Ciscos Threaded Case Study Desert View Andy Gall

Cisco’s Threaded Case Study Desert View Andy Gall Ken Schroeder John Byers

SCHOOL PLAN • Design a school network that will allow all connected workstations the ability to connect at a minimum of 1 Mbps. • Design the network in such a manner that there is reliable security separating the curriculum & administrative systems. • Design the school network at a minimum of cost to the school but one that allows for future technologies to be added easily.

A B

Section Andrew Frank Section Brian Section Charlie Section Daniel Section Edward George

Cut Sheet IDF Sample Label

Network Equipment Category 5 Plenum Cable Fiber Optic Cable (4 pair) Cisco Router Cisco Switches Cisco Hubs Equipment racks/cabinets Patch panels

Fiber Optic Cable Connecting two pairs from school MDF to every IDF (total 7 locations). n Total length required: 8000 ft. n Price quoted from Data. Comm 11/1/99. n – $630/1000 foot pack {Item DBC 1832} – $5040 for all Horizontal cross-connects

Category 5 Plenum Cable 31, 050 ft. needed for all vertical CC n Price quoted from Data. Comm 11/1/99 n – $550/2000 foot pack n $8800 for entire project Cat 5 needs

Cisco Router Cisco 2600 Series Router n Channelized T 1/E 1 for connection to Central Office n 2 Fiber Modules for connection to LAN n Gateway to Internet n – Estimated cost: $6, 000

Cisco Switches n Cisco 2924 -xl-a, 24 port 10/100 Base. T – 50 Classroom Switches n Cisco ws-c-2924 -xl-en, 22 port 10/100 Ethernet & 2 100 Base. FX – 7 IDF Switches n Cisco 2912 -mf 12 port 100 Base. Fx w/ 4 port 100 Base. T Module – 2 MDF Switches

Cisco Hubs n Cisco 1538 8 port 10/100 Base. T – 50 Classroom extension hubs

Rack Equipment n Classroom Cabinets {x 50} – Locked cabinet w/ 32 port patch panel n n Panduit DP 32588110 B Intermediate Distribution Facilities {x 7} – Patch Panel--Panduit CD 48 BL or CD 24 BL – Fiber Panel-- Panduit FAP 6 WST – Media Rack--Panduit CMR 19 X 47 – Cable Management --WMPVSF 20 & WMPFS

Network Project Cost Router n MDF Switch n IDF Switches n Classroom Switches n Hubs n Fiber Cable n Category 5 Cable n Network Equipment n $6, 000 $5356 x 2 $2005 x 7 $1670 x 50 $500 x 50 $5, 040 $8, 800 $5, 000 TOTAL: $158, 092

Network Project Cost Router n MDF Switch n IDF Switches n Classroom 32 Port Hubs n Fiber Cable n Category 5 Cable n Network Equipment n $6, 000 $5356 x 2 $2005 x 7 $500 x 50 $5, 040 $8, 800 $5, 000 TOTAL: $74, 587

Magic Internet Central Office 10. 5. 0. x 10. 6. 0. 1 fx 0 Administration 10. 6. 0. x 10. 5. 0. 1 e 0 Cisco 2600 10. 7. 0. 1 fx 1 Curriculum 10. 7. 0. x

Specific IP addresses Teacher workstations, Servers, and Printers will be Static IP addresses. Teacher Workstations: 10. 6. 0. 10 -250 Network Printers: 10. 7. 0. 100 -150 Students will obtain an IP address from the DHCP server. Numbers will be in the range of 10. 7. 1. x to 10. 7. 5. x

Access List Logic Basic Premise; all workstations on 10. 5. x. x and workstations on 10. 6. x. x have access to devices located on the 10. 7. x. x subnetwork. However, ONLY port 80 will be allowed OUT of any device located on the 10. 7. x. x subnetwork. F. M. Internet 80

Access List In order for the curriculum and administrative portions of the network to remain segmented, an access list will be placed on the school router. The only data that can travel from the student computers to any other part of the network is HTTP. Access-list 105 permit IP 10. 6. 0. 0. 0. 255 10. 7. 0. 0. 255 Access-list 105 deny IP 10. 7. 0. 0. 255 10. 6. 0. 0. 255 Access-list 105 permit TCP 10. 7. 0. 0. 255 any eq 80 Interface fx 1 IP Access-group 105 in

VLAN In The order the students to only goal to is tokeep limit student activity onlimited administrative their specified range, the locations, but still address allow administrators to useneed studentfor services. Library Server} a Virtual LAN{I. E. has. Printers been or created. On every switch in the IDF’s, we will specify which ports are for VLAN 1 (Administrative) and which ports are for VLAN 2 (Curriculum).

Servers NAME Administrative Server: Curriculum Server: Library Server: Network Server: IPX Name IP Address DV_Admin DV_App DV_Lib DV_Net 10. 6. 0. 20 10. 7. 0. 10 10. 7. 0. 30 10. 7. 0. 20 • Note: The Network Server will be running the Cisco Server Suite 1000, allowing DHCP for student machines, e-mail storage, and other WAN activities.

SPEED • Design a school network that will allow all connected workstations the ability to connect at a minimum of 1 Mbps. However, the TCS also requires that the LAN will grow at 1000% over the next 5 years. This breaks down to a minimum of 10 Mbps per workstation. With the system that we have designed, the network will perform at 100 Mbps to every teacher workstation and 90% of all student workstations.

Security • Design the network in such a manner that there is reliable security separating the curriculum & administrative systems. With our network design, students can perform all their activities in their network. However, they cannot access information on the Administration server because of the VLAN. They cannot access information located at the Central office because of the restrictions in the Router’s Access List. They can reach the Internet through the Network Server’s DHCP’s functions and the permissions set in the Router’s Access List.

Growth Due to the fact that we are responsible for the performance of network, we wanted to create the best possible • our Design the school network at a minimum of cost toperforming the school network. With the layout technologies of the IDF’s and classroom but one that allows for future to be added easily. cabinets, upgrading the entire network could be modified by simply changing the Network components. However, by creating a switched network NOW, the need to upgrade the network has been postponed as this design will perform the tasks necessary for many years. We were also required to supply 24 student workstation ports. We have designed for a possible 30 workstation in each room.