1 MOD005342 Network Routing and Switching Essentials Assessment Description Assignment Element 010 2 Table of Contents ASSESSMENT DESCRIPTI ON ................................ ................................ ................................ ....................... 3 CONFIGURATION AND TE STING OF A SMALL NET WORK ................................ .......................... 4 INTRODUCTION ................................ ................................ ................................ ................................ ................... 4 ABOUT THE COMPANY ................................ ................................ ................................ ................................ ....... 4 INITIAL TOPOLOGY ................................ ................................ ................................ ................................ ............. 4 IP ADDRESSING (10%) ................................ ................................ ................................ ................................ .... 5 NETWORK REQUIREMENTS AND IMPLEMENTATION (40%) ................................ ................................ .... 8 TESTING THE NETWORK (10%) ................................ ................................ ................................ ................... 10 TECHNICAL REPORT (40 %) ................................ ................................ ................................ .................... 10 WHAT TO SUBMIT AND W HERE? ................................ ................................ ................................ ......... 10 3 Assessment Description Throughout the trimester you will learn about the most important protocols and concepts related to Routing and Switching. The assessment will allow you to demonstrate your understanding of these concepts through their implementation and testing. The learning outcomes evaluated by this assignment element are: ïâ· Design and test a small routable network comprising switched LAN and WAN components. ïâ· Configure routers and switches to implement small routable networks supported with desired network technologies. ïâ· Design and implement securit y in a small routable network. The assignment consist s of two parts: ïâ· Configuration and testing of a small network (60% ) ââ¬âYou are required to complete the configuration and testing of a small network . The instructions are indicated in th e following sections of this document and you must use the 010_MOD005342_Case_study.pka pre - configured Packet Tracer file to complete your solution . This part is subdivided as follows: o IP addressing (10%) o Configuration (40%) o Testing (10%) ïâ· Technical report (40% ) ââ¬â More information about this part is indicated below. Overall words count for both parts (together) equivalent to 2500 (+/ - 10% ) words . 4 Configuration and Testing of a Small Network The following sections describe the requirements to fulfil the first part of the assessment element. Introduction Poco Loco Co. is a brand -new company based in Chelmsford that is looking into designing and deploying their internal network. They have approached ARU with a consulting contract for students to design, implement and document a proper network design that can accommodate the requirements of the company . This document describes the current state of the network as well as the requirements of Poco Loco Co., with a description of the final deliverables for this assign ment. About the Company Poco Loco Co. is a small business dedicated to the import of Latin American produce into the UK, most of their business relies on the use of a network and therefore the importance of guaranteeing a reliable and secure connection. Th e company is divided in four main units: IT department with five members of staff, the senior management with ten members and the rest of the staff which consists of 50 employees dedicated to different tasks within the company. Initial Topology The compan y has already come up with a network topology, as shown in Figure 1. 5 Figure 1. Poco Loco Co. network topology . The network is structured as follows : ïâ· The Internet : This network is outside Poco Loco Co. and canââ¬â¢t be modified . It represents the connection to the internet and for now it only has an HTTP S server accessible through the https://PocoLoco.co m URL . ISP has been correctly configured to allow communicatio n between Poco Loco Co. and the internet . ïâ· R2 : This is the router that acts as the companyââ¬â¢s gat eway towards the internet. This router will translate all private IP addresses of the company into a public IP address (more details below). ïâ· R1 : This router connects the devices belonging to IT, staff and servers to the other networks (Internet and R2 LAN) . ïâ· R3 : This router connects the senior management devices to the rest of the networks (Internet and R1 LAN). ïâ· Server Farm : The company has three servers in total with no intentions on expanding the number of servers. The DNS server has already been configured and it shouldnââ¬â¢t be changed . Connections between certain devices have already been made, you will need to complete th e connections according to the requirements of the company as described below. IP Addressing (10%) The only thing that the company knows is that they will be using the private IP network address of 192.168.1.0/24. They have already calculated the network 6 IP address needed for the Server Farm and they would like you to create an efficient IP addressing scheme that fulfil s the requirements indicated in Table 1. You must complete Table 1 with the appropriate network IP addresses and subnet masks to be used. N otice that they would like to use a different IP address for each of the different group of users available within the company. Group # of devices Network IP address Subnet mask IT 7 STAFF 50 Senior Management 10 Servers 3 192.168.1.96 255.255.255.248 Serial links 2 (R1 to R2) 2 (R3 to R2) Table 1. IP addressing Requirements Considering also that: ïâ· IT_1 and IT_2 PCs belong to the IT group ïâ· STAFF_1 and STAFF_2 PCs belong to the STAFF group ïâ· SENIOR_1 and SENIOR_2 PCs belong to the Senior Management group ïâ· NTP_Server, Syslog_Server and DNS_Server belong to the Servers group Use Table 2 to write down the IP addresses of each device in the network . Yo u can add rows if needed. 7 De vice Inte rfa ce Priva te IP a ddre ss Subne t Ma sk De fa ult Ga te w a y Public IP a ddre ss Subne t ma sk R2 S0/0/ 0 -- -- -- 209.165.1.2 255.255.255.252 S0/0/1 -- -- -- S0/1/0 -- -- -- R1 S0/0/1 -- -- -- Fa0/0 -- -- -- R3 S0/0/0 -- -- -- Fa0/0 -- -- -- S1 Management VLAN (IT) -- -- S2 Management VLAN (IT) -- -- S3 Management VLAN (SENIOR ) -- -- NT P_Se rve r Fa0 192.168.1.99 255.255.255.248 192.168.1. 97 209.165.2.99 255.255.255.0 Syslog_Se rve r Fa0 192.168.1.100 255.255.255.248 192.168.1. 97 209.165.2.100 255.255.255.0 DNS_Se rve r Fa0 192.168.1.101 255.255.255.248 192.168.1. 97 209.165.2.101 255.255.255.0 IT_1 Fa0 DHCP DHCP DHCP NAT NAT IT_2 Fa0 DHCP DHCP DHCP NAT NAT STAFF_1 Fa0 DHCP DHCP DHCP NAT NAT STAFF_2 Fa0 DHCP DHCP DHCP NAT NAT SENIOR_1 Fa0 DHCP DHCP DHCP NAT NAT SENIOR_2 Fa0 DHCP DHCP DHCP NAT NAT Table 2. Poco Loco Co. IP address scheme 8 Network Requirements and Implementation (4 0%) Poco Loco Co. has specified the following requirements to be considered whe n designing and implementing the network: ïâ· Basic configuration . All routers and switches within the network domain must have basic configuration su ch as hostname, passwords, SSH, and other parameters reviewed in the lessons. You must provide a table of the passw ords configured in each device, failing to do so will earn a mark of zero for the whole implementation section . ïâ· VLANs and Inter -VLAN routing . The LAN connected to R1 must implement the VLANs sp ecified in Table 3 . VLAN # Na me Sw itch Ports De scription Ne tw ork IP/Ma sk 10 IT S1, S2 This is the management VLAN for S1 and S2 20 STAFF S1, S2 VLAN used by the members of staff 30 SERVERS S1, S2 VLAN used by the servers 40 SENIOR S3 VLAN used by senior managers and is also used by S3 for management purposes 50 Native S1, S2, S3 NA This is the native VLAN NA Table 3 : VLAN configuration Notice that port assignment is empty. You must complete Table 3 indicating which ports have been assigned to each VLAN as well as the corresponding Network IP address and subnet mask. All VLANs (except Native) should be able to communicate with each other. ïâ· Static and Dynamic routin g. Routers within the companyââ¬â¢s domain must implement RIPv2 in the most secure and efficient way. R2 must 9 propagate via RIPv2 a default route to connect to the Internet . As a backup, R1 and R2 will implement floating static routes that will become active i n case the routing protocol stops working. ïâ· DHCP. Hosts will receive an IP address via DHCP from the router the y are connected to . The parameters must be provided according to the VLAN the devices belong to and it should include the DNS server. ïâ· NAT for I Pv4 . R2 will implement NAT when devices from the Poco Loco Co . try to connect to the internet. The ISP has assigned the first 50 public IP addresses from network 209.165.2.0/24 to be used by the company. Servers must translate to a static IP address whilst the rest of the devices must receive a dynamic one. ïâ· Syslog and NTP . The company has a syslog and a NTP server that must be use d by the networking devices of the company. ïâ· Port Security . Switches must allow only one device to connect to each port, the M AC address of the device must be saved within the configuration and the port must shutdown in case of a violation. Unuse d ports must be disabled. ïâ· ACLs . The following ACLs must be used to restrict the access to the VTY, only the hosts from the management VLAN can access the routers via VTY. To be able to go out to the internet the users must belong to either the STAFF or the SENIOR VLAN, the rest of the devices canââ¬â¢t connect to the internet. IT IS RECOMMENDED THAT BEFORE IMPLEMENTING THE ACLs YOU VERIFY THAT THE NETWORK CONNECTIVITY IS WORKING . Those requirements must be configured in the Packet Tracer file provided by your module tutor (01 0_MOD005342_Case_Study.pka). Important: The Packet Tracer file was created with Packet Tracer v 8.0.1 , therefore, yo u are expected to use the same version or a lower one, otherwise your file will not work. 10 Testing the network ( 10%) Finally, you must provide a connectivity test and a test plan for all the protocols implemented . The plans donââ¬â¢t need to include screenshots and should just indicate the test that needs to be done to verify that the mechanism is working properly. A template will be provided /shown by your tutor . Technical Report (40%) As part of the consulting job Poco Loco Co. requires documentation that highlights the advantages and disadvantages of using the networking mechanisms of your implementation. You will write a technical document that describes those networking mechanisms hi ghlighting the advantages and disadvantages of using each mechanism supported with references to best practices and/or industry recommendations . The CCNA curriculum or the slides of any other networking module from your course cannot be used as references . Your report must consider the following mechanisms: ïâ· Basic device configuration ïâ· VLANs and Inter -VLAN routing ïâ· Static and Dynamic routing ïâ· DHCP ïâ· NAT ïâ· Syslog and NTP ïâ· Port Security ïâ· ACLs What to submit and where? Before submitting make sure you have all the follow ing and that you are submitting through the appropriate submission tool : 11 ïâ· Final Report -> ONE Document, t he name of the file must be your SID number in 7 digits, i.e. 1234567.docx or 1234567.pdf , to be submitted via Canvas via and containing the following: o A cover page that includes your SID number ( NOT YOUR NAME ), and the module code and ARU logo. o Cover page o Table of Contents o Introduction o Configuration and testing of a small network as indicated in this document including IP addressing, and Connectivity and test plans. o The technical report as indicated in this document . o Conclusion o References/sources o Appendix ïâ· Packet Tracer file -> with the final configuration, the name of the file must be your SID number in 7 digits, i.e. 1234567.pka Both files must be submitted via Canvas, please DO NOT COMPRESS THE FILES, they must be submitted as individual files. The quality of your report w ill also be considered as part of the mark. Failure to use an appropriate academic style will result in a 10 marks penalty from the final mark . The submission of everything related to assessment element 010 must be done by the date specified in e -vision. Remember that you can also make a LATE submission of your work (2 working days after the submission deadline) , if you decide to submit late then your work will be capped to 40% .