User:Julfikarali1990

Cisco Packet Tracer Project
Project Design High Level Diagram:- The diagram below is the high level network architecture of the project. >

Cost of Network Equipment’s
Cisco 2811 routers cost $2000 each so 6 are required for making the offices. Straight through cables costs around $2.39 so I need 60 for connecting the end devices and interconnection between the switch and routers.And Cisco I need 2950 switch, 6 required so each costs $595. So the entire cost of networking device would be around $16000 approx.

Network Optimization
Cost of optimization of the network. I have used only a switch to divide the network in between them,so that the cot get reduced. I have used class C public ip address so as to reduce the price of ip address.

Detailed Network Architecture

The detailed network architecture gives a overview of the logical topology of the real time network that is being used by the companies to run its operation. The router located at the top of the router is the backup router or the back bone router,this path is made because if at any point of time the tier 1 ISP breaks then this alternative path would be there and the communication would be smooth. If there was no backup router then there would have been a single point of failure, so to avoid it I have used a back up router.

Tier 1 ISP routers are China Netcom for China, Tata India for India, Comcast USA for America, Strato AG Germany for Germany and Mobinet Iran for Iran. Tier 2 are the regional ISP of the particular countries. The corporate office take the internet connectivity from the particular regional Tier 2 ISP of their respective countries. The switches used in this architectural are all Cisco 2950 series switch. The routers used in this architecture are all Cisco 2811 series routers.

Individual Office Network (Head Quarter)

As it was given in the question that Boston is the Head Quarter of all the branches so taking that into consideration the following methods has been implemented at Boston.

There are 3 departments at Boston as HR, Technical, Finance. So for making the 3 departments I have used a single switch and on it I have used VLAN to make the departments separate from each other.

And for connectivity in between them I have used Inter-Vlan routing so in a switch three sub interfaces were created so that 3 individual networks can be formed.

Access-List has been implemented at Boston Office Router so that other departments are not able to ping Finance department at Boston.Only the 2 Finance departments Chennai Finance and Boston Finance communicate between each other but others has been restricted to do so.But the Finance department o Boston can communicative with all the end devices without any hassle.

If a packet has been send from a Host of Finance of Boston to Chennai HR host Computer then they would follow this path as per my network architecture. Boston Finance Host Computer to Boston Switch to Boston Office Router to Boston Regional ISP to Comcast USA ISP to Tata India tier 1 ISP(the path would be selected by the EIGRP protocol so as to follow the backup router or the direct connectivity) to Chennai regional ISP router to Chennai Office router to Chennai Office Switch to Chennai HR department host. The selection of the path is determined by the EIGRP routing protocol. It takes into consideration of load,delay,reliability and MTU to select the best path.

IP Addressing Scheme

Beijing Office IP Address :-

As per the question had been given we have to assign 300 ip address and the redundancy would be 65% so there would be 495 address. And there are two departments as HR and Technical at Beijing so I have taken two networks of 256 address each. The address block that has been used by me is 200.1.0.0/23. HR Department No of Host needed= 247 Network ID – 200.1.0.0/24 Starting Usable IP – 200.1.0.2/24 Last Usable IP – 200.1.0.254/24 Broadcast ID- 200.1.0.255/24 Subnet mask – 255.255.255.0 Default gateway for this network is 200.1.0.1 Subinterface Fa0/1.2 has been created for HR department at Beijing Office Switch for creating VLAN HR. TECHNICAL Department No of Host needed= 248 Network ID – 200.1.1.0/24 Starting Usable IP – 200.1.1.2/24 Last Usable IP – 200.1.1.254/24 Broadcast ID- 200.1.1.255/24 Subnet mask – 255.255.255.0 Default gateway for this network is 200.1.1.1 Sub-interface Fa0/1.3 has been created for HR department at Beijing Office Switch for creating VLAN TECH. Chennai Office IP Address :-

As per the question had been given we have to assign 300 ip address and the redundancy would be 65% so there would be 495 address. And there are two departments as Finance and Technical at Chennai so I have taken two networks of 256 address each. The address block that has been used by me is 200.1.2.0/23. Finance Department No of Host needed= 247 Network ID – 200.1.2.0/24 Starting Usable IP – 200.1.2.2/24 Last Usable IP – 200.1.2.254/24 Broadcast ID- 200.1.2.255/24 Subnet mask – 255.255.255.0 Default gateway for this network is 200.1.2.1 Subinterface Fa0/1.2 has been created for FIN department at Chennai Office Switch for creating VLAN FIN. TECHNICAL Department No of Host needed= 248 Network ID – 200.1.3.0/24 Starting Usable IP – 200.1.3.2/24 Last Usable IP – 200.1.3.254/24 Bordcast ID- 200.1.3.255/24 Subnet mask – 255.255.255.0 Default gateway for this network is 200.1.3.1 Subinterface Fa0/1.3 has been created for TECH department at Chennai Office Switch for creating VLAN TECH. NewYork Office IP Address :-

As per the question had been given we have to assign 300 ip address and the redundancy would be 65% so there would be 495 address. And there are two departments as HR and Technical at New York so I have taken two networks of 256 address each. The address block that has been used by me is 200.1.4.0/23. HR Department No of Host needed= 247 Network ID – 200.1.4.0/24 Starting Usable IP – 200.1.4.2/24 Last Usable IP – 200.1.4.254/24 Broadcast ID- 200.1.4.255/24 Subnet mask – 255.255.255.0 Default gateway for this network is 200.1.4.1 Subinterface Fa0/1.2 has been created for HR department at New York Office Switch for creating VLAN HR. TECHNICAL Department No of Host needed= 248 Network ID – 200.1.5.0/24 Starting Usable IP – 200.1.5.2/24 Last Usable IP – 200.1.5.254/24 Broadcast ID- 200.1.5.255/24 Subnet mask – 255.255.255.0 Default gateway for this network is 200.1.5.1 Subinterface Fa0/1.3 has been created for TECH department at New York Office Switch for creating VLAN TECH. Boston Office IP Address :-

As per the question had been given we have to assign 300 ip address and the redundancy would be 65% so there would be 495 address. And there are two departments as HR,Technical and Finance at Boston so I have taken two networks of 256 address each. And the first network has been sub divided into two subnets of 128.The address block that has been used by me is 200.1.6.0/23. HR Department No of Host needed= 123 Network ID – 200.1.6.0/25 Starting Usable IP – 200.1.6.2/25 Last Usable IP – 200.1.0.126/25 Broadcast ID- 200.1.6.127/25 Subnet mask – 255.255.255.128 Default gateway for this network is 200.1.6.1 Subinterface Fa0/1.2 has been created for HR department at Boston Office Switch for creating VLAN HR. TECHNICAL Department No of Host needed= 123 Network ID – 200.1.6.128/25 Starting Usable IP – 200.1.6.130/25 Last Usable IP – 200.1.6.254/25 Bordcast ID- 200.1.6.255/25 Subnet mask – 255.255.255.128 Default gateway for this network is 200.1.6.129 Subinterface Fa0/1.3 has been created for TECH department at Boston Office Switch for creating VLAN TECH. FINANCE Department No of Host needed= 249 Network ID – 200.1.7.0/24 Starting Usable IP – 200.1.7.2/24 Last Usable IP – 200.1.7.254/24 Broadcast ID- 200.1.7.255/24 Subnet mask – 255.255.255.0 Default gateway for this network is 200.1.7.1 Subinterface Fa0/1.4 has been created for FIN department at Munich Office Switch for creating VLAN FIN. Munich Office IP Address :-

As per the question had been given we have to assign 300 ip address and the redundancy would be 65% so there would be 495 address. And there are two departments as HR and Technical at Munich so I have taken two networks of 256 address each. The address block that has been used by me is 200.1.8.0/23. HR Department No of Host needed= 247 Network ID – 200.1.8.0/24 Starting Usable IP – 200.1.8.2/24 Last Usable IP – 200.1.8.254/24 Broadcast ID- 200.1.0.255/24 Subnet mask – 255.255.255.0 Default gateway for this network is 200.1.8.1 Subinterface Fa0/1.2 has been created for HR department at Munich Office Switch for creating VLAN HR. TECHNICAL Department No of Host needed= 248 Network ID – 200.1.9.0/24 Starting Usable IP – 200.1.9.2/24 Last Usable IP – 200.1.9.254/24 Broadcast ID- 200.1.9.255/24 Subnet mask – 255.255.255.0 Default gateway for this network is 200.1.9.1 Subinterface Fa0/1.3 has been created for TECH department at Munich Office Switch for creating VLAN TECH. Tehran Office IP Address :-

As per the question had been given we have to assign 300 ip address and the redundancy would be 65% so there would be 495 address. And there are two departments as HR and Technical at Tehran so I have taken two networks of 256 address each. The address block that has been used by me is 200.1.10.0/23. HR Department No of Host needed= 247 Network ID – 200.1.10.0/24 Starting Usable IP – 200.1.10.2/24 Last Usable IP – 200.1.10.254/24 Broadcast ID- 200.1.10.255/24 Subnet mask – 255.255.255.0 Default gateway for this network is 200.1.10.1 Subinterface Fa0/1.2 has been created for HR department at Tehran Office Switch for creating VLAN HR. TECHNICAL Department No of Host needed= 248 Network ID – 200.1.11.0/24 Starting Usable IP – 200.1.11.2/24 Last Usable IP – 200.1.11.254/24 Broadcast ID- 200.1.11.255/24 Subnet mask – 255.255.255.0 Default gateway for this network is 200.1.11.1 Subinterface Fa0/1.3 has been created for TECH department at Tehran Office Switch for creating VLAN TECH. Routers IP address 200.1.12.0/30 – Beijing Office to ISP. 200.1.12.4/30 - Beijing ISP Route to China Netcom Router ISP. 200.1.12.8/30 - China Netcom ISP Router to Tata India ISP Router. 200.1.12.12/30 - Tata India Router ISP to Chennai ISP. 200.1.12.16/30 - Chennai ISP Router to Chennai Office Router. 200.1.12.20/30 – Tata India Router ISP to Comacast ISP. 200.1.12.24/30 – Comcast ISP to Newyork ISP. 200.1.12.28/30 – Newyork ISP to New York office ISP. 200.1.12.32/30 – Comcast ISP to Boston ISP 200.1.12.36/30 – Boston ISP to Boston Office 200.1.12.40/30 – Comcast ISP to Starto Germany ISP 200.1.12.44/30 – Stato Germany ISP to Munich ISP. 200.1.12.48/30 – Munich ISP to Munich Office. 200.1.12.52 – Strato AG Germany ISP to Mobinet Iran 200.1.12.56/30 – Mobint Iran ISP to Tehran ISP. 200.1.12.60/30- Tehran ISP to Tehran Office router. 200.1.13.0/30 – China Netcom ISP to Backbone Router 200.1.13.4/30 – Tata India ISP to Backbone Router. 200.1.13.8/30 – Comcast America ISP to Backbone Network. 200.1.13.12/30 – Strato Germany ISP to Backbone Router. 200.1.13.0/30 – Mobinet Iran ISP to Backbone Router.

Routing Protocol Used for the organisation.
I have used EIGRP(Enhanched Interior Gateway Routing Protocol) because I have used all the networking componets of CISCO so EIRGP is the best routing protol as it is CISCO’s propietery protocol which uses Cisco’s Reliable Transport Protocol. And the routing updates are send to the neighboors completely. EIGRP uses metric of a path based on load,delay,reliability and MTU.

Security Redundancy Plan

I have used secret password encryption for authentication in all Routers and Switches. The Password for all is “ ali ”. Used Portfast in Switches so that the Switches directly goes into forwarding state rather than following the listening, learning state. Used Port Security for restricting the no of PC that can connect to the particular port to one, so that the PC that has been connected through the Fast Ethernet port can work only.If any other mac address tries to connect over it then the port will be shut down. I have used ACL for restricting access of FINANCE department at Boston and Chennai by other departments and locations end users. For Redundancy I have used a Backup router or Backbone router so that at any point of failure of the Tier 1 ISP it will be used for routing. I have also used direct serial connection between Boston and New York as an alternative path. As they are in the same region so they can be take alternate path for fast routing.

Test Plan for the Network
The test plan of the network has been uploaded to the DN server. It consists of 4 end users at each department.

Concept learned during the project
Implementation of ACL Switch Port Security method Secret Encryption Authentication process. Subnetting of IP address according to the requirement. VLAN creation. Implementing routing protocol for a network. Naming the Routers and Switches.

Conclusion
The design which I am submitting might not be cost effective but it is a real time scenario where the counties get connected to the Tier 1 ISP and then to the regional ISP and then the corporate Offices. This design has been made by taking into consideration that the ISP can also fail that is why a Back-up router or Back bone router has been used. So as there is an alternative path for routing in case of any failure.