Scribd
Upload
17 views5 pages

Network Documentation GERAFIL

Uploaded by

James Roui Gerafil
Copyright
© © All Rights Reserved
We take content rights seriously. If you suspect this is your content, claim it here.
Available Formats
Download as PDF, TXT or read online on Scribd
17 views5 pages

Network Documentation GERAFIL

Uploaded by

James Roui Gerafil
Copyright
© © All Rights Reserved
We take content rights seriously. If you suspect this is your content, claim it here.
Available Formats
Download as PDF, TXT or read online on Scribd
You are on page 1/ 5

Network Documentation

Layers
Core Layer - Contains core switch (Cisco 2960), the switch provides high-capacity data transfer

between distribution switches. Mainly, is the central part of a network that provides high-speed,
high-
capacity connectivity between different parts of the network. It acts as the primary pathway for
data

traffic, ensuring quick and efficient transport of data between distribution layers and external
networks.
Distribution Layer - The distribution layer serves as the intermediary between the core and
access layers in a network. It is responsible for routing, filtering, and policy enforcement such as
security.
This layer aggregates traffic from access switches and forwards it to the core layer.
Access Layer - The access layer is the network layer where end-user devices like computers,
printers, and phones connect.

Subnets and IP utilize

Lab 1 Lab 2 Lab 3


IP 192.168.1.0 192.168.2.0 192.168.3.0
Subnet 192.168.1.100/20 192.168.2.100/20 192.168.3.100/20
Access 192.168.1.100 192.168.2.100 192.168.3.100
Point
IP
IP 192.168.1.101 - 192.168.1.120 192.168.2.101 - 192.168.2.120 192.168.3.101 - 192.168.3.120
Range

ACCESS POINT ROOM 1 TO ROOM 10

R1 192.168.4.101
R2 192.168.4.102
R3 192.168.4.103
R4 192.168.4.104
R5 192.168.4.105
R6 192.168.4.106
R7 192.168.4.107
R8 192.168.4.108
R9 192.168.4.109
R10 192.168.4.110
DIAGRAM LEGEND

DEVICE INVENTORY
Device Model no. Interfaces IP Assignments
Core Switch Cisco 2960 24 Gigabit 192.168.1.0
Ethernet Ports
Access Switch Cisco Catalyst 24 Ethernet Ports, 192.168.1.0 - 192.168.3.0
9500 4 SFP Ports
Router Cisco ISR 4331 2 Ethernet Ports, N/A
1x Gigabit
Ethernet WAN
Port
Access point Ubiquiti UniFi AP- 1 Gigabit Ethernet 192.168.4.101 - 192.168.4.110

AC Port
Security Policies
The network security policies include enforcing strong firewall rules to control inbound and
outbound
traffic, segmenting the network with VLANs to limit access and improve security, and
implementing strict
password policies such as complex passwords, periodic changes, and multi-factor authentication.
Access
is granted based on the principle of least privilege and role-based access control (RBAC), with
regular
audits to ensure compliance. Device security is enhanced with endpoint protection, encryption,
and
network access control (NAC). Network monitoring, log retention, and incident response plans
ensure
continuous security, while remote access is secured through VPNs and remote desktop controls.

Trouble Shooting Guide


Connectivity Issues
- Check physical connections: Ensure cables are plugged in and devices are powered.
- Ping test: Ping the gateway or website to check network status.
- Reboot devices: Restart routers, switches, or affected devices.
Slow Network Performance
- Monitor bandwidth: Check for excessive usage with Task Manager or Activity
Monitor.
- Ping test: Run a ping to check latency.
- Check physical issues: Ensure cables and devices are working correctly.
DHCP Issues
- Check DHCP server: Ensure it's running and providing IP addresses.
- Verify IP pool: Ensure the DHCP server has enough available addresses.
- Reboot devices: Restart the router or client devices if needed.

IP Address Conflicts
- Identify conflict: Use ipconfig or ifconfig to check the IP address.
- Check DHCP range: Ensure static IPs are outside the DHCP pool.
- Release/Renew IP: Use ipconfig /release and ipconfig /renew to resolve conflicts.
Wireless Connectivity Issues
- Signal strength: Check if the device is within range.
- Check settings: Verify SSID and security settings are correct.
- Restart access points: Reboot Wi-Fi routers or access points.

Challenges

Scalability
Explain how your design could scale if additional computer laboratories or rooms were
added to the building.

The design I made already have 2 each, core and distribution switch that can
help increased traffic load. It can handle few more additional laboratories or rooms.
While an additional access switches and wireless access points, might be necessary
to cover the new rooms and labs, ensuring adequate bandwidth and signal strength.
Last, allocate new for the new labs, updating the DHCP scope and routing
configuration.

Redundancy
Include a brief plan for redundancy in your design to ensure network availability in case
of device failure.

To ensure network availability in case of device failure, the design includes two
core and two distribution switches for redundancy. Things to add might be,
Implement Spanning Tree Protocol (STP) or Rapid Spanning Tree Protocol (RSTP)
across all switches to avoid network loops and provide alternate paths in case of link
failure. Add additional access points and ensure they are managed by a central
controller to provide seamless coverage and failover for wireless clients.

Network Monitoring
Describe how you would monitor network traffic and access point performance to
ensure optimal performance.
To ensure optimal performance, I would use network management tools like
SolarWinds or PRTG to monitor network traffic, track bandwidth utilization, and
identify bottlenecks with SNMP and flow analysis. For access points, I would use a
Wireless LAN Controller or cloud-based system to monitor signal strength, client
connections, and interference. Regularly assessing client density and channel
utilization would help optimize AP performance, while setting up automatic alerts
for traffic anomalies or device failures

You might also like

pFad - Phonifier reborn

Pfad - The Proxy pFad of © 2024 Garber Painting. All rights reserved.

Note: This service is not intended for secure transactions such as banking, social media, email, or purchasing. Use at your own risk. We assume no liability whatsoever for broken pages.


Alternative Proxies:

Alternative Proxy

pFad Proxy

pFad v3 Proxy

pFad v4 Proxy