Nov 23, 2024
HEP 456 Module 5 Section 12 and 13 Planning for Analysis and Interpretation and Gantt chartĀ
HEP 456 Module 5 Section 12 and 13 Planning for Analysis and Interpretation and Gantt chartĀ Name HEP 456: ā¦
Course Project
NAME
DeVry University
Introduction to Routing with Lab ā NETW204
Professor
NETW204 Class Project
This project includes three phases. You need to complete Phase I before moving on to Phase II. Likewise, you need to complete Phase II before moving on to Phase III or the final phase in the project.
Hi-tech Net Corp. is operating in three locations in the United States. Their main office is located in New York, NY. They have two branch offices located in Chicago, IL and Sacramento, CA.
You have just been hired as Hi-tech Net Corp.ās consulting engineer to implement their network infrastructure. Both branch offices will be directly connected to the main office in NY via a leased line circuit (point-to-point serial connection).
New Yorkās Office IP Information
The main office has four LAN segments: Executive, Engineering, Services, and
Native&Management. Each LAN segment is identified by a VLAN number as seen below. For example:
ā¢ Executive: VLAN 15
ā¢ Engineering: VLAN 25
ā¢ Services: VLAN 35
ā¢ Native&Management: VLAN 99
The organization is using the following network address in NY: 10.150.0.0/16.
ā¢ Executive: 60 computers only including future growth in this number
ā¢ Engineering: 80 computers only including future growth in this number
ā¢ Services: 115 computers including future growth in this number
ā¢ Native&Management: 12 computers including future growth in this number
*** Future growth means that we already take growth into consideration. Do not try to estimate or add more IP addresses than necessary to avoid getting an incorrect subnet.
Illinoisā Office IP Information
The IL branch has three LAN subnets with 45 IP addresses on each subnet. They use the following network address to obtain the required IL subnets: 10.150.100.0 /24.
Californiaās Office IP Information
The CA branch has three LAN subnets with 25 IP addresses on each subnet. They use the following network address to obtain the required CA subnets: 10.150.200.0 /25.
PHASE I (20 points total)āDue Week 3
Tasks to Do.
Task 1: Subnet the 10.150.0.0/16 network for NY and assign the first subnets to Services followed by Engineering. You may need to re-subnet for Executive and Native&Management subnets to avoid wasting IP addresses. Ensure that you re-subnet only the first unused subnet and nothing else. Assign the subnets to Executive and Native&Management. (5 points)
New York Office IP IP Address Range New Subnet New Network
Mask Address
VLAN 15-Executive 10.150.1.1 ā 10.150.1.62 255.255.255.192 10.150.1.0/26
VLAN 25-Engineering 10.150.0.129 - 10.150.0.254 255.255.255.128 10.150.0.128/25
VLAN 35-Services 10.150.0.1 - 10.150.0.126 255.255.255.128 10.150.0.0/25
VLAN 99- 10.150.1.65 ā 10.150.1.78 255.255.255.240 10.150.1.64/28 Native&Management
Task 2: Subnet the 10.150.100.0 /24 network for IL and assign the last IP address on the three subnets to the Loopback 1, Loopback 2, and Loopback 3 interfaces of the router. We will use a loopback or virtual interface to simulate the LAN subnets. This will speed up configuration and allows us to create our topology without rewiring. (3 points)
Illinois Branch IP Address Range New Subnet New Network
IP Mask Address
Loopback 1 10.150.100.1 - 10.150.100.62 255.255.255.19 10.150.100.0/26
2
Loopback 2 10.150.100.65 - 10.150.100.126 255.255.255.19 10.150.100.64/26 2
Loopback 3 10.150.100.129 - 10.150.100.190 255.255.255.19 10.150.100.128/2
2 6
Task 3: Subnet the 10.150.200.0 /25 network for CA and assign the last IP address on the three subnets to the Loopback 1, Loopback 2, and Loopback 3 interfaces of the router. We will use a loopback or virtual interface to simulate the LAN subnets. This will speed up configuration and allows us to create our topology without rewiring. (3 points)
California Branch IP Address Range New Subnet New Network
IP Mask Address
Loopback 1 10.150.200.1 - 10.150.200.30 255.255.255.224 10.150.200.0/27
Loopback 2 10.150.200.33 ā 10.150.200.62 255.255.255.224 10.150.200.32/27
Loopback 3 10.150.200.65 ā 10.150.200.94 255.255.255.224 10.150.200.64/27 Task 4: Use the following network address (10.1.255.0/25) to find the WAN subnets between NY and IL and NY and CA respectively. Note that there should only be two IP addresses per subnet for each WAN link. Assign the first WAN subnet to NY to IL and the second WAN subnet to NY to CA. (2 points)
WAN Subnets IP Address Range New Subnet Mask New Network Address
NY to IL 10.1.255.1 ā 10.1.255.2 255.255.255.252 10.1.255.0/30
NY to CA 10.1.255.5 ā 10.1.255.6 255.255.255.252 10.1.255.4/30
Task 5: Use Microsoft Visio to design the current network topology. Remember to use Loopback interfaces for the subnets in NY, IL, and CA. Use point-to-point interfaces to connect the remote branch offices to NY. See the sample network diagram below. Replace the phrase āIP Addressā by the correct IP address for each interface on the routers. Include the WAN IP addresses on the diagram as well. (7 points)
First Major Deliverable in the Project: IP scheme for all three locations (fill in the IP tables above) and the Visio Diagram.
PHASE II (30 points total)āDue Week 5
Now that you have completed your first major deliverable in the project, let us move on to the next phase in the project. You need to plan to implement the network. You will configure the switches first.
You should write all required configuration commands with their Command prompt mode in the table, middle column, under the āRequired Informationā instructions.
An example:
Task 1: Configure SW1. (3.5 points possible)
Configuration Task Required Information Points
Switch name SW1 Ā¼
Switch>enable
Switch#configure terminal
Switch(config)#hostname SW1
Secret Password Netw204 Ā¼
SW1(config)#enable secret NETW204
Disable DNS lookup SW1(config)#no ip domain-lookup Ā¼
Username and Password User= Admin1, Password=cisco123 Ā¼
SW1(config)#username Admin1 password cisco123
Message of the Day Unauthorized Access is Highly Prohibited! Ā¼
(MOTD) Banner SW1(config)#banner motd # Unauthorized Access is
Highly Prohibited!#
VTY Enable SSH and Disable Telnet. Ā½
SW1(config)#line vty 0 4
SW1(config-line)#transport input ssh
SW1(config-line)#exit
Encrypt the clear text Use the correct command to encrypt clear text Ā¼ passwords passwords.
SW1(config)#service password-encryption
Create the required Use the information provided to create the VLANs. Ā¼
VLANs. SW1(config)#interface vlan 15
SW1(config-if)#description Executive
SW1(config-if)#ip address 10.150.1.1 255.255.255.192
SW1(config)#interface vlan 25
SW1(config-if)#description Engineering
SW1(config-if)#ip address 10.150.0.129 255.255.255.128
SW1(config)#interface vlan 35
SW1(config-if)#description Services
SW1(config-if)#ip address 10.150.0.1 255.255.255.128
SW1(config)#interface vlan 99
SW1(config-if)#description Native and Management
SW1(config-if)#ip address 10.150.1.65 255.255.255.240 SW1(config-if)#exit
Assign the management Assign the IP Address just before the last valid IP Ā¼
IP address. Address on the Native&Management VLAN. VLAN 99
is the Native VLAN.
SW1(config)#interface vlan 99
SW1(config-if)#ip address 10.150.1.78 255.255.255.240 Enable the 802.1Q Trunk Use the correct switchport command to set the Ā¼ ports. Trunk port.
SW1(config)#interface fa0/1
SW1(config-if)#switchport trunk encapsulation dot1q
SW1(config-if)#switchport trunk allowed add vlan
15,25,35,99
SW1(config-if)#switchport mode trunk
SW1(config-if)#no shutdown
SW1(config-if)#exit
SW1(config)#interface fa0/3
SW1(config-if)#switchport trunk encapsulation dot1q
SW1(config-if)#switchport trunk allowed add vlan
15,25,35,99
SW1(config-if)#switchport mode trunk
SW1(config-if)#no shutdown
SW1(config-if)#exit
Configure all other ports Use the interface range command. Ā¼ as access ports. SW1(config)#interface range fa0/2, fa0/4-24
SW1(config-if-range)#switchport mode access
Assign F0/7 to the See the network diagram you drew for part 1. Ā¼
correct VLAN as per the SW1(config)#interface fa0/7
diagram. SW1(config-if)#switchport access vlan 25
SW1(config-if)#no shutdown
SW1(config-if)#exit
SW1(config)#interface fa0/2
SW1(config-if)#switchport access vlan 35
SW1(config-if)#no shutdown
SW1(config-if)#exit
Shutdown all unused Disable all unused ports in software. Ā¼ ports. SW1(config)#interface range fa0/4-6, fa0/8-24
SW1(config-if-range)#shutdown
Task 2: Configure SW2. (3.5 points possible)
Configuration Task Required Information Points
Switch name SW2 Ā¼
Switch>enable
Switch#configure terminal
Switch(config)#hostname SW2
Secret Password Netw204 Ā¼
SW2(config)#enable secret NETW204
Disable DNS lookup SW2(config)#no ip domain-lookup Ā¼
Username and User= Admin1, Password=cisco123 Ā¼
Password SW2(config)#username Admin1 password cisco123
Message of the Day Unauthorized Access is Highly Prohibited! Ā¼
(MOTD) Banner SW2(config)#banner motd # Unauthorized Access is
Highly Prohibited!#
VTY Enable SSH and Disable Telnet. Ā½
SW2(config)#line vty 0 4
SW2(config-line)#transport input ssh
SW2(config-line)#exit
Encrypt the clear text Use the correct command to encrypt clear text Ā¼ passwords passwords.
SW2(config)#service password-encryption
Create the required Use the information provided to create the VLANs. Ā¼
VLANs. SW2(config)#interface vlan 15
SW2(config-if)#description Executive
SW2(config-if)#ip address 10.150.1.1 255.255.255.192
SW2(config)#interface vlan 25
SW2(config-if)#description Engineering
SW2(config-if)#ip address 10.150.0.129 255.255.255.128
SW2(config)#interface vlan 35
SW2(config-if)#description Services
SW2(config-if)#ip address 10.150.0.1 255.255.255.128
SW2(config)#interface vlan 99
SW2(config-if)#description Native and Management
SW2(config-if)#ip address 10.150.1.65 255.255.255.240 SW2(config-if)#exit
Assign the management Assign the IP Address just before the last valid IP Ā¼
IP address. Address on the Native&Management VLAN. VLAN 99
is the Native VLAN.
SW2(config)#interface vlan 99
SW2(config-if)#ip address 10.150.1.78 255.255.255.240
Enable the 802.1Q Use the correct switchport command to set the Ā¼ Trunk ports. Trunk port.
SW2(config)#interface fa0/1
SW2(config-if)#switchport trunk encapsulation dot1q
SW2(config-if)#switchport trunk allowed add vlan
15,25,35,99
SW2(config-if)#switchport mode trunk
SW2(config-if)#no shutdown
SW2(config-if)#exit
Configure all other ports Use the interface range command. Ā¼ as access ports. SW2(config)#interface range fa0/2-24
SW2(config-if-range)#switchport mode access
Assign F0/3 to the See the network diagram you drew for part 1. Ā¼
correct VLAN as per the SW2(config)#interface fa0/3
diagram. SW2(config-if)#switchport access vlan 15
SW2(config-if)#no shutdown
SW2(config-if)#exit
SW2(config)#interface fa0/2
SW2(config-if)#switchport access vlan 99
SW2(config-if)#no shutdown
SW2(config-if)#exit
Shutdown all unused Disable all unused ports in software. Ā¼ ports. SW2(config)#interface range fa0/4-24
SW2(config-if-range)#shutdown
Task 3: Configure the NY Router. (6 points)
Task 4: Configure the IL Router. (4 points)
Note: You will probably notice that all the Loopback IP addresses show up as /32. To change that /32 to the real subnet mask of the Loopback interfaces you need to type the following command on each Loopback interface in the routers.
Interface Loopback 1 ip ospf network point-to-point
Task 5: Configure the CA Router. (4 points)ā
Task 6: Verify OSPF Configuration (6 points)
Task 7: Summarize the output of the commands used in Task 6. How can you tell that the network is working correctly? (3 points)
PHASE III (70 Points Total)āDue Week 7
Task 1: Configure the NY router as a DHCPv4 server for the executive and engineering VLAN. (4 points)
Task 2: Restrict Access to the VTY Lines to only come from Native&Management VLAN. (15 points)
Task 3: Configure static and dynamic NAT on NY. (25 points)
Configuration Item or Task Required Information Points Create a local database Username: webadmin 5 with one user account.
Task 4: Secure the network services. (16 points)
Task 5: Verify that your project meets the above requirements. Write a summary of what you did and explain what you have learned in the process. (10 points)
