare Nat:  Completely Configuaration:

P8: Document and analyze test results against expected results

  1. Document  Step 1: Configure multiplayer switch to become VTP server and set name for Vlan, to provide Vlan for the Client Mode  Step 2: Set trunk mode for ports of multiplayer switch that’s connect to each others switch  Step 3: Configure IP address for each Vlan in multiplayer switch  Step 4: Configure DHCP Relay

 Step 9: Configure NAT on Border Router  Step 10: Configure ISP Router

  1. Testing Plan Active Result Reason PCs in school received DHCP Successful DHCP has been routed PCs in the school can access internet Successful Router has been routed PCs in school can ping each other Successful Switchs has been trunked PCs of marketing, Staff, Teacher can ping to other devices in school Successful Vlans has been routed Students PC can’t ping Teacher PCs and Facebook Successful Vlans has been routed Check NAT: Public PC can access IP 1.1.1. Successful Successful Laptop can connected Wireless devices Successful Devices has been

Internal PCs can use email Successful PCs can use email  Ping realtime

 Ping PCs to internet  ACLs Students can’t ping Teacher  ACLs Students can’t ping Facebook

 Laptop connected to Wireless  Public computer accessing internal website