The university has recently leased a building in Adelphi, Maryland. The building
ID: 3667822 • Letter: T
Question
The university has recently leased a building in Adelphi, Maryland. The building will house some offices, classrooms, a library, and computer labs. Security is very important for UMUC, as the university must protect students’ and employees’ data, as well as any intellectual property that UMUC has on its servers and computers. As a result, IT management would like to take the time to review some proposals on how best to move forward. As a network engineer, you have been asked to prepare a network proposal on how to set up a secure network infrastructure in this new building to support university operations.
You will provide detailed network design proposal. Your task is to design the network for this new building with the following criteria:
Student-accessed computers should be on separate network from the staff-accessed computers. In addition, computers for public use should be on a separate network. The open-wifi network should also be on a separate network.
There must be a minimum of 40 Mbps Internet connection, with a backup line capable of at least 20Mbps. Cable, DSL, or FIOS should not be used for primary Internet service.
The network has been assigned the 10.13.0.0/16 network address for all computers and devices.
Use IEEE-style citation.
Use correct network terminology.
The use of diagrams is encouraged.
Your proposal will be submitted in three major parts:
1. Physical Network Design
In this section, address each of the following.
1. Define the topology that will be used.
2. Select the appropriate network media.
3. Select the appropriate network connecting devices, including network security devices.
4. Select the appropriate computer systems to use to support the network design.
5. Determine a physical layout of the computers on the floor plan, along with the network wires (network wiring diagram).
6. Provide justifications for each element of your network design (numbers 1–4 above).
2. Network Addressing
In this section, address each of the following.
1. Define the subnets (based on rooms, floor, department, or other criteria).
2. For each subnet, explain which devices/groups/users/rooms will be on this subnet, define the network address, subnet mask, and available IP addresses to be used by computers or devices.
3. Show the calculations on how the subnet information are calculated
3. Network Services Design.
In this section, address each of the following.
1. Identify network services needed.
2. List additional servers or network devices needed to implement the network.
3. List network security measures to be implemented.
Building dimensions: Length: 240 Feet, Width: 95 Feet, Height: 30 Feet
The building will house six computer labs that will be used for instruction. In the building diagrams above, the labs are labeled Classroom #1, Classroom #2, and Classroom #4 on the first floor and Classroom #1, Classroom #2, and Classroom #5 on the second floor; each computer lab will have a closet. Each lab will have 26 computers: 24 student computers, 1 instructor computer, and 1 server in the closet for instructional use.
In addition, there will be a Student Computer Lab that will provide computer access to students to do their homework. There will be 25 computers in this lab and a server in the closet. To allow students access to library resources, the library will also have 10 computers for the general public to use and 5 computers for library staff.
Finally, there are various offices in the building. Each of these offices will have one computer for staff use, with the exception of the admissions office, which will have five computers. There will be two server rooms, one on the first floor and one on the second floor.
Explanation / Answer
The university has recently leased a building in Adelphi, Maryland. The building will house some offices, classrooms, a library, and computer labs. Building dimensions: Length: 240 Feet, Width: 95 Feet, Height: 30 Feet. The building will house six computer labs that will be used for instruction. The labs are labeled Classroom #1, Classroom #2, and Classroom #4 on the first floor and Classroom #1, Classroom #2, and Classroom #5 on the second floor; each computer lab will have a closet. Each lab will have 26 computers: 24 student computers, 1 instructor computer, and 1 server in the closet for instructional use.In addition, there will be a Student Computer Lab that will provide computer access to students to do their homework. There will be 25 computers in this lab and a server in the closet. To allow students access to library resources, the library will also have 10 computers for the general public to use and 5 computers for library staff.
Physical Network Design:
According to me I follow the star topology and or mesh topology be used with LAN line, on the network CAT5e or CAT 6 along with UTP cable because it is the low cost and the speed of over 500 to 1000 Mbps.
In a star topology, each device is connected via a single connection to a central point, which is typically a switch or a wireless access point.The network signal will reach the building and connect all wired devices but the signal would not be as strong in some areas, for explore this we use 75 micron fiber optic with IT closet in each floor. The micron optic cable deliver 1000 Mbps to 100 meters areas or more than. For the wireless network we need speeds of 100 to 300Mbps. When talk about security unauthorized access in data transfer we have to give more security on WPA2 configuration with usernames and passwords. So AES 256 encryption and IEEE 802.1ZX authentication confirm the security in this situation.
Cisco devices like Verizon’s T-1 link will be used for the network connecting. Cisco (4500 series) switches will be used in the setup of 240 ports of 10/100/1000 baseT Ethernet communication, with location in the server room on each floor for each switch. Active Directory will be used to authenticate and authorize users through a sign on service which will secure UMUC’s vulnerable data. UMUC’s network will need a Dynamic Host Configuration Protocol which will be managing the IP addresses across its network. Microsoft DHCP save network for the vulnerability of a fake DHCP server which cause network problems with an authorized Dynamic Host Configuration Protocol. It also broadcast to a discovery signal, and the relay service to start up all of the Cisco 4500 series switches. Layer 2 core network service broadcasting by the Cisco series 4500 switch which will be in the first floor’s IT closet to make sure that the signal and performance is 100%. By enable Cisco’s EIGRP routing protocol make faster convergence rate in traffic between Virtual Lans, and the rapid spanning tree protocol by assuring the countering possible routing loops and also strengthening the OSI layer 2. The Cisco Aironet series 3500 Wireless AP units will be used to give a traffic free merger with other Cisco network devices. It will use through Cisco’s proprietary OSI layer 2 Cisco Discovery Protocol and provide UMUC’s private information is safeguarded along with public. A Cisco 5540 ASA firewall will be used for the Internet and LAN for filtering traffic. DMZ services and IPSec VPN for connections will be merged with authorization and authentication.
Network Addressing:
while developing a network the user is the number one person or persons that have to be satisfied with the network weather the network run slow or fast etc. develop a network that satisfies UMUC’s staff and students for the work they do day in and day out. UMUC’s network will require IP addressees and a design for them which will allow the network to advance in the future, and cause less issues for the IT department. UMUC’s network will be designed on a 10.13.0/16 network address for all of the computers and devices. The routing for this IP address will be 151.1.1.1. The majority of the network will involve physical wiring apart from Student area, where Wireless access will be provided. UMUC’s building will share a one Internet access connection which will be the T-1 link from Verizon which is disscuss as above. All UMUC information must be protected and securing all of the data through firewalls and proxy servers.
Each one of the IP addresses used will begin with 10.13 2 beginning octets. If the third octet number begins with one then it for staff only. If it begins with 2 then it will be students only. if the second digit is a one then the host will be given that IP address which belong to the first floor. The second floor will do the same thing instead if the second digit is a two then the host will be on the second floor of UMUC classrooms. The number three will be the host connection is connecting to the wireless network, which used in the Student area. To show that the IP address is for the staff only digit number 3 of the third octet of a IP address will start with a 1.If the third octet starts with a 3 then it will be for different office areas for staff usage, the number 4 in octet number in the third digit slot will be for the IP address in the admissions office.
IP Address Scheme:
Student lab
10.13.222.1-62/26
Comp. lab 1 first floor
10.13.212.1- 30/27
Comp. lab 2 first floor
10.13.212.33 – 63/27
Comp. lab 3 first floor
10.13.212.66-96/27
Comp. lab 4 first floor
10.13.212.99-129/27
Comp. lab 5 first floor
10.13.212.132-162/27
Comp. lab 6 first floor
10.13.212.164-194/27
Library stud subnet
10.13.212.1-14/28
Library staff subnet
10.13.111.1-6/29
Lab instructor subnet
10.13.111.1-14/28
classroom instructor subnet
10.13.111.17-32/28
staff network subnet
10.13.113.1-6/29
Admissions subnet
10.13.114.1-6/29
Wireless net subnet
10.13.130.1-14/28
Server net subnet
10.13.10.1-30/27
Network device subnet
10.13.20.1-14/28
Printer's subnet
10.13.30.1-30/27
DMZ network subnet/WAN IP
151.1.1.1-2/30
Network Services Design:
With acquisition of building in Adelphi, Maryland provide the new network topology device and implemented for consistence connectivity across each of the room along with security concepts.The server platforms will consist of Dell( PowerEdge R910 ) running the Windows Server 2008 R2 operating system and setup to provide the DHCP mentioned previously. In addition, Microsoft Exchange Server 2010 email, calendar and schedule support will also be installed. The Dell T910 systems for fault tolerant RAID 6 with hard drives .Hot swap power supplies will also be featured on the server hardware platforms, again to ensure zero downtime in the event of a power supply failure. The UPS systems will be equipped with battery backup and capable of shutting down the servers to prevent file system damage should an extended power outage occur. Dell T1650 Workstations have been selected for UMUC workstations due to their cost effective. In additional Purchasing the workstations and servers from the same vendor (Dell) will provide UMUC to purchase best pricing for this project.
Student lab
10.13.222.1-62/26
Comp. lab 1 first floor
10.13.212.1- 30/27
Comp. lab 2 first floor
10.13.212.33 – 63/27
Comp. lab 3 first floor
10.13.212.66-96/27
Comp. lab 4 first floor
10.13.212.99-129/27
Comp. lab 5 first floor
10.13.212.132-162/27
Comp. lab 6 first floor
10.13.212.164-194/27
Library stud subnet
10.13.212.1-14/28
Library staff subnet
10.13.111.1-6/29
Lab instructor subnet
10.13.111.1-14/28
classroom instructor subnet
10.13.111.17-32/28
staff network subnet
10.13.113.1-6/29
Admissions subnet
10.13.114.1-6/29
Wireless net subnet
10.13.130.1-14/28
Server net subnet
10.13.10.1-30/27
Network device subnet
10.13.20.1-14/28
Printer's subnet
10.13.30.1-30/27
DMZ network subnet/WAN IP
151.1.1.1-2/30
Related Questions
Navigate
Integrity-first tutoring: explanations and feedback only — we do not complete graded work. Learn more.