This project involves designing and implementing a robust, scalable network for a trading floor support center with 600 staff members. The new building, identified for expansion, has no existing network infrastructure. The goal is to create a network solution that ensures redundancy, security, and efficient communication across all departments. The network design and implementation will be done using Cisco Packet Tracer.
- First Floor:
- Sales and Marketing Department: 120 users
- Human Resource and Logistics Department: 120 users
- Second Floor:
- Finance and Accounts Department: 120 users
- Administrator and Public Relations Department: 120 users
- Third Floor:
- ICT Department: 120 users
- Server Room: 12 devices
-
Core Layer:
- Two routers for redundancy
- Connection to two ISPs for redundancy
-
Distribution Layer:
- Two multilayer switches for redundancy
- Inter-VLAN routing and core router connectivity
-
Access Layer:
- Switches and wireless access points for end-device connectivity
- Dual routers connected to two ISPs
- Dual multilayer switches at the distribution layer
- Redundant links between core and distribution layers
- Each department will be assigned a separate VLAN and subnet.
- Base network:
172.16.1.0/24
| Department | VLAN | Subnet | Number of Users |
|---|---|---|---|
| Sales and Marketing | 10 | 172.16.10.0/24 | 120 |
| Human Resource and Logistics | 20 | 172.16.20.0/24 | 120 |
| Finance and Accounts | 30 | 172.16.30.0/24 | 120 |
| Administrator and Public Relations | 40 | 172.16.40.0/24 | 120 |
| ICT | 50 | 172.16.50.0/24 | 120 |
| Server Room | 60 | 172.16.60.0/28 | 12 |
- ISP connections:
195.136.17.0/30195.136.17.4/30195.136.17.8/30195.136.17.12/30
- Hostnames, console passwords, enable passwords, banner messages
- Disabling IP domain lookup
- VLAN assignment and configuration
- Inter-VLAN routing on multilayer switches (Switch Virtual Interfaces)
- DHCP server configuration for dynamic IP allocation
- Static IP allocation for server room devices
- OSPF configuration for route advertisement
- SSH configuration for secure remote login
- Port-security configuration for Finance and Accounts department
- PAT configuration for NAT overload
- Standard and extended ACLs
- Create a network topology using Cisco Packet Tracer.
- Connect networking devices with correct cabling.
- Configure hostnames, console passwords, enable passwords, and banner messages.
- Disable IP domain lookup on all devices.
- Create VLANs and assign ports to VLANs.
- Subnet the base network
172.16.1.0/24to allocate IP addresses to each department.
- Configure Switch Virtual Interfaces (SVIs) on multilayer switches for inter-VLAN routing.
- Assign IP addresses to SVIs.
- Configure a dedicated DHCP server in the server room.
- Ensure all devices obtain IP addresses dynamically.
- Assign static IP addresses to devices in the server room.
- Configure OSPF on routers and multilayer switches to advertise routes.
- Configure SSH on all routers and layer three switches.
- Configure port-security for the Finance and Accounts department.
- Use sticky method to obtain MAC addresses and set violation mode to shutdown.
- Configure PAT using the respective outbound router interface IPv4 address.
- Implement the necessary ACL rule.
- Configure wireless networks for each department using Cisco Access Points.
- Configure ISP routers with the provided public IP addresses.
- Test network communication and ensure all configurations are working as expected.
- Verify connectivity, inter-VLAN routing, DHCP operation, OSPF routing, SSH access, port security, and PAT.
This network design ensures redundancy, scalability, and efficient communication across all departments. The use of Cisco Packet Tracer allows for simulation and verification of the network before actual implementation. By following the hierarchical model and implementing the specified configurations, the network will meet current business needs and be future-proofed for growth!