Documente Academic
Documente Profesional
Documente Cultură
5-3-DCCS
GROUP
ASSIGNMENT
GROUP ASSIGNMENT
DESIGN OF CORPORATE COMMUNICATION SYSTEMS
(CT020-3.5-3-DCCS)
NAME
(TP026049)
DINESH A/L THULASIDASS
(TP027442)
INTAKE CODE
LECTURER
: UC3F1504IT (ISS-FC)
: MR. REZA ADINEHNIA
PROJECT TITLE
DATE COMPLETED
Page | 1
CT020-3.5-3-DCCS
GROUP
ASSIGNMENT
TABLE OF CONTENTS
ACKNOWLEDGEMENT............................................................................................ 5
GANTT CHART........................................................................................................ 6
EXECUTIVE SUMMARY............................................................................................ 7
ASSUMPTIONS........................................................................................................ 8
1.0 NETWORK DESIGN (TULASINATAN MUTHUALAGU TP026049)..........................9
1.1 Requirement Gathering................................................................................ 9
1.1.1 Network Requirements...........................................................................9
1.2 Network Architecture.................................................................................. 12
1.3 Analysis of the Existing Network................................................................13
1.3.1 Estimated Traffic Volumes....................................................................13
1.3.2 Network Design Constraints.................................................................13
1.4 Logical Design............................................................................................ 14
1.4.1 Logical Network Diagram.....................................................................14
1.4.2 IP Addressing Strategy.........................................................................19
1.4.3 Demilitarized Zone (DMZ)....................................................................22
1.4.4 Virtual LAN (VLAN)................................................................................ 23
1.5 Physical Design........................................................................................... 25
1.5.1 Physical Network Diagram....................................................................25
1.5.2 Virtual Private Network (VPN)...............................................................26
1.5.3 WAN Technology...................................................................................28
1.6 Server......................................................................................................... 30
1.6.1 Directory Service Server.......................................................................30
1.6.2 Domain Name System (DNS)................................................................30
1.6.3 Dynamic Host Configuration Protocol (DHCP).......................................31
1.6.4 Database Server...................................................................................31
1.6.5 Application Server................................................................................31
1.7 Corporate Communications........................................................................32
1.7.1 Logon Procedure...................................................................................32
1.7.2 Remote connection (Remote access VPN)...........................................33
1.8 Network Topology....................................................................................... 34
1.8.1 Network Topology Chosen....................................................................37
Page | 2
CT020-3.5-3-DCCS
GROUP
ASSIGNMENT
Page | 3
CT020-3.5-3-DCCS
GROUP
ASSIGNMENT
Figure
Figure
Figure
Figure
Figure
Figure
Figure
Figure
Figure
Figure
Figure
Figure
Figure
Figure
Figure
Figure
Figure
Figure
Figure
Figure
Figure
Figure
Figure
Figure
Figure
Figure
Figure
Figure
Figure
Figure
Figure
Figure
Page | 4
CT020-3.5-3-DCCS
GROUP
ASSIGNMENT
ACKNOWLEDGEMENT
We would like to express my deepest appreciation to all those who provided us the possibility
to complete this assignment. A special gratitude we give to our Lecturer Mr. Reza Adinehnia,
whose contribution in stimulating suggestions and encouragement helped us to coordinate our
assignment especially for teaching us this module in such a way that we were able to learn
this highly technical module very easily.
Besides that, we also would like to take this opportunity to express a deep sense of
gratitude to my college Asia Pacific University for allowing us to use and provide
necessary information regarding the project that we have been working on.
Finally, an honorable mention goes to our family and friends for their understandings and
supports us in completing this assignment. Without helps of the particular that mentioned
above, we could face many difficulties while doing this. Thank You.
Sincerely,
TULASINATAN A/L MUTHUALAGU (TP026049)
DINESH A/L THULASIDASS (TP027442)
Page | 5
CT020-3.5-3-DCCS
GROUP
ASSIGNMENT
GANTT CHART
Page | 6
CT020-3.5-3-DCCS
GROUP
ASSIGNMENT
EXECUTIVE SUMMARY
ParsTech Inc. was established in 2004 intending to fill in the market need in different IT
solutions for a professional, customer-focused computer company. The company emphasizes
services in troubleshooting and maintenance. After a few years they are on the brink of
penetrating a lucrative market in a rapidly growing its services nationally. It established
several branches across the country and trained IT technicians and specialist implanted in
every branch.
Due to the organization growing and number of customers grew, several issues has
been taken into consideration, such as increasing the number of employees and Quality of
Service, customer satisfaction, complicated administrative tasks and also organization cost
expenses which became a serious problem for the company.
Telecommunication Company have rented their high speed leased lines to the
branches in order to provide central management and also communication facilities. In this
way all financial tasks like billing, payrolls, etc. as well as administrative jobs could be
handled from the central branch.
This documentation will be discuss about how the network architecture, hardware and
software also the network security need to be apply in the organization. This design is
actually an enhancement for reduce the cost which is not required manpower and enable the
client's business in the most cost effective way.
Page | 7
CT020-3.5-3-DCCS
GROUP
ASSIGNMENT
ASSUMPTIONS
The design process of this project is categorized into two sections which are corporate
network and remote connection between technicians inside the company and clients
costs.
The server will be located at the central branch considering the risk of security issues
and cannot be placed in any part of country. However there are certain tasks can be
1.0
NETWORK
DESIGN
(TULASINATAN
MUTHUALAGU
TP026049)
Page | 8
CT020-3.5-3-DCCS
GROUP
ASSIGNMENT
The important part of network design process is requirements gathering. Understanding well
a network is essential in delivering its critical to its success. This provides details on how to
set up a network and this is the reference for the foremost requirements of the network design
of the ParsTech Inc Company.
1.1.1 Network Requirements
I.
LAN Functions
The branches of ParsTech Inc Company confess the potential the sharing of
resources, data transfer and e-mail, improve the reliability and easy distributed
processing.
Data transfer and e-mail, Data and network file transfer is an important
feature of modern LANs which is not only transmits files, data,
information, but also can send voice, images.
II.
Physical Topologies
A physical topology is how they are actually interconnected with wires and cable in
the network design. Based on the company requirement the physical topology has to
be design is star topology which every node on the network connects to a central hub.
Star topology will offer a dynamic network design in supporting the future network
Page | 9
CT020-3.5-3-DCCS
GROUP
ASSIGNMENT
traffic. It also helps to apply the existing LAN technology in ParsTech Inc Company
which purpose in reducing cost to the new network.
III.
Performance
To examine the performance of network system in sense of usability, the network
design should improve and satisfy the client's request. The present online services of
ParsTech are troubleshooting and maintaining the operations by the IT technicians.
From the factor, the proposed network system should provide their services with an
excellent performance.
IV.
Networking software
The proposed network system should be considered with the use of current
application server of ParsTech Inc Company. The current application software also
required to be intentionally used by staffs in the sub-offices. It will be useful in
reducing the cost of the new network.
V.
Security
VI.
Page | 10
CT020-3.5-3-DCCS
GROUP
ASSIGNMENT
The new system of ParsTech will decrease the quantity of branches to 5 and setting up
it in 5 various cities over the nation. Each and every services of the new network have
to be online so technicians can do troubleshooting online in order to decrease the
expenses of transportation and labor.
VII.
The new network outline of WAN technology should comprise of two major
processes which is corporate network and remote connections among the companys
technicians and customers machines which need troubleshooting. Current leased line
should be recovers with the lower expense secured WAN technology in order to
connect central office to branch workplaces. Wireless mobile computing is allowed to
be utilized in new network system which is managed and monitored only by the
authorized staffs.
CT020-3.5-3-DCCS
GROUP
ASSIGNMENT
part of new network. It is used to classify all the network layers step-by-step in logical form
by describing each step in detail. An extraordinary company surely has well plan network
architecture to their organization networking and communication backbone. Most of the
organizations need their architecture to be dependable and secured connection between their
branches and focal offices. The Network design is prescribed to be working for 24 hours to
make sure that data do not get access when the information transmitting.The new network
design should be comprise of the current technologies alongside the new technologies and
help to decrease the cost to the new network.Besides, the new design will support to sort out
certain issues such as customer satisfaction, expanding the number of employees, quality of
service, complicated administrative task and more.
CT020-3.5-3-DCCS
GROUP
ASSIGNMENT
offices have to be decreased to 5. Additionally, the current leased lines must be supplanted
which are less expensive and secured WAN technologies. Moreover, implementation of
remote access will be reduce the workload of technicians and expenses cost of the company.
This new network design is develop for increase the security of the network because the
existing network is less secure and could misuse by hackers or unauthorized personnel.
Page | 13
CT020-3.5-3-DCCS
GROUP
ASSIGNMENT
the network and how the applications will use the network in the prompt and faraway of
future.
Page | 14
CT020-3.5-3-DCCS
GROUP
ASSIGNMENT
Figure 2 shows the overall ParsTech Inc company network design. This network is include 1
central office and 5 branches which are remotely connected via (SSH). Other than that, VPN
has empowers the client to get to the organization network anyplace.
Figure 3 above, shows the internal network of ParsTech's central office. There are 5 server in
the network which are Application server, Database server, VPN server, and Directory
Page | 15
CT020-3.5-3-DCCS
GROUP
ASSIGNMENT
Service server, DHCP server and DNS server. Every server is associated with the server
switch and the server switch unites with the multilayer switch. Besides, multilayer switch can
be reduce the cost usage additional router in the network. It also can be usable for the future
network design planning. The application firewall was placed between the main router and
DMZ to protect the network from the malicious activities.
All the 5 branches are implemented with same network architecture. All the branches network
works through WAN Internet technology to sent and receive data from the central office.
Each of the branches have 3 floors which connected through multilayer switch and also each
branch have their own firewall to protect the network from malicious activities.
Page | 16
CT020-3.5-3-DCCS
GROUP
ASSIGNMENT
Page | 17
CT020-3.5-3-DCCS
GROUP
ASSIGNMENT
Page | 18
CT020-3.5-3-DCCS
GROUP
ASSIGNMENT
The ParsTech Company has a central office and lessened branch offices to 5. As indicated by
network design there are 6 local area networks (LAN) are situated across the nation. Every
branch is comprised of a separate firewall, internal router, hub switch and DSL modem. A
Demilitarized Zone (DMZ) is also build as portal in central office to protect the servers. A
class B IP as a valid IP will be assigned for the gateway (DMZ) in order to be open from
other site to site VPNs and also remote access VPN for the user and network administrator.
The further IP will be allotted from C class IPs as invalid or local IPs to produce local area
network and intranet. The diagrams below illustrate and describe how the IP addresses
assigned for each branch office.
Central Office
Network ID : 129.100.2.0
Subnet Mask : 255.255.255.0
Usable IP Address : 254
Broadcast Address : 129.100.2.254
Firewall : 230.0.10.1/24
Server Router : 230.0.11.1/24
HQ Router : 230.0.12.1/24
Branch 1
Network ID : 129.100.3.0
Subnet Mask : 255.255.255.0
Usable IP Address : 254
Broadcast Address : 129.100.3.254
Firewall : 230.0.20.1/24
Server Router : 230.0.21.1/24
HQ Router : 230.0.22.1/24
Page | 19
CT020-3.5-3-DCCS
GROUP
ASSIGNMENT
Branch 2
Network ID : 129.100.4.0
Subnet Mask : 255.255.255.0
Usable IP Address : 254
Broadcast Address : 129.100.4.254
Firewall : 230.0.30.1/24
Server Router : 230.0.31.1/24
HQ Router : 230.0.32.1/24
Branch 3
Network ID : 129.100.5.0
Subnet Mask : 255.255.255.0
Usable IP Address : 254
Broadcast Address : 129.100.5.254
Firewall : 230.0.40.1/24
Server Router : 230.0.41.1/24
HQ Router : 230.0.42.1/24
Page | 20
CT020-3.5-3-DCCS
GROUP
ASSIGNMENT
Branch 4
Network ID : 129.100.6.0
Subnet Mask : 255.255.255.0
Usable IP Address : 254
Broadcast Address : 129.100.6.254
Firewall : 230.0.50.1/24
Server Router : 230.0.51.1/24
HQ Router : 230.0.52.1/24
Branch 5
Network ID : 129.100.7.0
Subnet Mask : 255.255.255.0
Usable IP Address : 254
Broadcast Address : 129.100.7.254
Firewall : 230.0.60.1/24
Server Router : 230.0.61.1/24
HQ Router : 230.0.62.1/24
Page | 21
CT020-3.5-3-DCCS
GROUP
ASSIGNMENT
DMZ (demilitarized zone) is a physical or logical sub-network that isolates an internal local
area network (LAN) from other depended networks, more often the Internet. External-facing
servers, resources and services are situated in the DMZ so they are accessible from the
Internet but the rest of the internal LAN remains inaccessible. This gives an additional layer
of security to the LAN as it limits the potential of hackers to directly get to internal servers
and information via the Internet (Rouse, 2015). The following diagram shows DMZ position
in a sample network.
Page | 22
CT020-3.5-3-DCCS
GROUP
ASSIGNMENT
A virtual local area network (VLAN) is a logical group of workstations, servers and network
devices that seem to be on the same LAN despite their geographical distribution. A VLAN
allows a network of computers and clients to communicate in a simulated environment as
though they exist in a single LAN and are sharing a single broadcast and multicast domain.
VLANs are actualized to accomplish scalability, security and ease of network management
and can rapidly adjust to change in network requirements and relocation of workstations and
server nodes. Higher-end switches permit the functionality and implementation of VLANs.
The purpose of executing a VLAN is to enhance the performance of a network or apply
proper security features. (Janssen, techopedia, 2012). The following demonstrates two
broadcast domain in two switches and two broadcasting domain in a single switch as Virtual
LAN (VLAN)
Page | 23
CT020-3.5-3-DCCS
GROUP
ASSIGNMENT
There many reasons that network designer use VLANs. There are some of advantages of
utilizing VLAN in ParsTech Companys network:
Page | 24
CT020-3.5-3-DCCS
GROUP
ASSIGNMENT
Page | 25
CT020-3.5-3-DCCS
GROUP
ASSIGNMENT
Page | 26
CT020-3.5-3-DCCS
GROUP
ASSIGNMENT
Enhanced security. When you connect to the network through a VPN, the data is
kept secured and encrypted. In this way the information is away from hackers eyes
(ibvpn, 2010).
II.
Remote control. In the event of a company, the great advantage of having a VPN is
that the information can be accessed remotely even from home or from any other
place. Thats why a VPN can increase productivity within a company (ibvpn, 2010).
Page | 27
CT020-3.5-3-DCCS
GROUP
ASSIGNMENT
III.
Share files. A VPN service can be used if you have a group that needs to share files
for a long period of time (ibvpn, 2010).
IV.
Online anonymity. Through a VPN you can browse the web in complete anonymity.
Compared to hide IP software or web proxies, the advantage of a VPN service is that
it allows you to access both web applications and websites in complete anonymity
(ibvpn, 2010).
V.
Unblock websites & bypass filters. VPNs are great for accessing blocked websites
or for bypassing Internet filters. This is why there is an increased number of VPN
services used in countries where Internet censorship is applied (ibvpn, 2010).
VI.
Change IP address. If you need an IP address from another country, then a VPN can
provide you this (ibvpn, 2010).
VII.
VIII.
Reduce costs. Once a VPN network is created, the maintenance cost is very low.
More than that, if you opt for a service provider, the network setup and surveillance is
no more a concern (ibvpn, 2010).
CT020-3.5-3-DCCS
GROUP
ASSIGNMENT
1.6 Server
Page | 29
CT020-3.5-3-DCCS
GROUP
ASSIGNMENT
A server is a computer that serves data to different computers. These computers, called
clients, can connect to a server through either a local area network (LAN) or a wide area
network (WAN), such as the Internet (Christensson, 2005).
There are several different types of servers, including Web servers, mail servers, and file
servers. A web server serves Web pages to computers that connect to it. It also can parse
scripting languages such as PHP, ASP, and JSP. A mail server stores users' e-mail accounts
and sends and receives e-mail messages. Case in point, when you send an e-mail to a friend,
the message is sent by a mail server which uses SMTP protocol. A file server is a computer
that stores files that can be accessed by other computers. File servers are often used within
local networks and frequently require a secret key or some kind of authentication to get
connected (Christensson, 2005).
1.6.1 Directory Service Server
A network service can identify all resources on a network and make them available to users
and applications. Resources include e-mail addresses, computers, and peripheral devices like
printers. Preferably, the directory service must make the physical network topology and
protocols transparent so that a user on a network can get into any resource without knowing
where or how it is physically connected. There are various directory services that are utilized
widely. The most important two includes LDAP, which is for e-mail addresses, and Netware
Directory Service (NDS), which is for Novell Netware networks.
1.6.2 Domain Name System (DNS)
An Internet service that interprets domain names into IP addresses. Since domain names are
alphabetic, they're easier to remember. The Internet however, is really based on IP addresses.
Every time you use a domain name, a DNS service must translate the name into the
corresponding IP address (Beal, 2013).
Page | 30
CT020-3.5-3-DCCS
GROUP
ASSIGNMENT
DHCP is a protocol for assigning dynamic IP addresses to devices on a network. A device can
have a different IP address every time it connects to the network during dynamic addressing.
In a few network system, the device's IP address can even change while it is still connected.
DHCP additionally support a blend of static and dynamic IP addresses (Beal, 2013).
1.6.4 Database Server
Database server is the term used to allude back-end system of a database application using
client/server architecture. The back-end system, sometimes called a database server, performs
tasks such as data analysis, storage, data manipulation, archiving, and other non-user specific
tasks.
1.6.5 Application Server
An application server is a program that handles all application operations between users and
an organization's backend business applications or databases. An application server is
frequently used for complex transaction-based applications. To support high-end needs, an
application server needs to have built-in redundancy, monitor for high-availability, highperformance distributed application services and support for complex database access (Beal,
2013).
Page | 31
CT020-3.5-3-DCCS
GROUP
ASSIGNMENT
CT020-3.5-3-DCCS
GROUP
ASSIGNMENT
and maintenance to accomplish the secure remote connection between the client machines. In
a Remote-access VPNs, individual hosts or users, such as telecommuters, mobile users, and
extranet consumers, are able to access a company network safely over the Internet. Each host
typically has VPN client software loaded or uses an online-based client. A remote-access
VPN host or client typically has VPN client software. Whenever the host tries to send any
information, the VPN client software exemplifies and encodes the information before sending
it over the Internet to the VPN gateway at the edge of the targeted network. On receipt, the
VPN gateway handles the data in the same path as it would handle data from a site-to-site
VPN (orbitcomputersolution, 2013).
CT020-3.5-3-DCCS
GROUP
ASSIGNMENT
nodes are connected and communicate with one another is recognized by topology of the
network. Topology can be physical or logical (Beal, 2013). A physical topology of a network
is all about the configuration of cables, computers, and other peripherals, while the logical
topology focuses refer to the pattern of data transfer between network nodes. The physical
and network topologies can be classified into five fundamental model such as bus, star, ring,
tree and mesh topology.
Bus Topology
CT020-3.5-3-DCCS
GROUP
ASSIGNMENT
Star Topology
Page | 35
CT020-3.5-3-DCCS
GROUP
ASSIGNMENT
More expensive than linear bus topologies because of the cost of the concentrators.
The protocols used with star configurations are usually Ethernet. Token Ring uses a similar
topology, called the star-wired ring.
Page | 36
CT020-3.5-3-DCCS
GROUP
ASSIGNMENT
Star Topology
The current network topology of the ParsTech Inc Company is of star topology which is
appropriate and perfect with new designed network infrastructure of the company.
Consequently, in lessening the cost of networking, the main existing star topology will
continue but IP addressing and VLAN configuration will be upgraded.
Page | 37
CT020-3.5-3-DCCS
GROUP
ASSIGNMENT
Transmission media is express kind of physical system used to bring a communication signal
starting with one framework then onto the next. The stability and the speed of the network
will be relies upon on picking the proper cables for the new network and it's likewise must be
backing up for future improvement. High capacity bandwidth cabling will be additional cost
for the organization. In this manner, the cables selected should be adequate for the new
network design to perform ideally and must provide inexpensive cost for the network. The
transmission media includes twisted-pair cable, coaxial cable and fiber optic cable.
1.9.1 Unshielded Twisted Pair (UTP)
Unshielded twisted pair is a well known sort of cable that comprises of two unshielded wires
twisted around one another. Because of its minimal effort, UTP cabling is used broadly for
local-area networks (LANs) and telephone connections. UTP cabling does not offer as high
bandwidth or as great security from interference as coaxial or fiber optic cables, yet it is less
lavish and less demanding to work with. The proposed cable for ParsTech's new network is
Category 5e cable (Cat 5e) which is suitable for Ethernet. Cat5e cable provides performance
of up to 100MHz and its suitable for 10BASE-T, 100BASE-TX (Fast Ethernet), and
1000BASE-T (Gigabit Ethernet). This will provide services for a long term usage and most of
the company used to install it in workstation. Cat 5e is cheapest UTP cable which is easy to
install and maintain. (Nicholson, 2013).
Page | 38
CT020-3.5-3-DCCS
GROUP
ASSIGNMENT
low cost
easy to install
High attenuation
Effective to EMI
Advantages of UTP
Easy installation
Low cost
Disadvantages of UTP
Page | 39
CT020-3.5-3-DCCS
GROUP
ASSIGNMENT
Expensive
CT020-3.5-3-DCCS
GROUP
ASSIGNMENT
Fast
Low attenuation
Very costly
Hard to install
Page | 41
CT020-3.5-3-DCCS
GROUP
ASSIGNMENT
2.0
HARDWARE,
REQUIREMENTS
SOFTWARE
AND
DESKTOP
The network consultant chosen Dell Precision Tower 5810 workstation for the new network.
This workstation PC is suitable for long-term work with some of huge datasets. This
organization has a central office and 5 branches. All out workstations required in this
organization are 140 workstations, which will be 40 workstations in the central office and 20
workstations for each branches in the company. All workstations will be finished with
Wireless keyboard and mouse and 26' inch LED Monitor.
Page | 42
CT020-3.5-3-DCCS
GROUP
ASSIGNMENT
Specification
Intel Xeon Processor E5-1620 v3 (4C, 3.5GHz, 10M, 140W)
16GB (4x4GB) 2133MHz DDR4 RDIMM ECC
256GB 2.5" Serial-ATA Solid State Drive
Windows 7 Professional (64Bit Windows 8.1 License, Media)- English,
Monitor
Price
2.1.2 Server
The ParsTech Inc network are implemented with 5 server which that include the Dynamic Host
Configuration Protocol (DHCP), Database Server, Domain Name System (DNS), Directory Service
Server and Application Server. Besides, the DMZ server is also are implemented in the organization.
In spite of the fact, these types of the server is already applied in the company, however it is expected
to overhaul the server due to the quantity of the workers and the client of organization is developing
and expanding. So that, Upgrading the server rack is required and can build the execution of the
server, so can deal with more the clients of organization.
Dynamic Host
(DHCP)
Database Server
Servers
Configuration
Protocol
CT020-3.5-3-DCCS
GROUP
ASSIGNMENT
1
1
2
1
Components
Processor
Specifications
Intel Xeon processor E5-2600 v3 product family with 2 Processor
Memory Slots
Price
Operating System
sockets.
12 DIMM slots
$ 1489 (dellus, 2015) (approximately RM 5,695)
Microsoft Windows Server 2008 R2
Microsoft Windows Server 2012
Microsoft Windows Server 2012 R2
Novell SUSE Linux Enterprise Server
Red Hat Enterprise Linux
VMware ESX
Page | 44
CT020-3.5-3-DCCS
GROUP
ASSIGNMENT
Netgear SRX5308 VPN Firewall router will be utilized in the ParsTech new network. It is an
elite security switch for joining a coordinated VPN server and client and powerful security
highlights. The Netgear SRX5308 VPN Firewall router can be the better solution for reducing
the cost. This router definitely will increase the security level of the ParsTech new network.
Overall 6 routers are required to be implemented in the new network.
4 Gigabit WAN ports with 4 Gigabit LAN ports, load-balancing and failover across quad
WAN ports
Business-class Stateful Packet Inspection Firewall prevents unwanted access to your
network
125 dedicated IPSec VPN tunnels, 75 SSL VPN tunnels for secure remote access
924Mbps LAN-to-WAN throughput, 200000 concurrent sessions
Prioritize traffic with Quality of Service (QoS) and WAN Traffic Metering
CT020-3.5-3-DCCS
GROUP
ASSIGNMENT
As the internal router for ParsTech Inc Company, Mikrotik RB/1100AHX2 Routerboard
Router OS Level 6 will be used. Outer. It is good router whereby the device perform in 1U
aluminium rack mount Gigabit Ethernet router. Apart from that, this device enables switch
reset and temperature sensor. ParsTech Inc needed 6 Pcs of this device for central office and
their 5 branches.
CPU : PowerPC P2020 dual core 1066MHz network CPU with IPsec accelerator
Memory : SODIMM DDR Slot, 2GB installed (RouterOS will use only up to 1.5GB)
Ethernet : Thirteen(13) 10/100/1000 Mbit/s Gigabit Ethernet with Auto-MDI/X
Includes switch to enable Ethernet bypass mode in two ports
Expansion: Reset switch, beeper, voltage and temperature sensors
As the wireless router for the ParsTech's central office and branches offices, Asus RT-AC66U
dual-band wireless-AC1750 is selected. This wireless router offers some key features which
Page | 46
CT020-3.5-3-DCCS
GROUP
ASSIGNMENT
will be needed in ParsTech Inc. This router definitely will provide good performance and
adequate wireless coverage.
5th generation 802.11ac chipset gives you concurrent dual-band 2.4GHz/5GHz for up
to super-fast 1.75Gbps
Gigabit Ethernet ports for the fastest, most reliable internet performance
AiRadar optimizes wireless coverage with detachable high-powered antennas
Enjoy the ASUSWRT dashboard UI for 3 steps easy setup, signal monitoring, and
CT020-3.5-3-DCCS
GROUP
ASSIGNMENT
workstation. Cat 5e is cheapest UTP cable which is easy to install and maintain. (Nicholson,
2013). Cat5e cable chosen for the ParsTech new network is Cat5e Bulk 1000ft Ethernet Cable
White.
CT020-3.5-3-DCCS
GROUP
ASSIGNMENT
select between gigabit Ethernet, Fast Ethernet and standard Ethernet. It can help monitor
vitality consequently, which is can naturally shuts down ports for the ports not meeting
expectations. ParsTech Inc will be use 3 switches for the central office and 3 switches for
each branch offices.
P-MAC-Port-VID Binding, ACL, Port Security, DoS Defend, Storm control, DHCP
Snooping, 802.1X Authentication and Radius provide you robust security strategies
L2/L3/L4 QoS and IGMP snooping optimize voice and video application
WEB/CLI managed modes, SNMP, RMON bring abundant management features
CT020-3.5-3-DCCS
GROUP
ASSIGNMENT
ParsTech Inc. have adaptability where the clients can use from alternate client and
information in central storage of organization and their applications from anyplace.
2.2.2 Antivirus
The new network of ParsTech have installed Kaspersky Endpoint Security for Business Core
antivirus for the security. By using this antivirus the management can protect the client
workstations and the critical servers of ParsTech Inc from attackers. The Kaspersky's
Endpoint Security gives top-notch malware detection and is less demanding to send than
competing products. The Security Center reassure gives great centralised management
facilities and offers quality reporting and alerting features (Millman, 2015).
Page | 50
CT020-3.5-3-DCCS
GROUP
ASSIGNMENT
PCs
Windows XP Home/Professional (32bit) SP3, Professional (64bit) SP2, Vista SP1, 7 SP1, 8,
8.1.
Servers
Windows Server 2008 R2/Standard SP1, SBS 2008 SP2, SBS 2011 Essentials, SBS 2011
Standard SP1 ,Windows Server 2012 R2/Foundation/Essentials/Standard.
Page | 51
CT020-3.5-3-DCCS
GROUP
ASSIGNMENT
The existing network of ParsTech is already using Windows 7 ultimate 64bit. In order to
upgrade for a better choice for the new network Windows 8.1 Enterprise 64bit have been
installed. Windows 8.1 Enterprise 64bit offers many improvements for Windows users as a
whole, such as a better Windows Store experience, built-in apps and enhanced
personalization options compare to Windows 8.0 (businessnewsdaily, 2013). ParsTech use for
their client systems.
REFERENCING
Beal, V. (2013, june 6). webopedia. Retrieved 2015, from webopedia:
http://www.webopedia.com/TERM/A/application_server.html
Page | 52
CT020-3.5-3-DCCS
GROUP
ASSIGNMENT
Page | 53
CT020-3.5-3-DCCS
GROUP
ASSIGNMENT
Odom, W. (2004). CCNA INTRO Exam Certification Guide: CCNA Self-study (illustrated
ed.). Cisco Press.
orbitcomputersolution. (2013, may 16). Retrieved 2015, from orbitcomputersolution:
http://www.orbit-computer-solutions.com/Remote-access-VPNs.php
Rouse, M. (2015, june). searchsecurity. Retrieved from searchsecurity:
http://searchsecurity.techtarget.com/definition/DMZ
Routerboard. (2015, april 11). Retrieved July 28, 2015, from Routerboard:
http://routerboard.com/RB1100AHx2
Syngress. (2003). Building DMZs For Enterprise Networks. Syngress.
Syngress. (2003). Building DMZs For Enterprise Networks (1st ed.). Syngress.
technet. (2003, March 28). Retrieved 2015, from technet: https://technet.microsoft.com/enus/library/cc739294(v=ws.10).aspx
vicomsoft. (2013, june 13). Retrieved 2015, from vicomsoft:
http://www.vicomsoft.com/learning-center/email-and-email-servers/
Amazon.com, (2015). Amazon.com: Cat5e Bulk 1000ft Ethernet Cable White: Electronics.
[online] Available at: http://www.amazon.com/Cat5e-1000ft-Ethernet-CableWhite/dp/B004PL082U [Accessed 3 Aug. 2015].
Amazon.com, (2015). Amazon.com: Microsoft Windows Server Enterprise 2008 25 Client
[Old Version]. [online] Available at: http://www.amazon.com/Microsoft-WindowsServer-Enterprise-Version/dp/B0011F193A [Accessed 3 Aug. 2015].
Asus.com, (2015). RT-AC66U - Overview. [online] Available at:
https://www.asus.com/us/Networking/RTAC66U/overview/ [Accessed 3 Aug. 2015].
Netgear.com, (2015). VPN Firewalls - SRX5308 | Security | Business | NETGEAR. [online]
Available at: http://www.netgear.com/business/products/security/SRX5308.aspx#tabtechspecs [Accessed 3 Aug. 2015].
node, K. (2015). Kaspersky KL4867AANDR. [online] www.totalavsecurity.com. Available at:
http://www.totalavsecurity.com/Kaspersky-KL4867AANDR-p/kl4867aandr.htm
[Accessed 3 Aug. 2015].
Routerboard.com, (2015). RouterBoard.com : RB1100AHx2. [online] Available at:
http://routerboard.com/RB1100AHx2 [Accessed 3 Aug. 2015].
Page | 54
CT020-3.5-3-DCCS
GROUP
ASSIGNMENT
Server, P. (2015). PowerEdge R430 Rack Server. [online] Dell. Available at:
http://www.dell.com/us/business/p/poweredge-r430/pd?~ck=anav [Accessed 3 Aug.
2015].
Tp-link.com, (2015). JetStream 48-Port 10/100Mbps + 4-Port Gigabit L2 Managed Switch
TL-SL3452 - Welcome to TP-LINK. [online] Available at: http://www.tplink.com/lk/products/details/cat-39_TL-SL3452.html#overview [Accessed 3 Aug.
2015].
Voucherstore.net, (2015). Windows 8.1 Enterprise - retail license -. [online] Available at:
http://voucherstore.net/Windows-8.1-Enterprise [Accessed 3 Aug. 2015].
Workstation, D. (2015). Dell Precision Tower 5810 Workstation. [online] Dell. Available at:
http://www.dell.com/my/business/p/precision-t5810-workstation/pd [Accessed 3 Aug.
2015].
MARKING SCHEME
Students Name
TULASINATAN A/L
MUTHUALGU (TP026049)
DINESH A/L
THULASIDASS
(TP027442)
Page | 55
CT020-3.5-3-DCCS
GROUP
ASSIGNMENT
practices (5)
Individual Components
(B)
Technical accuracy (25)
Critical analysis &
justification
(20)
Research & completeness
(10)
Presentation (15)
Total Marks (Individual
Component)
TULASINATAN A/L
MUTHUALGU (TP026049)
DINESH A/L
THULASIDASS
(TP027442)
Individual Components
(B)
Overall Marks (A + B)
Workload Matrix
Tasks
TULASINATAN
A/L
MUTHUALAGU
(TP026049)
Group
Members
DINESH A/L
THULASIDASS
(TP027442)
Page | 56
CT020-3.5-3-DCCS
GROUP
ASSIGNMENT
Executive
Summary
100
Assumption
100
Section 1
100
Section 2
33
Section 3
67
100
Page | 57