ASIA PACIFIC INSTITUTE OF INFORMATION TECHNOLOGY

APIIT Diploma Part II

Individual Assignment Hardware, Software System and Networks Prepared By Hirosh Tharaka D. M. D CB 004149

Module Code CE00382-2-HSSN

Cohort HF11B1SE Date of Submission 16th February 2012 Instructor Dr. Chamil Kulathunga

Submitted in partial fulfilment for the degree of Bachelor of Science (Hons) in Computing Word Count 2284

HSSN HF11B1SE

Marking Scheme
Summary of Agreed Marks and Overall Percentage Assumptions (10%) Presentation (10%) Documentation (15%) Research Phase & References (15%) Analysis and Critical thinking (20%) Report Content (20%) Diagrams and/or Figures (10%) Total (100%)

i|Page

HSSN HF11B1SE

Gantt Chart

ii | P a g e

HSSN HF11B1SE

Acknowledgement
It is with great pleasure we acknowledge all those who helped us in making this project a success. Especially I would like to dedicate my sincere gratitude to Dr. Chamil Kulathunga for his continuous support and guidance and valuable advices throughout the project. And also I would like to thank my friends who support me and encourage me throughout this project. I would also like to thank my parents who were always with me support me to fulfill my career objectives. Last but not the least my gratitude goes to APIIT Lanka for providing the laboratory and library facilities.

Hirosh Tharaka D. M. D

iii | P a g e

HSSN HF11B1SE

Table of Contents
Marking Scheme .................................................................................................................i Gantt Chart ........................................................................................................................ ii Acknowledgement............................................................................................................ iii Table Of Figures ...............................................................................................................vi 1. 2. 3. a. b. 4. a. b. c. d. i. ii. iii. iv. v. vi. vii. viii. ix. x. xi. xii. xiii. xiv. xv. INTRODUCTION ...................................................................................................... 1 ASSUMPTIONS ......................................................................................................... 2 RESEARCH................................................................................................................ 3 PROPOSED ARCHITECTURE (CLIENT SERVER ARCHITECTURE) .............. 3 PROPOSED TOPOLOGY ( TREE TOPOLOGY ) ................................................... 4 DESCRITPION ABOUT THE PROPSED NETWORK ........................................... 5 THE THREE SWITCH .............................................................................................. 5 CABLING ................................................................................................................... 5 VLAN (Virtual LAN) ................................................................................................. 5 SERVERS ................................................................................................................... 6 PROXY SERVER....................................................................................................... 6 DNS SERVER ............................................................................................................ 6 DATABASE SERVER ........................................................................................... 6 SIP SERVER........................................................................................................... 6 VOIP SERVER ........................................................................................................... 7 VPN SERVER ........................................................................................................ 7 PRINTER SERVER ................................................................................................ 7 DHCP SERVER ...................................................................................................... 7 CCTV SERVER ...................................................................................................... 7 EXCHANGE SERVER .............................................................................................. 7 APPLICATION SERVER ...................................................................................... 8 STAFF SECURITY ACCESS DATA SERVER.................................................... 8 WEB SERVER ....................................................................................................... 8 MAIL SERVER ...................................................................................................... 8 FILE SERVER ........................................................................................................ 8

iv | P a g e

HSSN HF11B1SE e. 5. a. i. ii. iii. iv. b. i. ii. iii. c. i. ii. iii. 6. a. b. c. d. 7. 8. a. b. c. d. 9. 10. 11. VIRTUAL PRIVATE NETWORK IMPLEMENTATION ....................................... 8 NETWORK FLOOR DESIGNS .............................................................................. 10 HEAD OFFICE......................................................................................................... 10 SERVER ROOM ...................................................................................................... 10 GROUND FLOOR ................................................................................................... 12 1st FLOOR ............................................................................................................. 13 2nd FLOOR ............................................................................................................ 14 PROPOSED SITE ONE (INDIA) ............................................................................ 15 SERVER ROOM ...................................................................................................... 15 BUILDING ONE ...................................................................................................... 17 BUILDING TWO ................................................................................................. 18 PROPOSED SITE TWO (NEPAL) .......................................................................... 19 SERVER ROOM ...................................................................................................... 19 GROUND FLOOR ................................................................................................... 21 FIRST FLOOR ...................................................................................................... 22 NETWORK HARDWARE ...................................................................................... 23 SWITCHES L2 ...................................................................................................... 23 SWITCHES L3 ...................................................................................................... 23 FIREWALLS ............................................................................................................ 23 WIRELESS ACCESS POINTS ................................................................................ 23 END SYSTEM EQUIPMENTS ............................................................................... 24 NETWORK SERVICES........................................................................................... 25 INTERNET CONNECTIVITY ................................................................................ 25 EMAIL SERVICES .................................................................................................. 25 STORAGE ................................................................................................................ 25 DATABASE ............................................................................................................. 25 CONCLUSION ......................................................................................................... 26 Bibliography.......................................................................................................... 27 PRESENTATION ................................................................................................. 28

v|Page

HSSN HF11B1SE

Table Of Figures
Figure 1 : Head Office : Server Room ............................................................................. 10 Figure 2 Head Office : Ground Floor ............................................................................... 12 Figure 3 : Head Office : 1st Floor .................................................................................... 13 Figure 4 : Head Office : 2nd Floor ................................................................................... 14 Figure 5 : Proposed India Branch : Server Room ............................................................ 15 Figure 6 : Proposed India Branch : Building One ............................................................ 17 Figure 7 : Proposed India Branch : Building Two ........................................................... 18 Figure 8 : Proposed Nepal Branch : Server Room ........................................................... 19 Figure 9 : Proposed Nepal Branch : Ground Floor ......................................................... 21 Figure 10 Proposed Nepal Branch : 1st Floor ................................................................. 22

vi | P a g e

HSSN HF11B1SE

1. INTRODUCTION

InfoGreen Sri Lanka Public Limited is one of the suppliers of energy efficient ERP solutions in South Asia. Owner has not paid much interested on expanding an investing on his business for the past decades period due to the lack of competition in the field. Recently a well-known competitor have opened a new business with the intension of put the all the businesses in InfoGreen. Because of that, the company has decided to improve their business and expand it to the South Asian region as the first step, making it as a milestone.

Therefore the company has decided to open two new branches in the region with three buildings. One of the two proposed office is to handle the sales, marketing. The other proposed office with two separate buildings with the distance of 200m is to Software Engineering and Sales. Due to this new decision of expanding their company regionally, these three branches needed to be networked. Therefor the company has hired me to make this task a success.

1|Page

HSSN HF11B1SE

2. ASSUMPTIONS

A. All the internet connections which have taken for this network implementation gives the maximum internet bandwidth constantly. B. Each the company employee will use a either a computer or a laptop. C. The network implementation is doing for a company which didnt have an network earlier at least inside the building. D. There are no restriction for the fiber optics E. Network cables are passed through false celling. F. Company is equipped with generators. So the generator will be acive as the power failure occurs, so none of the employees will feel the power failure.

2|Page

HSSN HF11B1SE

3. RESEARCH

a. PROPOSED ARCHITECTURE (CLIENT SERVER ARCHITECTURE)

Client Servers Architecture which is knows and CSA is a network environment which uses to exchange information between the client and server machines. Only the resources which serves has can be shared among the clients by different clients. All the individual computers know and clients are connected to a central computer which is known as the Server. (Anon., 2009) Peer to Peer which is known as P2P is a networking architecture which eliminates the need of a dedicated centralized server, which allows the individual computers to share resources and communicate. (Anon., 2012) The main reason why this concept (CSA) has been chosen compared with (P2P): In P2P the possibility of file duplication is very high since a single file can be stored in different places with different versions. Where when a user access the file, there is a possibility of accessing an outdate file. But in Client Server Architecture, the most advantage is all the data is getting stored in a centralized device. That is more beneficial when it comes to the point of accuracy of data, since the architecture concept reduces the multiple iteration of a single file, and reduces the duplicating with different places.

3|Page

HSSN HF11B1SE

b. PROPOSED TOPOLOGY ( TREE TOPOLOGY )

Star topology is designed in a way which connects each node directly to the central network device (Network Hub / Network Switch). All the information on a star network passes through the switch before it reaches its destination. The configuration of can be done via twisted pair cables. The advantage of star network is ease of installation, ease of fault detection and repairs and no disruption when adding and removing a device from the network. Tree topology which is known and the extended star topology is a combination bus topology and the star topology which consists of group of star network based workstations that are connected to a backbone using a linear bus topology. The advantage is tree topology is it allows expanding within the existing network. (Winkelman, 1997) There for the topology which will be implemented in the proposed network is the Tree Topology.

4|Page

HSSN HF11B1SE

4. DESCRITPION ABOUT THE PROPSED NETWORK

a. THE THREE SWITCH

The most common feature in the proposed network is having three main switches in each floor and in most of the departments. There are security devices including CCTV, Card readers in each floor and in most the departments. Those devices are separately connected to a separate switch in each floor. Two separate switches have dedicated to general purpose and the communication purpose. All the VoIP and Fax lines are connected the switch which is dedicated to the communication. All the computers, laptops, laptop docs, network printers, wireless access points, etc. are connected to the general switch. This increase more security and isolates the security switch

b. CABLING

The Shielded Twisted Pair cables are proposed to the entire network solution to use as wired local area medium. The advantage of the Shielded Twisted Pair (CAT 6) is less expensive, ease of use and installation. the disadvantage of this CAT6 is it supports up to 100M, there for when networking the two building in 200M, fiber optics are needed to be use there. Meanwhile the CAT6 has a transmission rate of 1GB/s. this higher bandwidth is the major reason for choosing CAT6 instead of CAT5.

c. VLAN (Virtual LAN)

VLAN is breaking a switch logically into virtual parts. According to the proposed implementation most the communication switches have virtually breaking into parts for

5|Page

HSSN HF11B1SE VoIP and Fax, and also the general switch to network printer and the laptops, machines, etc.

d. SERVERS

i. PROXY SERVER
Proxy server which is knows an application level gateway is computer that acts as an gateway to filter everything between a local area network and a large scale network like internet. It helps to increase the performance and the security by filtering while monitoring all the network actions. It inspects all in and out from the server. All the incoming data access to the network via a single port and the proxy server filters it. Then only it transmitted in to the local area network. This helps to avoid the hacking theft for an extent.

ii. DNS SERVER

DNS Server is known as the Domain Name System Server which is a database system that translates the computers domain address into an IP address.

iii. DATABASE SERVER

A Server which can be defined as a server dedicated to provide all the database services. It can be seen in client server systems. (Anon., 2009)

iv. SIP SERVER

SIP which is known as Session Initiation Protocol is widely controls most the communication sessions like voice call via internet protocol and video calls via internet protocol. SIP server is the main component of a Digital PBX system. (Anon., 2012)

6|Page

HSSN HF11B1SE

v. VOIP SERVER
VoIP is an acronym for the Voice over internet protocol. This allows transporting voice calls via the internet rather than the normal PSTN networks.

vi. VPN SERVER

A server which allows connecting with the virtual private network which basically uses the internet to provide the accessibility for a company in a remote area to a centralized company network

vii. PRINTER SERVER

All the printing task happens through this server. This server allows all the computers on a network to access the network printer. This allows many numbers of individual computers to use an one printer.

viii. DHCP SERVER

Dynamic Host Configuration Protocol Server allows assigning automatically IP addresses to all the computers in the network from a predefined range.

ix. CCTV SERVER

This server handles all the CCTV video uploading and downloading actions to the CCTV Cloud.

x. EXCHANGE SERVER
Exchange server monitors all the sending and receiving mails form and to the system and checks for the thefts.

7|Page

HSSN HF11B1SE

xi. APPLICATION SERVER

This network allows running all the network based application in the system. It allows to access the concurrent accessibility to the network based applications.

xii. STAFF SECURITY ACCESS DATA SERVER

This server keeps record of the smart key actions and handle the all the smart key card based functions.

xiii. WEB SERVER

Webserver is the server which keeps the company web hosted 24 hours online, so any customer can access to it to seek information..

xiv. MAIL SERVER

Mail server acts as a postman in the network. This Handles, all the incoming and outgoing mails in the system.

xv. FILE SERVER

File server is a centralized server which keeps a massive storage of data which allows all the individual clients to access.

e. VIRTUAL PRIVATE NETWORK IMPLEMENTATION

VPN is a virtual connection to another place which is geographical far. It is the most cost effective method to connect two or more building together in different geographical locations. The virtual tunnel which li configured through the leased line is more 8|Page

HSSN HF11B1SE beneficial. The maintenance process makes easier in VPN because of the non-physical connection between the positions. Compared to the cost of laying a fiber optic cable from a geographically far location, VPN concepts is more beneficial.

9|Page

HSSN HF11B1SE

5. NETWORK FLOOR DESIGNS

a. HEAD OFFICE

i. SERVER ROOM

Figure 1 : Head Office : Server Room

10 | P a g e

HSSN HF11B1SE The main server consists with a layer 3 backbone. A proxy server have used between the external firewall and the layer 3 switches to filter all the incoming and outgoing from the network. For each server group, separate internal firewall has been used to the security purpose. CCTV server is connected and synced with the CCTV Cloud Server. Internet line has been taken from two lease lines to give a higher bandwidth to the entire network. A load balancer has used to balance the load from the network. PSTN network is connected to the Digital PBX.

11 | P a g e

HSSN HF11B1SE

ii. GROUND FLOOR

Figure 2 Head Office : Ground Floor

12 | P a g e

HSSN HF11B1SE

iii. 1st FLOOR

Figure 3 : Head Office : 1st Floor

13 | P a g e

HSSN HF11B1SE

iv. 2nd FLOOR

Figure 4 : Head Office : 2nd Floor

14 | P a g e

HSSN HF11B1SE

b. PROPOSED SITE ONE (INDIA)

i. SERVER ROOM

Figure 5 : Proposed India Branch : Server Room

15 | P a g e

HSSN HF11B1SE The main server consists with a layer 3 backbone. A proxy server have used between the external firewall and the layer 3 switches to filter all the incoming and outgoing from the network. For each server group, separate internal firewall has been used to the security purpose. CCTV server is connected and synced with the CCTV Cloud Server. Internet line has been taken from two lease lines to give a higher bandwidth to the entire network. A load balancer has used to balance the load from the network. PSTN network is connected to the Digital PBX. Fiber optical transmitter has used to transmit data among two buildings. Fiber optical cable is layed between two buildings to transfer data.

16 | P a g e

HSSN HF11B1SE

ii. BUILDING ONE

Figure 6 : Proposed India Branch : Building One

17 | P a g e

HSSN HF11B1SE

iii. BUILDING TWO

Figure 7 : Proposed India Branch : Building Two

18 | P a g e

HSSN HF11B1SE

c. PROPOSED SITE TWO (NEPAL)

i. SERVER ROOM

Figure 8 : Proposed Nepal Branch : Server Room

19 | P a g e

HSSN HF11B1SE The main server consists with a layer 3 backbone. A proxy server have used between the external firewall and the layer 3 switches to filter all the incoming and outgoing from the network. For each server group, separate internal firewall has been used to the security purpose. CCTV server is connected and synced with the CCTV Cloud Server. Internet line has been taken from two lease lines to give a higher bandwidth to the entire network. A load balancer has used to balance the load from the network. PSTN network is connected to the Digital PBX.

20 | P a g e

HSSN HF11B1SE

ii. GROUND FLOOR

Figure 9 : Proposed Nepal Branch : Ground Floor

21 | P a g e

HSSN HF11B1SE

iii. FIRST FLOOR

Figure 10 Proposed Nepal Branch : 1st Floor

22 | P a g e

HSSN HF11B1SE

6. NETWORK HARDWARE a. SWITCHES L2

All the switched which have been used to connect devices in each floors and sections are layer two switches. All the computers and devices are connected to the L2 switch and then that L2 switch has connected to the main switch on the floor. Price of a Layer 2 Switch :

b. SWITCHES L3
Layer 3 Switch is only used for the backbone switch of the entire networks. All the main switches in each floor ultimately connect to the Layer 3 switch in server room. The L3 switch is expensive compared to the L2 Switch. Price of a Layer 3 Switch :

c. FIREWALLS
Firewalls are only built in server rooms. External firewall is installed before the proxy server, and 3 internal firewalls have been used for each general switch. This helps to filter the internal traffic.

d. WIRELESS ACCESS POINTS

Wireless access points are used in most of the floors, to provide wireless internet and network connection to all the wireless devices. Wireless connectivity enables the staff the mobile accessibility. Implementing WAPs are easier than implementing switches. WAPs arent limited for specific devices.

23 | P a g e

HSSN HF11B1SE

7. END SYSTEM EQUIPMENTS

COMPUTERS: Recommended Minimum Configuration of the Computers are supposed to be best in the market.

PRINTER: Printers must be capable with network connection and must be all laser printers.

FAX : All the fax machines must be with Scanner and Photocopy machines ( etc : OfficeJets)

VOIP Phones : All the VoIP Phones must be Cordless Phones.

24 | P a g e

HSSN HF11B1SE

8. NETWORK SERVICES

a. INTERNET CONNECTIVITY
Internet has become day to day need for all the humans. Therefore this network is integrated with the Internet connectivity. So the any authorized users can access to the internet. Apart from that internet is need to access to the VPN and the CCTV Cloud.

b. EMAIL SERVICES
Providing an email address to the employees with the domain of company name is to be done. This makes easier to communicate legally in written via the network. Any official document can be transferred via anyone within a second using this.

c. STORAGE
File Server is the server which stores all the data in the system. this storage is a centralized storage which any authorized user can be accessed from anywhere.

d. DATABASE
This provides to maintain the data of the organization. Its better to own a database server, since it makes the data more secure.

25 | P a g e

HSSN HF11B1SE

9. CONCLUSION

According to my knowledge these are the best network plans designed for this company. There could be some minor changes when it moves into the implementation process. Anyway the majority would be the same. First of all I started this assignment with the floor plans and then I moved into the documentation while research further and more. It was a pretty hard task to complete the network diagram, but somehow I managed to complete them after struggling for days. Somehow after all at the end of the assignment I understood more about VLAN, VPN and CSA when researching fact for this theseis.

26 | P a g e

HSSN HF11B1SE

10.Bibliography
Anon., 2009. Dedicated Server School. [Online] Available at: http://www.serverschool.com/dedicated-servers/what-is-a-database-server/ [Accessed 15 January 2012]. Anon., 2009. Rose India. [Online] Available at: http://www.roseindia.net/java/network/client-server.shtml [Accessed 12 February 2012]. Anon., 2012. 3CX. [Online] Available at: http://www.3cx.com/PBX/sip-server.html [Accessed 16 January 2012]. Anon., 2012. Peer to Peer File Sharing - P2P Networking. [Online] Available at: http://compnetworking.about.com/od/p2ppeertopeer/Peer_to_Peer_File_Sharing_P2P_N etworking.htm [Accessed 30 January 2012]. Winkelman, D.R., 1997. An Educator's Guide to School Networks. [Online] University of South Florida Available at: http://fcit.usf.edu/network/chap5/chap5.htm#TreeNetwork [Accessed 15 January 2012].

27 | P a g e

HSSN HF11B1SE

11.PRESENTATION

28 | P a g e