PROJECT OVERVIEW

Currently , Balsharaf has two Windows NT domains and one Active Directory operating on Windows 2000 . These servers are out of support and outdated . So , the BALSHARAF GROUP IT is working on the deployment of a new Windows 2008 Active Directory Forest as their centralized authentication service . In order to provide implementation of a Service , Balsharaf Server 2008 project the underlying infrastructure for the Global Authentication and Directory Group is implementing the Windows .

PROJECT VISION
Balsharaf currently has 48 branches which are connected to Head Office in Riyadh . Currently , all Branch offices uses legacy Windows client and server operating systems and applications which are out of support . Balsharaf s current vision is to have 4x4 strategy which is growing 4 times in 4 years . Current IT infrastructure cannot support this vision and needs to be changed immediately . To support the vision , Balsharaf built a new structure and planning to move to new building near future . As part of vision , Balsharaf will implement Windows 2008 Active Directory as their centralized authentication service

LOGICAL DESIGN
BALSHARAF GROUP will install a new Single Forest / Domain Model to provide Directory and Authentication services to all business groups , using Organizational Unit ( OU ) delegation to provide clear administrative boundaries between the business groups , and between service owners .

To better understand this design please go to the next slide ..!!

BALSHARAF . LOC Domain

Domain Controller WSUS Server Exchange 2010 server Antivirus Server File server Backup server BALSHARAF Head Office Windows Server 2008 DC.

RODC + Global Catalog , File server in Branch Offices . WSUS , Exchange , Antivirus Will Be in HO .

We can Implement HYPER - V in small Branch offices to Minimize Hardware and software cost and to fully utili the Resources .

g Branches (More than 50 users) Small sized Branches (1-5 use RODC Medium Sized Branches (10-40 users) RODC. RODC

BALSHARAF GROUP

INSIDE RIYADH BRANCHES

1 . U lker W . H Rice Foods 2 . Rice 3 . Foods 4 . Oil Workshop 5 . Balsharaf Cars Workshops 6 . Smithy WorkShop 7 . Central Warehouse 8 . Al Badiaa 9 . Al Moroj 10 . Al Nassem Hamza 11 . Al Nassem Wholesale 12 . Al Olayaa 13 . Al Nuzhaa 14 . Al Orijaa 15 . Al Hilal 16 . Al Swediee 17 . Al Hijazz 18 . Wadi Laban 19.

OUTSIDE RIYADH BRANCHES

Jeddah Workshop Jeddah Al Taeif Al taeif Warehouse Makka Makka Warehouse Al Madina Al Monawara Al Madina Warehouse Al Ehssa Al Ehssa Warehouse Al Dammam Tabouk Tabouk Warehouse Sakkaka Sakkaka Warehouse Al Qassem Branches Al Qassem Warehouse Hafer Al Baten Hafer Al Baten Warehouse Hael Hael Warehouse Khamis Mishiet Khamis Mishiet Warehouse Najran Bishaa Yanboe Jezzan

PROJECT STATUS

DATA FLOW BETWEEN HO AND BRANCH OFFICES

ROUTERS SPECIFICATION
Type one : C1861W - SRST - C F / K9
WAN Router with 2 x 10 / 100 interface . Voice Enabled O / S .

SRST Software IP Phones Call Manager Backup , support up to 8 User . ( this features will activated only when the WAN link goes down ). Voice Mail for 8 User . Auto attendant ( welcome recording message ). Four port FXO to connect with four analog trunks . 8 Port Switch 10 / 100 PoE . Wireless Access Point . One free WIC slot .

Type two : CISCO2811 - SRST / K9

WAN Router with 2 x 10 / 100 interface . Voice Enabled O / S . SRST Software IP Phones Call Manager Backup , support up to 35 User . ( this features will activated only when the WAN link goes down ). Voice Mail for 12 User . Auto attendant ( welcome recording message ). Four port FXO to connect with four analog trunks . Three free WIC slot & one Network Module .

Type three : CISCO2821 - SRST / K9

WAN Router with 2 x 10 / 100 interface . Voice Enabled O / S . SRST Software IP Phones Call Manager Backup , support up to 50 User . ( this features will activated only when the WAN link goes down ). Voice Mail for 12 User . Auto attendant ( welcome recording message ). Four port FXO to connect with four analog trunks . Three free WIC slot & one Network Module .

BIG BRANCH ROUTER SPECIFICATION

CISCO2811 - SRST / K9 Include : WAN Router with 2 x 10 / 100 interface . Voice Enabled O / S . SRST Software IP Phones Call Manager Backup , support up to 35 User . ( this features will activated only when the WAN link goes down ). Voice Mail for 12 Users . Auto attendant ( welcome recording message ). Four port FXO to connect with four analog trunks . Three free WIC slot & one Network Module .

SWITCHES SPECIFICATION
Type one : WS - C3560 - 48PS - S 48 Port 10 / 100 PoE ( Power over Ethernet ). 4 uplink Port empty SFP slots ( Fiber / Copper with 1Gbps Speed ). Type two : WS - C3560 - 24PS - S 24 Port 10 / 100 PoE ( Power over Ethernet ). 2 uplink Port empty SFP slots ( Fiber / Copper with 1Gbps Speed ). WS - C3560 - 12PC - S 12 Port 10 / 100 PoE ( Power over Ethernet ). One Uplink Port can be work at same time : 1 Port empty SFP slots ( Fiber / Copper with 1Gbps Speed ) 1 port 10 / 100 / 1000 RJ45 . Include Rack - Mount Kit .

WAN ROUTER IP SCHEMA

IP 1st Octet 2nd Octet 3rd Octet function 4th Octet

IP

Company Branch/ HO

PC/Laptop/PDA/IP phone/server

Place

First octet will be 10 , represent Balsharaf Company . Second octet will represent Ho or branch based on the table down
Place 2nd octet IP address 1 2 3 4

General Management + Riyadh Branch Riyadh Arz Riyadh Food

Third octet will represent Department , office , function and so on .

3rd octet IP address 10 11 12 13

Usage Data Voice Waas "future usage" Loopback

Fourth Octet will include PCs , Laptops , PDA , printers , IP phones , etc

But we will fix some IP addresses to be reserved for special cases : IP IP IP IP IP IP IP IP 4th Octet 254 250 251 252 253 200-210 1-100 Usage Virtual Gateway Switch-1 management Switch-2 management Switch-3 management Switch-4 management Printers, workstations Hosts

Branch Router example

Branch Moroj Branch

Main interface

Giga 0/0 X

Gig 0/1 Gig 0/1.10 Gig 0/1.11 Gig 0/1.12

Loopback 1 X 10.13.12.2 54

Subinterface

IP address

172.16.128.210.13.10. 10.13.11.2 10.13.12.254 42 254 54

Description

WAN interface

Data

Voice

WAAS "Future use

Loopback

Introduction to Survivable Remote Site Telephony

Complete Route Plan for Balsharaf

Route Plan Caller-1 ON-NET Calls Caller-2 Route Case

HO employee HO employee Employee Branch-A Employee Branch-A

Branches employee Branches employee Employee Branch-B Employee Branch-B

WAN Link E-1 Link (HO) and FXO(Branch) WAN Link FXO E-1 Link E-1 Link FXO inside Branch FXO inside Branch

Link is up Link is down Link is up Link is down All Cases Link is up Link is down All Cases

OFF-NET Calls

HO Employee All Customer Branch Inside Riyadh Branch Inside Riyadh All Customer All Customer

Branch Outside ALL Customers Riyadh