Design and Simulation of An Enterprise N
Design and Simulation of An Enterprise N
Design and Simulation of An Enterprise N
By
Yahya Faydah
U10EE1019
A Final Year Project Submitted to the Department of Electrical and Computer Engineering
ABU, Zaria in Partial Fulfillment of the Requirements for the Award of Bachelor of
Engineering
SEPTEMBER 2015.
DECLARATION
I, YAHYA FAYDAH hereby declare that all topics provided and discussed in this project report are a
result of my research and experience. It has never been presented nor published anywhere for the award
of any certificate. All sources of information have been specifically acknowledged by means of
references.
……………………………………. ……………………………………
YAHYA FAYDAH DATE
U10EE1019
i
CERTIFICATION
This is to certify that this project titled “DESIGN AND SIMULATION OF AN ENTERPRISE
NETWORK USING PACKET TRACER: A Case Study of a Model Secondary School” was
found to satisfy the requirement for the award of Bachelor of Engineering (B.Eng.) degree in the
………………………..
……………………….. Supervisor
Date Prof. M. B. Mu’azu
……………………….. ………………………..
Project Coordinator Date
Engr. M. J. Musa
……………………….. ………………………..
Head of Department Date
Prof. M. B. Mu’azu
DEDICATION
This project report is dedicated to the memory of my parents, Late Mallam Yahya M Babayo, a father
who passed on a love of reading and respect for education and Prof.A.I Mamman who taught me that
even the largest task can be accomplished if it is done one step at a time, And to all requirements meant
ii
ACKNOWLEDGEMENT
I wish to express my profound gratitude to God Almighty, the most Gracious and the ever merciful and
my parents, for their unrestrained support in every situation throughout my whole life.
I also wish to thank the Head of Department, Prof MB. Muazu, who is also my project supervisor for
his extensive coaching and guidance, and the students and staff of the department of Electrical and
Computer Engineering. This also includes Malam Yusuf and Malam Bashir of ICT Data Center, Malam
Kabir and Malam Bukhari of Mamman Kontagora Lab, and Malam Tukur as they were the supportive
backbones of this project. I will always be grateful to God for making me know Denis Onyemachi and
an exceptional classmate Stephen Edegbo, for their kind support all through. I really appreciate all the
iii
My appreciation goes to my dear husband, Salis Bara’u Salis, my grandparents, uncles and aunties, the
entire members of my family, friends and classmates for always being supportive and encouraging in
all my endeavors. This includes those that in one way or the other had stretched out helping arms or seen
An E-learning system comprising of voice and data distribution service has been designed in this project
using a secondary school model as a case study. It involved identification, determination and
specification of data communication products and services that best satisfy user need in a way that gives
room for network scalability, redundancy and effective manageability. The project also focuses on the
design of an enterprise network by effectively deploying technologies and protocols as Voice over IP,
Access Control Lists, EIGRP routing, Fiber Optics, VLSM for addressing, Inter VLAN routing,
Network Address Translation, use of DHCP and wireless routing. This project should be useful to
enterprise network.
iv
TABLE OF CONTENTS
DECLARATION .................................................................................................................................... i
CERTIFICATION.................................................................................................................................. ii
DEDICATION ....................................................................................................................................... ii
ACKNOWLEDGEMENT .................................................................................................................... iii
ABSTRACT .......................................................................................................................................... iv
TABLE OF CONTENTS ....................................................................................................................... v
TABLE OF FIGURES ......................................................................................................................... vii
LIST OF ABBREVIATIONS .............................................................................................................. vii
CHAPTER ONE .................................................................................................................................... 1
INTRODUCTION.................................................................................................................................. 1
1.1 Background ...................................................................................................................................... 1
1.2 Aim and Objectives .......................................................................................................................... 1
1.3 Problem Statement ........................................................................................................................... 2
1.4 Methodology .................................................................................................................................... 2
1.5 Project Outline ................................................................................................................................. 2
CHAPTER TWO ................................................................................................................................... 3
LITERATURE REVIEW....................................................................................................................... 3
2.1 Network Design ............................................................................................................................... 3
2.2 Multi-Tiered Architecture ................................................................................................................ 4
2.3 Enterprise Networks ......................................................................................................................... 6
2.3.1 Requirements of an Enterprise Network ....................................................................................... 7
2.4 Network Protocol ............................................................................................................................. 7
2.5 Network Devices .............................................................................................................................. 8
2.5.1 Routers .......................................................................................................................................... 8
2.5.2 Switches ........................................................................................................................................ 9
2.5.2.1 Virtual LANS in Switches ....................................................................................................... 10
2.6 Wireless Access Point (WAP) ....................................................................................................... 10
2.7 Voice over Internet Protocol (VoIP) .............................................................................................. 11
2.8 Access Control Lists ...................................................................................................................... 12
2.8.1 Why Use ACL ............................................................................................................................. 12
2.8.2 Types of Access Control Lists .................................................................................................... 13
2.8.2.1 Standard Access-List ................................................................................................................ 13
v
2.8.2.2 Extended Access Lists.............................................................................................................. 13
2.9 IPAddressing .................................................................................................................................. 13
2.9.1 Subnet Masking ........................................................................................................................... 14
2.9.3 Network Address Translation ..................................................................................................... 15
2.10 Cisco Packet Tracer...................................................................................................................... 15
2.11 Network Models ........................................................................................................................... 16
2.11.1 The TCP/IP Model .................................................................................................................... 16
2.11.2 OSI Network Model .................................................................................................................. 17
2.12 Internet ......................................................................................................................................... 18
2.13 Intranet ......................................................................................................................................... 18
2.14 Peer-To-Peer Networks ................................................................................................................ 18
2.15 Client/server networks ................................................................................................................. 19
CHAPTER THREE .............................................................................................................................. 20
DESIGN METHODOLOGY ............................................................................................................... 20
3.1 Network Design ............................................................................................................................. 20
3.1.1 Network Architecture .................................................................................................................. 20
3.1.2 Network Connection ................................................................................................................... 21
3.1.3 Network Protocol ........................................................................................................................ 22
3.1.4 VLAN Configuration .................................................................................................................. 22
3.1.5 Dynamic Host Configuration Protocol (DHCP) ......................................................................... 23
3.1.6 Wireless Connectivity ................................................................................................................. 23
3.1.7 VoIP Configuration ..................................................................................................................... 24
3.1.8 Access Control List Configuration.............................................................................................. 25
3.1.9 Configuring Network Address Translation ................................................................................. 26
CHAPTER FOUR ................................................................................................................................ 27
RESULTS AND DISCUSSIONS ........................................................................................................ 27
4.1 Show IP Route Command on Core Router .................................................................................... 27
4.2 Verifying Interface Configurations ................................................................................................ 27
4.3 Automatic Assignment of IPs Using DHCP .................................................................................. 27
4.3 PING Command ............................................................................................................................. 28
4.4 Wireless Network ........................................................................................................................... 29
4.5 Access to Website .......................................................................................................................... 30
CHAPTER FIVE .................................................................................................................................. 31
CONCLUSION AND RECOMMENDATIONS ................................................................................. 31
vi
5.1 Significance .................................................................................................................................... 31
5.2 Conclusion...................................................................................................................................... 32
5.3 Limitations ..................................................................................................................................... 32
5.4 Recommendations for Future Work ............................................................................................... 32
APPENDIX A ...................................................................................................................................... 34
APPENDIX B ...................................................................................................................................... 37
APPENDIX C ...................................................................................................................................... 40
TABLE OF FIGURES
LIST OF ABBREVIATIONS
vii
DNS - DOMAIN NAME SERVER
viii
DOD - DEPARTMENT OF DEFENSE
ix
CHAPTER ONE
INTRODUCTION
1.1 Background
Information and communication are two of the most important strategic issues for the success of every
enterprise. While today nearly every organization uses a substantial number of computers and
communication tools (telephones, fax, and personal handheld devices), they are often still isolated.
While managers today are able to use the newest applications, many departments still do not
Networking is all about imagination and it’s difficult to track movement of packets in a real-time
environment, thus various networking concepts can be explained by creating a virtual environment,
showing the moment of packets, exactly as it would happen in real-time. Networks must meet the current
needs of organizations and be able to support emerging technologies as new technologies are adopted.
Network design principles and models can help a network engineer design and build a network that is
flexible, resilient, and manageable. This project introduces network design concepts, principles, models,
and architectures. It covers the benefits that are obtained by using a systematic design approach.
Emerging technology trends that will affect network evolution are also discussed. (Hierarchical Network
is based on the hierarchical architecture with a model secondary school as a case study.
a) Design and simulation of an enterprise network, with a model Secondary school as a case study, using
Packet Tracer
the devices can be burdensome. For example, in a large flat (switched) network, broadcast packets are
burdensome. As such the modular nature of the hierarchical design model is to enable accurate capacity
planning within each layer of the hierarchy, thus reducing wasted bandwidth. Network management
1.4 Methodology
In order to design and implement a Hierarchical Model of an Enterprise Network the following
f) Network Troubleshooting
dealt with the literature review where the fundamental concepts were carried out. More emphasis was
made in the methods used in designing and implementing the project’s Chapter Three. Extensive
simulation and network troubleshooting including their various results are presented in Chapter Four and
finally, Chapter Five concluded with concise conclusions and recommendations for future projects.
2
CHAPTER TWO
LITERATURE REVIEW
Hierarchy
In looking at how structured design rules should be applied to the campus, it is useful to look at the
problem from two perspectives. First, what is the overall hierarchical structure of the campus and what
features and functions should be implemented at each layer of the hierarchy? Second, what are the key
modules or building blocks and how do they relate to each other and work in the overall hierarchy?
Starting with the basics, the campus is traditionally defined as a three-tier hierarchical model
comprising the core, distribution, and access layers. The key principle of the hierarchical design is that
each element in the hierarchy has a specific set of functions and services that it offers and a specific
Modularity
The modules of the system are the building blocks that are assembled into the larger campus. The
advantage of the modular approach is largely due to the isolation that it can provide. Failures that occur
within a module can be isolated from the remainder of the network, providing for both simpler problem
detection and higher overall system availability. Network changes, upgrades, or the introduction of
new services can be made in a controlled and staged fashion, allowing greater flexibility in the
maintenance and operation of the campus network. When a specific module no longer has sufficient
capacity or is missing a new function or service, it can be updated or replaced by another module that
3
Flexibility
The ability to modify portions of the network, add new services, or increase capacity without going
through a major fork-lift upgrade are key considerations to the effectiveness campus designs. The
structured hierarchical design inherently provides for a high degree of flexibility because it allows
staged or gradual changes to each module in the network fairly independently of the others.
Resilience
While the principles of structured design and the use of modularity and hierarchy are integral to the
design of campus networks they are not sufficient to create a sustainable and scalable network
infrastructure. It is not enough that a campus network be seen as being complete solely because it
correctly passes data from one point to another. As shown by the numerous security vulnerabilities
exposed in software operating systems and programs in recent years, software designers are learning
that to be correct is no longer enough. Systems must also be designed to resist failure under unusual or
abnormal conditions. One of the simplest ways to break any system is to push the boundary
conditions—to find the edges of the system design and look for vulnerabilities. To break a network, it’s
a similar approach. Introduce a volume of traffic, number of traffic flows or other anomalous condition
The use of Multi-tiered Architecture, Enterprise networking, network security, ACL’s, Network
Protocols, IP addressing, VoIP are all important aspects that make up this project. They are explained
as follows:
Network design experts have developed the hierarchical network design model to help you develop a
topology in discrete layers. Each layer can be focused on specific functions, allowing you to choose
4
the right systems and features for the layer. For example, high speed WAN routers can carry traffic
across the enterprise WAN backbone, medium speed routers can connect buildings at each campus,
and switches can connect user devices and servers within buildings. (Hierarchical Network
• A Core layer of high end routers and switches that are optimized for availability and
performance.
• An Access layer that connects users via lower end switches and wireless access points. Each
layer of the hierarchical model has a specific role. The core layer provides optimal transport
between sites. The distribution layer connects network services to the access layer, and
implements policies regarding security, traffic loading, and routing. In a WAN design, the
access layer consists of the routers at the edge of the campus networks. In a campus network,
the access layer provides switches or hubs for end user access.
5
Figure 2.1 The Hierarchical Architecture of a Network
2.3 Enterprise Networks
An enterprise network can be thought of as a “plug-and-play” platform for connecting many different
computing devices. In this platform scenario, no user or group is an island. All systems can potentially
communicate with all other systems while maintaining reasonable performance, security, and
reliability.
This has largely been achieved with Internet protocols and Web technologies that provide better results
at lower cost and fewer configuration problems than the enterprise computing models. TCP/IP is a
unifying internetwork protocol that lets organizations tie together workgroup and division LANs, and
connect with the Internet. Web protocols (HTTP, HTML, and XML) unify user interfaces,
applications, and data, letting organizations build intranets (internal internets). A Web browser is like
6
a universal client, and Web servers can provide data to any of those clients. Web servers are distributed
throughout the enterprise, following distributed computing models. Multitier architectures are used,
in which a Web client accesses a Web server and a Web server accesses back-end data sources, such
as mainframes and server farms. An enterprise network would connect all the isolated departmental
or workgroup networks into an intercompany network, with the potential for allowing all computer
users in a company to access any data or computing resource. It would provide interoperability among
autonomous and heterogeneous systems and have the eventual goal of reducing the number of
a) Scalability – How well will the system(s) scale under volume and load. This includes what is
known as horizontal and vertical scaling. Horizontal means that the system will scale simple by
adding more resource units (e.g., more servers). Vertical scaling is the increase of one or more
b) Reliability – What is the elasticity or fault tolerance under multiple conditions and stimuli
d) Flexibility – How well does the system respond to integration or implementation in different
environments
f) Maintainability – How easy is it to maintain the code and components of the system
computers identify one another on a network, the form that the data should take in transit, and how this
7
information is processed once it reaches its final destination. Protocols also define procedures for
handling lost or damaged transmissions or "packets" [6]. TCP/IP (for UNIX, Windows NT,
Windows 95 and other platforms), IPX (for Novell NetWare), DEC net (for networking Digital
Equipment Corp. computers), AppleTalk (for Macintosh computers), and NetBIOS/NetBEUI (for
LAN Manager and Windows NT networks) are the main types of network protocols in use today.
Although each network protocol is different, they all share the same physical cabling. This common
method of accessing the physical network allows multiple protocols to peacefully coexist over the
network media, and allows the builder of a network to use common hardware for a variety of protocols.
several network segments into one network or an existing large network into smaller subnets. Routers
operate on the Network layer 3 of the OSI model and unite multiple physical network segments into a
single seamless, logical network by understanding how to forward traffic from a sender to ultimately
reach an intended receiver. This means that routing behavior is influenced strongly by the protocols in
use. To some extent, therefore, understanding routing also requires understanding how Network layer
protocols behave. A router directs a packet to its network or Internet destination using routing protocols
to exchange information and determine routing decisions. Routing exists in an intranet between routing
devices and on the ISP network between a border gateway router and a router.
Routers maintain routing tables that are consulted every time a packet needs to be redirected from one
interface or segment to another. Routes can be added manually to the routing table—a very secure but
8
less-manageable method, depending on the size of the network—or be updated automatically using
Routing protocols employ different techniques to prevent routing loops (when a packet is rerouted
a) Counting to infinity
b) Route poisoning
c) Split horizon
Knowing how the routing protocols work is extremely important in avoiding trouble situations, such
as:
a) A hacker sending a route update to your network and poisoning (marking as downed) an important
b) The creation of a routing loop that overloads the router and causes the network to become very slow
and appear over- utilized\The update of a route to send all outbound traffic to a different host, which
would then forward it to the ISP, launching an active interception or man-in-themiddle attack
2.5.2 Switches
Switches, as in Figure 2.2, are a special type of hub that offers an additional layer of intelligence to
basic, physical-layer repeater hubs. A switch must be able to read the MAC address of each frame it
9
receives. This information allows switches to repeat incoming data frames only to the computer or
computers to which a frame is addressed. This speeds up the network and reduces congestion.
Switches operate at both the physical layer and the data link layer of the OSI Model.
ports on a switch. When VLANs are created, it becomes possible to create smaller broadcast domains
within a layer 2 switched internetwork by assigning different ports on the switch to service different
subnetworks. A VLAN is treated like its own subnet or broadcast domain, meaning that frames broadcast
onto the network are only switched between the ports logically grouped within the same VLAN.
receives signals to and from the surrounding computers and passes back and forth between the wireless
computers and the cabled network as in Figure 2.3. Access points act as wireless hubs to link multiple
wireless NICs into a single subnet. Access points also have at least one fixed Ethernet port to allow the
10
Devices)
Internet as the transmission medium for telephone calls by sending voice data in packets using IP rather
One advantage of VoIP is that the telephone calls over the Internet do not incur a surcharge beyond
what the user is paying for Internet access, much in the same way that the user does not pay for sending
individual emails over the Internet. (Keagy, Integrating Voice and Data Networks, 2000).
11
Figure 2.4 How a VoIP Works In Networks
2.8 Access Control Lists
Access Control List (ACL) are filters that enables one to control which routing updates or packets are
permitted or denied in or out of a network. They are specifically used by network administrators to
filter traffic and to provide extra security for their networks. ACLs provide a powerful way to control
traffic into and out of your network; this control can be as simple as permitting or denying network
hosts or addresses. ACLs can be configured for all routed network protocols.
The most important reason to configure ACLs is to provide network security. However, ACLs can also
be configured to control network traffic based on the TCP port being used (Easa).
b) ACLs provide traffic flow control by restricting the delivery of routing updates.
12
d) Controls which type of traffic are forwarded or blocked by the router.
Address based access lists distinguish routes on a network you want to control by using network address
number (IP). Address-based access lists consist of a list of addresses or address ranges and a statement
number and other features and are used for packet based filtering for packets that traverse the
network .
2.9 IPAddressing
An IP (Internet Protocol) address is a unique identifier for a node or host connection on an IP network.
An IP address is a 32 bit binary number usually represented as 4 decimal values, each representing 8
bits, in the range 0 to 255 (known as octets) separated by decimal points. This is known as "dotted
decimal" notation. Every IP address consists of two parts, one identifying the network and one
identifying the node. The Class of the address and the subnet mask determine which part belongs to the
network address and which part belongs to the node address (Easa).
There are 5 different address classes. One can determine which class any IP address is in by examining
13
Class C addresses begin with 110x, or 192 to 223 decimal.
address. The network bits are represented by the 1s in the mask, and the node bits are represented by
the 0s. Performing a bitwise logical AND operation between the IP address and the subnet mask results
CIDR was invented several years ago to keep the internet from running out of IP addresses. The
"Classful" system of allocating IP addresses can be very wasteful; anyone who could reasonably show
a need for more than 254 host addresses was given a Class B address block of 65533 host addresses.
Even more wasteful were companies and organizations that were allocated Class A address blocks,
which contain over 16 Million host addresses! Only a tiny percentage of the allocated Class A and Class
B address space has ever been actually assigned to a host computer on the Internet.
The use of a CIDR notated address is the same as for a Classful address. Classful addresses can easily
be written in CIDR notation (Class A = /8, Class B = /16, and Class C = /24)
14
2.9.3 Network Address Translation
In Network Address Translation, Addresses can be assigned dynamically. Dynamic NAT allows hosts
on a private network that have IP addresses to access a public network such as the internet. Dynamic
NAT occurs when a router assigns an outside global address from a predefined address, or pool of
address to an inside private network device. The NAT advantage is that individual hosts are not directly
network behavior and ask “what if” questions. Packet Tracer provides simulation, visualization and
authoring, assessment, and collaboration capabilities and facilitates the teaching and learning of
complex technology concepts. Packet Tracer supplements physical equipment in the classroom by
allowing students to create a network with an almost unlimited number of devices, encouraging
practice, discovery, and troubleshooting. With Packet Tracer, one can build, configure, and
troubleshoot networks using virtual equipment and simulated connections, alone or in collaboration
with other students. Most importantly, Packet Tracer helps in creating own virtual “network worlds”
for exploration, experimentation, and explanation of networking concepts and technologies. A typical
15
Figure 2.5 A Packet Tracer Interface
different network models depending on what organization or company started them. The most
defense. It is also called the internet model because TCP/IP is the protocol used on the internet.
It is the basic communication language or protocol of the Internet. It can also be used as a
16
access to the Internet is set up, the computer is provided with a copy of the TCP/IP program
just as every other computer that may send messages to or get information from also has a copy
of TCP/IP.
Interconnection (OSI) reference model as in Figure 2.6. It is a conceptual model that characterizes
abstraction layers. The model is a product of the Open Systems Interconnection project at the
International Organization for Standardization. The purpose of the OSI reference model is to
guide vendors and developers so the digital communication products and software programs they
create will interoperate, and to facilitate clear comparisons among communications tools.
17
2.12 Internet
The Internet is a global system of interconnected computer networks that use the standard Internet
protocol suite (TCP/IP) to link several billion devices worldwide. It is an international network of
networks that consists of millions of private, public, academic, business, and government packet
switched networks, linked by a broad array of electronic, wireless, and optical networking technologies.
The Internet carries an extensive range of information resources and services, such as the inter-linked
hypertext documents and applications of the World Wide Web (WWW), the infrastructure to support
2.13 Intranet
An intranet is a computer network that uses Internet Protocol technology to share information,
operational systems, or computing services within an organization. This term is used in contrast to
extranet, a network between organizations, and instead refers to a network within an organization.
Sometimes, the term refers only to the organization's internal website, but may be a more extensive part
of the organization's information technology infrastructure, and may be composed of multiple local
area networks. The objective is to organize each individual's desktop with minimal cost, time and effort
An intranet may host multiple private websites and constitute an important component and focal point
of internal communication and collaboration. Any of the well-known Internet protocols may be found
in an intranet, such as HTTP (web services), SMTP (e-mail), and FTP (file transfer protocol). Internet
technologies are often deployed to provide modern interfaces to legacy information systems hosting
corporate data.
computers are involved and where strict security is not necessary. All computers have the same status,
18
hence the term 'peer', and they communicate with each other on an equal footing. Files, such as word
processing or spreadsheet documents, can be shared across the network and all the computers on the
network can share devices, such as printers or scanners, which are connected to any one computer.
'server', acts as the storage location for files and applications shared on the network. Usually the server
is a higher than average performance computer. The server also controls the network access of the other
computers which are referred to as the 'client' computers. Typically, teachers and students in a school
will use the client computers for their work and only the network administrator (usually a designated
19
CHAPTER THREE
DESIGN METHODOLOGY
b) Network Connectivity
d) VLAN
e) DHCP Configuration
g) VoIP
The network required the techniques/technologies applied in order for it to work as an Enterprise
network. They were selected for this purpose so as to meet the fiber optic as well as enterprise network
(DMZ). The DMZ had a switch which hosted a server firm representing an FTP, Web, E-mail and Fire
wall servers as in Figure 3.1. The distribution layer had two main routers and six aggregate routers
representing the following units of the school: Classrooms, Laboratories, Computer Laboratory,
Conference Room, Staff Room, Admin Unit and the Principal’s office. The listed units were units that
made up the access layer. A wireless access point was connected to the A2 VLAN of the administrative
20
switches.To each switch was a server attached this was due to the fact that there were different network
addresses and VLAN’s,therefore the servers helped assign automatic IP addresses to all pc’s in the
access layer.Added to that,IP phones were connected to the Administrative block and conference room
switches.Partaining IP addressing,the entire network had private IP adressing configured to it.In the
sense that ISP router had a network address of 192.168.0.0,The core,distribution and access layer had
a network address of 10.0.0.0.While the internet interface of the wireless adapter had a network address
connectivity, generic devices were used. This was because fiber optic connection, as in Figure 3.2,
covered longer distances. At the core and distribution layer, generic routers were used as they had
interfaces for both Serial and fiber optic connectivity. Generic switches were also used at the access
layer.
21
Figure 3.2 Part of the Fiber Optic Connectivity of the Network
specifically meant for routing numerous routers across an enterprise network. A total number of ten
routers were configured with the routing protocols. As such with the network
COREROUTER(config)#router eigrp 1
COREROUTER(router)#network 10.0.0.0
With the network address assigned, neighboring routers with IP addresses that fall under the same
were first configured from the VLAN data base by assigning a number and a name to each VLAN. For
22
example the VLANs assigned to the classroom switches were named A-CLASS and B-CLASS with
When assigning IP addresses, all the ports on a switch were assigned to the VLAN meant for it thereafter
The above configuration enabled packet transfer from and to switch interfaces.
3.1.5 Dynamic Host Configuration Protocol (DHCP)
Devices in the access layer were many and there appeared a possibility that it might expand, therefore
DHCP used to automatically assign IP addresses via routers acting as gateways to each switch as seen
below:
was done to ease excess connection of devices. Added to the fact that there will be need for flexibility
any time a device has to be added to the network. For this purpose, a Linksys Wi-Fi was configured as
in Figure 3.3. For it to be connected to the network, its interfaces had to be connected to a switch port.
23
Figure 3.3 The GUI of a Linksys WiFi
that could enable telephony service was the 2811 router. Hence the connection had to be done by fast
Ethernet cabling. From IP phones to 2811 router. Thereafter connecting the 2811 router to the
DMZ router using a serial DCE cable with the help of an NM8A/S module on the router. Configurations
were done sequentially as seen below (a DHCP pool to accommodate the IP phones has to be configured
first).
Router(DHCPconfig)#exit
Router(config)#telephony-service
Router(config-telephony)#max-dn 10
24
Router(config-telephony)#max-ephones 10
Router(config-telephony)#auto assign 1 to 9
Router(config-telephony)#exit
Router(config)#ephone-dn 1
Router(config-ephone-dn)#number 12345
Router(config-ephone-dn)#exit
Router(config)#ephone-dn 2
Router(config-ephone-dn)#number 33341
Router(config-ephone-dn)#exit
configured and assigned for example students were denied accessing the private web server as such the
Fa 3/0 interface was configured while those in the admin block were permitted.
CORE ROUTER>enable
CORE ROUTER#configure terminal
CORE ROUTER(config)#access-list 10 deny 10.0.20.0 0.0.0.255
CORE ROUTER(config)#access-list 10 permit host 10.0.92.1 0.0.0.255
CORE ROUTER(config)#access-list 10 deny 10.0.30.0 0.0.0.255
CORE ROUTER(config)#access-list 10 permit any
CORE ROUTER(config)#interface Fa 3/0
CORE ROUTER(config-if)#ip access-group 1 in
CORE ROUTER(config-if)#exit
CORE ROUTER(config)#interface Fa 0/0
CORE ROUTER(config-if)#ip access-group 1 in
CORE ROUTER(config-if)#exit
25
3.1.9 Configuring Network Address Translation
NAT configurations were placed into one of two: inside and outside. Inside indicates traffic coming
from within the school’s network and the outside network com an external network, in this case, the
ISP.A static NAT translation was configured between the dedicated public address and the dedicated
private IP address.
Router(config)#interface fa 0/0
Router(config-if)#int s1/0
26
CHAPTER FOUR
The results and analysis of tests carried out are discussed in the following sections
4.1 Show IP Route Command on Core Router
The result of the “show ip” is as shown in Figure 4.1
Figure 4.1 The IP Route of the Core Router
27
Figure 4.3 The Automatically Assigned IP Addresses Of PC0
4.3 PING Command
The ping command, as in Figure 4.4, is the basic command used to check for connectivity between
devices. It can be done on either switches, routers, servers or computers. In routers and switches the
command is applied in the privilege mode while on severs and routers it takes place in the command
prompt interface. The main requirement of a network is for data to travel at the shortest available time.
As seen below packets were sent to the DNS server at a period of 2ms.
28
Figure 4.4 Ping Statistics from PC2 to ISP Server
4.4 Wireless Network
After all the necessary configurations, the wireless laptops used automatically connected to the Linksys
29
Figure 4.5 Connection to the Linksys Router
4.5 Access to Website
The website server, as in Figure 4.6, was configured in the DMZ and devices in the entire network
30
Figure 4.6 A Programmed Website
CHAPTER FIVE
5.1 Significance
After the implementation and testing of network; Troubleshooting became easy as there were no
complex routing interaction. It was seen to it that devices could reach out to any point of the network
i.e. connectivity within all devices was ensured.Moreso the network could double or triple in size
31
5.2 Conclusion
With the recent advancements in technology, more reliable and convenient means of designing
networks will be required The aim of this project being an enterprise network, is to ensure that no
device remains onto itself, there should be speed in the connectivity, addition of devices should not
hinder the transfer of packets, added to that interfaces not meant to accesses should be blocked. It can
be concluded that this aims were accomplished and totally completed to working and troubleshooting
standards.
5.3 Limitations
When evaluating management solutions for enterprise networks, design simulators should keep in mind
the following:
a) There will be need to create fiber optic modules in the 3560 layer 3 switch.
b) Generic routers should have modules that enable telephony service, rather than being specific to
b) IPv6 addressing can be implemented to overcome any limitations in the number of hosts that can
32
REFERENCES
33
Network Devices. (n.d.). Retrieved March 19, 2015, from Computer Networkig Notes:
http://computernetworkingnotes.com/comptia-n-plus-study-guide/network-devices-hub-
switchrouter.html
Norberk Kircharians, P. P. (2014). CCIE Routing and Switching V5.0 Official Cert Guide :IP
Forwarding.
APPENDIX A
CORERouter#show interface
Serial2/0 is up, line protocol is up (connected)
Hardware is HD64570
Internet address is 192.168.2.2/30
MTU 1500 bytes, BW 128 Kbit, DLY 20000 usec,
reliability 255/255, txload 1/255, rxload 1/255 Encapsulation
HDLC, loopback not set, keepalive set (10 sec)
Last input never, output never, output hang never
Last clearing of "show interface" counters never
Input queue: 0/75/0 (size/max/drops); Total output drops: 0
Queueing strategy: weighted fair
Output queue: 0/1000/64/0 (size/max total/threshold/drops)
Conversations 0/0/256 (active/max active/max total)
Reserved Conversations 0/0 (allocated/max allocated)
Available Bandwidth 96 kilobits/sec
5 minute input rate 104 bits/sec, 0 packets/sec
5 minute output rate 104 bits/sec, 0 packets/sec
2310 packets input, 141191 bytes, 0 no buffer
Received 0 broadcasts, 0 runts, 0 giants, 0 throttles
0 input errors, 0 CRC, 0 frame, 0 overrun, 0 ignored, 0 abort
2277 packets output, 139480 bytes, 0 underruns
0 output errors, 0 collisions, 1 interface resets
0 output buffer failures, 0 output buffers swapped out
0 carrier transitions
DCD=up DSR=up DTR=up RTS=up CTS=up
Serial3/0 is up, line protocol is up (connected)
Hardware is HD64570
Internet address is 10.0.4.1/24
MTU 1500 bytes, BW 128 Kbit, DLY 20000 usec,
reliability 255/255, txload 1/255, rxload 1/255 Encapsulation
HDLC, loopback not set, keepalive set (10 sec)
Last input never, output never, output hang never
Last clearing of "show interface" counters never
Input queue: 0/75/0 (size/max/drops); Total output drops: 0
Queueing strategy: weighted fair
34
Output queue: 0/1000/64/0 (size/max total/threshold/drops)
Conversations 0/0/256 (active/max active/max total)
Reserved Conversations 0/0 (allocated/max allocated)
Available Bandwidth 96 kilobits/sec
5 minute input rate 104 bits/sec, 0 packets/sec
5 minute output rate 104 bits/sec, 0 packets/sec
2718 packets input, 160597 bytes, 0 no buffer
Received 0 broadcasts, 0 runts, 0 giants, 0 throttles
0 input errors, 0 CRC, 0 frame, 0 overrun, 0 ignored, 0 abort
2532 packets output, 151153 bytes, 0 underruns
0 output errors, 0 collisions, 1 interface resets
0 output buffer failures, 0 output buffers swapped out
0 carrier transitions
DCD=up DSR=up DTR=up RTS=up CTS=up
Serial6/0 is up, line protocol is up (connected)
Hardware is HD64570
Internet address is 10.0.11.2/24
MTU 1500 bytes, BW 128 Kbit, DLY 20000 usec,
reliability 255/255, txload 1/255, rxload 1/255 Encapsulation
HDLC, loopback not set, keepalive set (10 sec)
Last input never, output never, output hang never
Last clearing of "show interface" counters never
Input queue: 0/75/0 (size/max/drops); Total output drops: 0
Queueing strategy: weighted fair
Output queue: 0/1000/64/0 (size/max total/threshold/drops)
Conversations 0/0/256 (active/max active/max total)
Reserved Conversations 0/0 (allocated/max allocated)
Available Bandwidth 96 kilobits/sec
5 minute input rate 102 bits/sec, 0 packets/sec
5 minute output rate 104 bits/sec, 0 packets/sec
2728 packets input, 162210 bytes, 0 no buffer
Received 0 broadcasts, 0 runts, 0 giants, 0 throttles
0 input errors, 0 CRC, 0 frame, 0 overrun, 0 ignored, 0 abort
2506 packets output, 149868 bytes, 0 underruns
0 output errors, 0 collisions, 1 interface resets
0 output buffer failures, 0 output buffers swapped out
0 carrier transitions
DCD=up DSR=up DTR=up RTS=up CTS=up
Serial7/0 is up, line protocol is up (connected)
Hardware is HD64570
Internet address is 10.0.9.1/24
35
MTU 1500 bytes, BW 128 Kbit, DLY 20000 usec,
reliability 255/255, txload 1/255, rxload 1/255 Encapsulation
HDLC, loopback not set, keepalive set (10 sec)
Last input never, output never, output hang never
Last clearing of "show interface" counters never
Input queue: 0/75/0 (size/max/drops); Total output drops: 0
Queueing strategy: weighted fair
Output queue: 0/1000/64/0 (size/max total/threshold/drops)
Conversations 0/0/256 (active/max active/max total)
Reserved Conversations 0/0 (allocated/max allocated)
Available Bandwidth 96 kilobits/sec
5 minute input rate 104 bits/sec, 0 packets/sec
5 minute output rate 104 bits/sec, 0 packets/sec
2841 packets input, 173021 bytes, 0 no buffer
Received 0 broadcasts, 0 runts, 0 giants, 0 throttles
0 input errors, 0 CRC, 0 frame, 0 overrun, 0 ignored, 0 abort
2626 packets output, 157419 bytes, 0 underruns
0 output errors, 0 collisions, 1 interface resets
0 output buffer failures, 0 output buffers swapped out
0 carrier transitions
DCD=up DSR=up DTR=up RTS=up CTS=up
36
APPENDIX B
CORERouter#SHOW PROTOCOL
Global values:
Internet Protocol routing is enabled
Serial2/0 is up, line protocol is up
Internet address is 192.168.2.2/30
Serial3/0 is up, line protocol is up
Internet address is 10.0.4.1/24
Serial6/0 is up, line protocol is up
Internet address is 10.0.11.2/24
Serial7/0 is up, line protocol is up
Internet address is 10.0.9.1/24
Router#SHOW PROTOCOL
Global values:
Internet Protocol routing is enabled
Serial2/0 is up, line protocol is up
Internet address is 192.168.2.2/30
Serial3/0 is up, line protocol is up
Internet address is 10.0.4.1/24
Serial6/0 is up, line protocol is up
Internet address is 10.0.11.2/24
Serial7/0 is up, line protocol is up
Internet address is 10.0.9.1/24
Router#
Router#
Router#SHOW star
Router#SHOW startup-config
Using 591 bytes
!
version 12.2 no service timestamps log
datetime msec no service timestamps debug
datetime msec no service password-
encryption
!
hostname CORERouter
!
!
!
!
37
!
!
!
!
!
!
!
!
!
!
!
!
!
!
interface Serial2/0 IP address
192.168.2.2 255.255.255.252
!
interface Serial3/0 IP address
10.0.4.1 255.255.255.0
!
interface Serial6/0 IP address
10.0.11.2 255.255.255.0
!
interface Serial7/0 IP address
10.0.9.1 255.255.255.0
!
router eigrp 1
network 10.0.0.0
network 192.168.0.0
network 192.168.2.0
auto-summary
! IP
classless
!
!
!
!
!
!
!
line con 0
!
38
line aux 0
!
line vty 0 4
login !
!
!
End
39
APPENDIX C
CORERouter#SHOW PROTOCOL
Global values:
Internet Protocol routing is enabled
Serial2/0 is up, line protocol is up
Internet address is 192.168.2.2/30
Serial3/0 is up, line protocol is up
Internet address is 10.0.4.1/24
Serial6/0 is up, line protocol is up
Internet address is 10.0.11.2/24
Serial7/0 is up, line protocol is up
Internet address is 10.0.9.1/24
Router#
Router#SHOW star
Router#SHOW startup-config
Using 591 bytes
!
version 12.2 no service timestamps log
datetime msec no service timestamps debug
datetime msec no service password-
encryption
!
hostname Router
!
!
!
!
!
!
!
!
!
!
!
!
!
!
!
!
!
40
!
interface Serial2/0 IP address
192.168.2.2 255.255.255.252
!
interface Serial3/0 IP address
10.0.4.1 255.255.255.0
!
interface Serial6/0 IP address
10.0.11.2 255.255.255.0
!
interface Serial7/0 IP address
10.0.9.1 255.255.255.0
!
router eigrp 1
network 10.0.0.0
network 192.168.0.0
network 192.168.2.0
auto-summary
! IP
classless
!
!
!
!
!
!
!
line con 0
!
line aux 0
!
line vty 0 4
login !
!
!
end
41