├── .gitattributes ├── image.png ├── Project Report.pdf ├── Company Business System Network Design (Project #6).pdf ├── Company Business System Network Design (Project #6).pkt ├── All Commands ├── Check.txt ├── Network Config.txt ├── ISP.txt ├── Core Layer.txt ├── Multi Layer.txt └── Access Layer.txt ├── LICENSE └── README.md /.gitattributes: -------------------------------------------------------------------------------- 1 | # Auto detect text files and perform LF normalization 2 | * text=auto 3 | -------------------------------------------------------------------------------- /image.png: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/Mehedi-Hasan-Rabbi/Company-Business-System-Network-Design/HEAD/image.png -------------------------------------------------------------------------------- /Project Report.pdf: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/Mehedi-Hasan-Rabbi/Company-Business-System-Network-Design/HEAD/Project Report.pdf -------------------------------------------------------------------------------- /Company Business System Network Design (Project #6).pdf: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/Mehedi-Hasan-Rabbi/Company-Business-System-Network-Design/HEAD/Company Business System Network Design (Project #6).pdf -------------------------------------------------------------------------------- /Company Business System Network Design (Project #6).pkt: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/Mehedi-Hasan-Rabbi/Company-Business-System-Network-Design/HEAD/Company Business System Network Design (Project #6).pkt -------------------------------------------------------------------------------- /All Commands/Check.txt: -------------------------------------------------------------------------------- 1 | show ip int brief 2 | show vlan brief 3 | show int trunk 4 | show ip route ospf 5 | show start 6 | show ip ospf neighbour 7 | show ip ospf database 8 | ssh -l admin 10.10.10.9 9 | show ip nat translation 10 | show ip route 11 | show port-security -------------------------------------------------------------------------------- /All Commands/Network Config.txt: -------------------------------------------------------------------------------- 1 | ############ CONFIG STEPS ############### 2 | 1. Basic settings to all devices plus ssh on the routers and 13 switches. 3 | 2. VLANs assignment plus all access and trunk ports on 12 and 13 switches. 4 | 3. Switchport security to finance department. 5 | 4. Subnetting and IP addressing 6 | 5. OSPF on the routers and 13 switches. 7 | 6. Static IP address to serverRoom devices. 8 | 7. DHCP server device configuratiuons. 9 | 8. Inter-VLAN routing on the 13 switches plus ip dhcp helper addresses. 10 | 9. Wireless network configurations. 11 | 10. PAT + Access Control List 12 | 10.1. Defult static route 13 | 11. Verifying and testing configurations. -------------------------------------------------------------------------------- /LICENSE: -------------------------------------------------------------------------------- 1 | MIT License 2 | 3 | Copyright (c) 2024 Mehedi-Hasan-Rabbi 4 | 5 | Permission is hereby granted, free of charge, to any person obtaining a copy 6 | of this software and associated documentation files (the "Software"), to deal 7 | in the Software without restriction, including without limitation the rights 8 | to use, copy, modify, merge, publish, distribute, sublicense, and/or sell 9 | copies of the Software, and to permit persons to whom the Software is 10 | furnished to do so, subject to the following conditions: 11 | 12 | The above copyright notice and this permission notice shall be included in all 13 | copies or substantial portions of the Software. 14 | 15 | THE SOFTWARE IS PROVIDED "AS IS", WITHOUT WARRANTY OF ANY KIND, EXPRESS OR 16 | IMPLIED, INCLUDING BUT NOT LIMITED TO THE WARRANTIES OF MERCHANTABILITY, 17 | FITNESS FOR A PARTICULAR PURPOSE AND NONINFRINGEMENT. IN NO EVENT SHALL THE 18 | AUTHORS OR COPYRIGHT HOLDERS BE LIABLE FOR ANY CLAIM, DAMAGES OR OTHER 19 | LIABILITY, WHETHER IN AN ACTION OF CONTRACT, TORT OR OTHERWISE, ARISING FROM, 20 | OUT OF OR IN CONNECTION WITH THE SOFTWARE OR THE USE OR OTHER DEALINGS IN THE 21 | SOFTWARE. 22 | -------------------------------------------------------------------------------- /All Commands/ISP.txt: -------------------------------------------------------------------------------- 1 | We are only configuring the interface of the ISP because we do not have the privilege to configure the ISP. 2 | 3 | 4 | ================================================== 5 | ISP-1 6 | ================================================== 7 | Interface Configuration 8 | ----------------------- 9 | int se0/3/0 10 | ip address 103.133.254.1 255.255.255.252 11 | no shutdown 12 | exit 13 | do wr 14 | 15 | int se0/3/1 16 | ip address 103.133.254.5 255.255.255.252 17 | no shutdown 18 | exit 19 | do wr 20 | 21 | OSPF Configuration ( OSPF 10 is the process ID ) 22 | --------------------------------- 23 | router ospf 10 24 | router-id 5.5.5.5 25 | network 103.133.254.0 0.0.0.3 area 0 26 | network 103.133.254.4 0.0.0.3 area 0 27 | 28 | do wr 29 | exit 30 | 31 | 32 | ================================================== 33 | ISP-2 34 | ================================================== 35 | Interface Configuration 36 | ----------------------- 37 | int se0/3/0 38 | ip address 103.133.254.9 255.255.255.252 39 | no shutdown 40 | exit 41 | do wr 42 | 43 | int se0/3/1 44 | ip address 103.133.254.13 255.255.255.252 45 | no shutdown 46 | exit 47 | do wr 48 | 49 | OSPF Configuration ( OSPF 10 is the process ID ) 50 | --------------------------------- 51 | router ospf 10 52 | router-id 6.6.6.6 53 | network 103.133.254.8 0.0.0.3 area 0 54 | network 103.133.254.12 0.0.0.3 area 0 55 | 56 | do wr 57 | exit -------------------------------------------------------------------------------- /All Commands/Core Layer.txt: -------------------------------------------------------------------------------- 1 | ========================================================================= 2 | Core Router - 1 3 | ========================================================================= 4 | Basic Setting 5 | ------------- 6 | en 7 | config 8 | 9 | hostname CORE-R1 10 | line console 0 11 | password cisco 12 | login 13 | exit 14 | 15 | enable password cisco 16 | no ip domain-lookup 17 | banner motd #No Unauthorised Acces!!!# 18 | service password-encryption 19 | 20 | do wr 21 | 22 | SSH Configuration 23 | ----------------- 24 | ip domain name cisco.net 25 | username admin password cisco 26 | crypto key generate rsa 27 | 1024 28 | line vty 0 15 29 | login local 30 | transport input ssh 31 | exit 32 | 33 | ip ssh version 2 34 | 35 | do wr 36 | 37 | 38 | Assigning IP address 39 | -------------------- 40 | int gig0/0 41 | ip address 10.10.10.1 255.255.255.252 42 | no shutdown 43 | exit 44 | do wr 45 | 46 | int gig0/1 47 | ip address 10.10.10.5 255.255.255.252 48 | no shutdown 49 | exit 50 | do wr 51 | 52 | int se0/2/0 53 | ip address 103.133.254.1 255.255.255.252 54 | no shutdown 55 | clock rate 64000 56 | exit 57 | do wr 58 | 59 | int se0/2/1 60 | ip address 103.133.254.10 255.255.255.252 61 | no shutdown 62 | clock rate 64000 63 | exit 64 | do wr 65 | 66 | OSPF Configuration ( OSPF 10 is the process ID ) 67 | --------------------------------- 68 | router ospf 10 69 | router-id 3.3.3.3 70 | network 10.10.10.0 0.0.0.3 area 0 71 | network 10.10.10.4 0.0.0.3 area 0 72 | network 103.133.254.0 0.0.0.3 area 0 73 | network 103.133.254.8 0.0.0.3 area 0 74 | 75 | do wr 76 | exit 77 | 78 | PAT Configuration 79 | ----------------- 80 | ip nat inside source list 1 int se0/2/0 overload 81 | ip nat inside source list 1 int se0/2/1 overload 82 | 83 | access-list 1 permit 192.168.10.0 0.0.0.255 84 | access-list 1 permit 192.168.20.0 0.0.0.255 85 | access-list 1 permit 192.168.30.0 0.0.0.255 86 | access-list 1 permit 192.168.40.0 0.0.0.255 87 | access-list 1 permit 192.168.50.0 0.0.0.255 88 | access-list 1 permit 192.168.60.0 0.0.0.255 89 | 90 | int range gig0/0-1 91 | ip nat inside 92 | exit 93 | 94 | int se0/2/0 95 | ip nat outside 96 | int se0/2/1 97 | ip nat outside 98 | exit 99 | 100 | do wr 101 | 102 | Defult static route 103 | ------------------- 104 | ip route 0.0.0.0 0.0.0.0 se0/2/0 // If problem use: ip route 0.0.0.0 0.0.0.0 se0/2/0 70 105 | ip route 0.0.0.0 0.0.0.0 se0/2/1 70 106 | 107 | do wr 108 | 109 | ========================================================================= 110 | Core Router - 2 111 | ========================================================================= 112 | Basic Setting 113 | ------------- 114 | en 115 | config 116 | 117 | hostname CORE-R2 118 | line console 0 119 | password cisco 120 | login 121 | exit 122 | 123 | enable password cisco 124 | no ip domain-lookup 125 | banner motd #No Unauthorised Acces!!!# 126 | service password-encryption 127 | 128 | do wr 129 | 130 | SSH Configuration 131 | ----------------- 132 | ip domain name cisco.net 133 | username admin password cisco 134 | crypto key generate rsa 135 | 1024 136 | line vty 0 15 137 | login local 138 | transport input ssh 139 | exit 140 | 141 | ip ssh version 2 142 | 143 | do wr 144 | 145 | Assigning IP address 146 | -------------------- 147 | int gig0/0 148 | ip address 10.10.10.9 255.255.255.252 149 | no shutdown 150 | exit 151 | do wr 152 | 153 | int gig0/1 154 | ip address 10.10.10.13 255.255.255.252 155 | no shutdown 156 | exit 157 | do wr 158 | 159 | int se0/2/0 160 | ip address 103.133.254.6 255.255.255.252 161 | no shutdown 162 | clock rate 64000 163 | exit 164 | do wr 165 | 166 | int se0/2/1 167 | ip address 103.133.254.14 255.255.255.252 168 | no shutdown 169 | clock rate 64000 170 | exit 171 | do wr 172 | 173 | 174 | OSPF Configuration ( OSPF 10 is the process ID ) 175 | --------------------------------- 176 | router ospf 10 177 | router-id 4.4.4.4 178 | network 10.10.10.8 0.0.0.3 area 0 179 | network 10.10.10.12 0.0.0.3 area 0 180 | network 103.133.254.4 0.0.0.3 area 0 181 | network 103.133.254.12 0.0.0.3 area 0 182 | 183 | do wr 184 | exit 185 | 186 | PAT Configuration 187 | ----------------- 188 | ip nat inside source list 1 int se0/2/0 overload 189 | ip nat inside source list 1 int se0/2/1 overload 190 | 191 | access-list 1 permit 192.168.10.0 0.0.0.255 192 | access-list 1 permit 192.168.20.0 0.0.0.255 193 | access-list 1 permit 192.168.30.0 0.0.0.255 194 | access-list 1 permit 192.168.40.0 0.0.0.255 195 | access-list 1 permit 192.168.50.0 0.0.0.255 196 | access-list 1 permit 192.168.60.0 0.0.0.255 197 | 198 | int range gig0/0-1 199 | ip nat inside 200 | exit 201 | 202 | int se0/2/0 203 | ip nat outside 204 | int se0/2/1 205 | ip nat outside 206 | exit 207 | 208 | do wr 209 | 210 | Defult static route 211 | ------------------- 212 | ip route 0.0.0.0 0.0.0.0 se0/2/0 // If problem use: ip route 0.0.0.0 0.0.0.0 se0/2/0 70 213 | ip route 0.0.0.0 0.0.0.0 se0/2/1 70 214 | 215 | do wr 216 | 217 | -------------------------------------------------------------------------------- /All Commands/Multi Layer.txt: -------------------------------------------------------------------------------- 1 | ========================================================================= 2 | Multilayer Switch - 1 3 | ========================================================================= 4 | Basic Setting 5 | ------------- 6 | en 7 | config 8 | 9 | hostname Mlt-SW1 10 | line console 0 11 | password cisco 12 | login 13 | exit 14 | 15 | enable password cisco 16 | no ip domain-lookup 17 | banner motd #No Unauthorised Acces!!!# 18 | service password-encryption 19 | 20 | do wr 21 | 22 | SSH Configuration 23 | ----------------- 24 | ip domain name cisco.net 25 | username admin password cisco 26 | crypto key generate rsa 27 | 1024 28 | line vty 0 15 29 | login local 30 | transport input ssh 31 | exit 32 | 33 | ip ssh version 2 34 | 35 | do wr 36 | 37 | 38 | gig1/0/3 to gig1/0/8 is trunk port and connect to VLAN 39 | ------------------------------------------------------ 40 | int range gig1/0/3-8 41 | switchport mode trunk 42 | 43 | vlan 10 44 | name Sales 45 | vlan 20 46 | name HR 47 | vlan 30 48 | name Finance 49 | vlan 40 50 | name Admin 51 | vlan 50 52 | name ICT 53 | vlan 60 54 | name ServerRoom 55 | 56 | exit 57 | 58 | do wr 59 | 60 | 61 | Making gig1/0/1-2 into a layer 3 interface 62 | ------------------------------------------ 63 | int range gig1/0/1-2 64 | no switchport 65 | 66 | exit 67 | do wr 68 | 69 | 70 | Assigning IP address 71 | -------------------- 72 | int gig1/0/1 73 | ip address 10.10.10.2 255.255.255.252 74 | no shutdown 75 | exit 76 | do wr 77 | 78 | int gig1/0/2 79 | ip address 10.10.10.10 255.255.255.252 80 | no shutdown 81 | exit 82 | do wr 83 | 84 | OSPF Configuration (ospf 10 is process ID) 85 | ------------------------------------------ 86 | ip routing 87 | router ospf 10 88 | router-id 2.2.2.2 89 | network 192.168.10.0 0.0.0.255 area 0 90 | network 192.168.20.0 0.0.0.255 area 0 91 | network 192.168.30.0 0.0.0.255 area 0 92 | network 192.168.40.0 0.0.0.255 area 0 93 | network 192.168.50.0 0.0.0.255 area 0 94 | network 192.168.60.0 0.0.0.255 area 0 95 | network 10.10.10.0 0.0.0.3 area 0 96 | network 10.10.10.8 0.0.0.3 area 0 97 | 98 | do wr 99 | 100 | Inter-VLAN configuration 101 | ------------------------ 102 | int vlan 10 103 | no shutdown 104 | ip address 192.168.10.1 255.255.255.0 105 | ip helper-address 192.168.60.2 106 | exit 107 | 108 | int vlan 20 109 | no shutdown 110 | ip address 192.168.20.1 255.255.255.0 111 | ip helper-address 192.168.60.2 112 | exit 113 | 114 | int vlan 30 115 | no shutdown 116 | ip address 192.168.30.1 255.255.255.0 117 | ip helper-address 192.168.60.2 118 | exit 119 | 120 | int vlan 40 121 | no shutdown 122 | ip address 192.168.40.1 255.255.255.0 123 | ip helper-address 192.168.60.2 124 | exit 125 | 126 | int vlan 50 127 | no shutdown 128 | ip address 192.168.50.1 255.255.255.0 129 | ip helper-address 192.168.60.2 130 | exit 131 | 132 | int vlan 60 133 | no shutdown 134 | ip address 192.168.60.1 255.255.255.0 135 | exit 136 | 137 | do wr 138 | 139 | 140 | Defult static route 141 | ------------------- 142 | ip route 0.0.0.0 0.0.0.0 gig1/0/1 143 | ip route 0.0.0.0 0.0.0.0 gig1/0/2 70 144 | 145 | ========================================================================= 146 | Multilayer Switch - 2 147 | ========================================================================= 148 | Basic Setting 149 | ------------- 150 | en 151 | config 152 | 153 | hostname Mlt-SW2 154 | line console 0 155 | password cisco 156 | login 157 | exit 158 | 159 | enable password cisco 160 | no ip domain-lookup 161 | banner motd #No Unauthorised Acces!!!# 162 | service password-encryption 163 | 164 | do wr 165 | 166 | SSH Configuration 167 | ----------------- 168 | ip domain name cisco.net 169 | username admin password cisco 170 | crypto key generate rsa 171 | 1024 172 | line vty 0 15 173 | login local 174 | transport input ssh 175 | exit 176 | 177 | ip ssh version 2 178 | 179 | do wr 180 | 181 | gig1/0/3 to gig1/0/8 is trunk port and connect to VLAN 182 | ------------------------------------------------------ 183 | int range gig1/0/3-8 184 | switchport mode trunk 185 | 186 | vlan 10 187 | name Sales 188 | vlan 20 189 | name HR 190 | vlan 30 191 | name Finance 192 | vlan 40 193 | name Admin 194 | vlan 50 195 | name ICT 196 | vlan 60 197 | name ServerRoom 198 | 199 | exit 200 | 201 | do wr 202 | 203 | 204 | Making gig1/0/1-2 into a layer 3 interface 205 | ------------------------------------------ 206 | int range gig1/0/1-2 207 | no switchport 208 | 209 | exit 210 | do wr 211 | 212 | Assigning IP address 213 | -------------------- 214 | int gig1/0/1 215 | ip address 10.10.10.6 255.255.255.252 216 | no shutdown 217 | exit 218 | do wr 219 | 220 | int gig1/0/2 221 | ip address 10.10.10.14 255.255.255.252 222 | no shutdown 223 | exit 224 | do wr 225 | 226 | OSPF Configuration 227 | ------------------ 228 | ip routing 229 | router ospf 10 230 | router-id 1.1.1.1 231 | network 192.168.10.0 0.0.0.255 area 0 232 | network 192.168.20.0 0.0.0.255 area 0 233 | network 192.168.30.0 0.0.0.255 area 0 234 | network 192.168.40.0 0.0.0.255 area 0 235 | network 192.168.50.0 0.0.0.255 area 0 236 | network 192.168.60.0 0.0.0.255 area 0 237 | network 10.10.10.4 0.0.0.3 area 0 238 | network 10.10.10.12 0.0.0.3 area 0 239 | 240 | do wr 241 | 242 | Inter-VLAN configuration 243 | ------------------------ 244 | int vlan 10 245 | no shutdown 246 | ip address 192.168.10.1 255.255.255.0 247 | ip helper-address 192.168.60.2 248 | exit 249 | 250 | int vlan 20 251 | no shutdown 252 | ip address 192.168.20.1 255.255.255.0 253 | ip helper-address 192.168.60.2 254 | exit 255 | 256 | int vlan 30 257 | no shutdown 258 | ip address 192.168.30.1 255.255.255.0 259 | ip helper-address 192.168.60.2 260 | exit 261 | 262 | int vlan 40 263 | no shutdown 264 | ip address 192.168.40.1 255.255.255.0 265 | ip helper-address 192.168.60.2 266 | exit 267 | 268 | int vlan 50 269 | no shutdown 270 | ip address 192.168.50.1 255.255.255.0 271 | ip helper-address 192.168.60.2 272 | exit 273 | 274 | int vlan 60 275 | no shutdown 276 | ip address 192.168.60.1 255.255.255.0 277 | exit 278 | 279 | do wr 280 | 281 | Defult static route 282 | ------------------- 283 | ip route 0.0.0.0 0.0.0.0 gig1/0/1 284 | ip route 0.0.0.0 0.0.0.0 gig1/0/2 70 285 | 286 | -------------------------------------------------------------------------------- /All Commands/Access Layer.txt: -------------------------------------------------------------------------------- 1 | ======================================================================== 2 | Sales and Marketing 3 | ========================================================================= 4 | Basic Setting 5 | ------------- 6 | en 7 | config t 8 | 9 | hostname Sales-SW 10 | banner motd #No Unauthorised Acces!!!# 11 | no ip domain-lookup 12 | line console 0 13 | passw cisco 14 | login 15 | exit 16 | 17 | enable password cisco 18 | service password-encryption 19 | exit 20 | wr = write memory 21 | 22 | VLAN and Trunck port and Access port 23 | ------------------------------------ 24 | int range fa0/1-2 25 | switchport mode trunk 26 | exit 27 | 28 | vlan 10 29 | name Sales 30 | exit 31 | 32 | int range fa0/3-24 33 | switchport mode access 34 | switchport access vlan 10 35 | exit 36 | 37 | do wr 38 | 39 | /* Putting other giabitEthenet port to unused vlan with shutdown */ 40 | vlan 99 41 | name BlackHole 42 | exit 43 | 44 | int range gig0/1-2 45 | switchport mode access 46 | switchport access vlan 99 47 | shutdown 48 | exit 49 | 50 | do wr 51 | 52 | 53 | 54 | 55 | ========================================================================== 56 | HR and Logistic 57 | ========================================================================== 58 | Basic Setting 59 | ------------- 60 | en 61 | config 62 | 63 | hostname HR-SW 64 | line console 0 65 | password cisco 66 | login 67 | exit 68 | 69 | enable password cisco 70 | no ip domain-lookup 71 | banner motd #No Unauthorised Acces!!!# 72 | service password-encryption 73 | 74 | do wr 75 | 76 | VLAN and Trunck port and Access port 77 | ------------------------------------ 78 | int range fa0/1-2 79 | switchport mode trunk 80 | exit 81 | 82 | vlan 20 83 | name HR 84 | vlan 99 85 | name BlackHole 86 | exit 87 | 88 | int range fa0/3-24 89 | switchport mode access 90 | switchport access vlan 20 91 | exit 92 | 93 | int range gig0/1-2 94 | switchport mode access 95 | switchport access vlan 99 96 | exit 97 | 98 | do wr 99 | 100 | 101 | ========================================================================== 102 | Finance and Accounts 103 | ========================================================================== 104 | Basic Setting 105 | ------------- 106 | en 107 | config 108 | 109 | hostname Finance-SW 110 | line console 0 111 | password cisco 112 | login 113 | exit 114 | 115 | enable password cisco 116 | no ip domain-lookup 117 | banner motd #No Unauthorised Acces!!!# 118 | service password-encryption 119 | 120 | do wr 121 | 122 | VLAN and Trunck port and Access port 123 | ------------------------------------ 124 | int range fa0/1-2 125 | switchport mode trunk 126 | exit 127 | 128 | vlan 30 129 | name Finance 130 | vlan 99 131 | name BlackHole 132 | exit 133 | 134 | int range fa0/3-24 135 | switchport mode access 136 | switchport access vlan 30 137 | exit 138 | 139 | int range gig0/1-2 140 | switchport mode access 141 | switchport access vlan 99 142 | shutdown 143 | exit 144 | 145 | do wr 146 | 147 | 148 | Switchport security to finance department 149 | ----------------------------------------- 150 | int range fa0/3-24 151 | Switchport port-security 152 | switchport port-security maximum 1 {// Means 1 user at a time} 153 | switchport port-security mac-address sticky 154 | switchport port-security violation shutdown 155 | exit 156 | 157 | do wr 158 | 159 | Excluding int fa0/6 from port-security 160 | ----------------------------------------- 161 | int fa0/6 162 | no Switchport port-security 163 | no switchport port-security maximum 1 164 | no switchport port-security mac-address sticky 165 | no switchport port-security violation shutdown 166 | exit 167 | 168 | 169 | 170 | 171 | ========================================================================== 172 | Administrator and Public 173 | ========================================================================== 174 | Basic Setting 175 | ------------- 176 | en 177 | config 178 | 179 | hostname Admin-SW 180 | line console 0 181 | password cisco 182 | login 183 | exit 184 | 185 | enable password cisco 186 | no ip domain-lookup 187 | banner motd #No Unauthorised Acces!!!# 188 | service password-encryption 189 | 190 | do wr 191 | 192 | 193 | VLAN and Trunck port and Access port 194 | ------------------------------------ 195 | int range fa0/1-2 196 | switchport mode trunk 197 | exit 198 | 199 | vlan 40 200 | name Admin 201 | vlan 99 202 | name BlackHole 203 | exit 204 | 205 | int range fa0/3-24 206 | switchport mode access 207 | switchport access vlan 40 208 | exit 209 | 210 | int range gig0/1-2 211 | switchport mode access 212 | switchport access vlan 99 213 | shutdown 214 | exit 215 | 216 | do wr 217 | 218 | 219 | ========================================================================== 220 | ICT 221 | ========================================================================== 222 | Basic Setting 223 | ------------- 224 | en 225 | config 226 | 227 | hostname ICT-SW 228 | line console 0 229 | password cisco 230 | login 231 | exit 232 | 233 | enable password cisco 234 | no ip domain-lookup 235 | banner motd #No Unauthorised Acces!!!# 236 | service password-encryption 237 | 238 | do wr 239 | 240 | VLAN and Trunck port and Access port 241 | ------------------------------------ 242 | int range fa0/1-2 243 | switchport mode trunk 244 | exit 245 | 246 | vlan 50 247 | name ICT 248 | vlan 99 249 | name BlackHole 250 | exit 251 | 252 | int range fa0/3-24 253 | switchport mode access 254 | switchport access vlan 50 255 | exit 256 | 257 | int range gig0/1-2 258 | switchport mode access 259 | switchport access vlan 99 260 | shutdown 261 | exit 262 | 263 | do wr 264 | 265 | 266 | ========================================================================== 267 | Server Room 268 | ========================================================================== 269 | Basic Setting 270 | ------------- 271 | en 272 | config 273 | 274 | hostname ServerRoom-SW 275 | line console 0 276 | password cisco 277 | login 278 | exit 279 | 280 | enable password cisco 281 | no ip domain-lookup 282 | banner motd #No Unauthorised Acces!!!# 283 | service password-encryption 284 | 285 | do wr 286 | 287 | 288 | VLAN and Trunck port and Access port 289 | ------------------------------------ 290 | int range fa0/1-2 291 | switchport mode trunk 292 | exit 293 | 294 | vlan 60 295 | name ServerRoom 296 | vlan 99 297 | name BlackHole 298 | exit 299 | 300 | int range fa0/3-24 301 | switchport mode access 302 | switchport access vlan 60 303 | exit 304 | 305 | int range gig0/1-2 306 | switchport mode access 307 | switchport access vlan 99 308 | shutdown 309 | exit 310 | 311 | do wr -------------------------------------------------------------------------------- /README.md: -------------------------------------------------------------------------------- 1 | [![Contributors][contributors-shield]][contributors-url] 2 | [![Forks][forks-shield]][forks-url] 3 | [![Stargazers][stars-shield]][stars-url] 4 | [![Issues][issues-shield]][issues-url] 5 | [![MIT License][license-shield]][license-url] 6 | [![LinkedIn][linkedin-shield]][linkedin-url] 7 | [![StandWithPalestine](https://raw.githubusercontent.com/Safouene1/support-palestine-banner/master/StandWithPalestine.svg)](https://github.com/Safouene1/support-palestine-banner/blob/master/Markdown-pages/Support.md) 8 | 9 | # Company Business System Network Design 10 | Enterprise Networking Projects/ Cisco Packet Tracer Projects (Project #6) 11 | 12 | > In the Case Study and Requirements the Base Network is 172.16.1.0 but I have use 192.168.0.0 13 | 14 | > Public IP addresses are give 195.136.17.0/30, 15 | 195.136.17.4/30, 195.136.17.8/30 and 195.136.17.12/30 16 | but I have use 103.133.254.0/30, 103.133.254.4/30, 103.133.254./30, 103.133.254.12/30. 17 | 18 | > For ICT, Server Room and each depertment I have taken 256 host. So that we can increase the number of device if needed. 19 | 20 | > For more information check report. 21 | 22 | > SSH is enabled only for Finace and Admin. 23 | 24 | ## Project #6 Case Study and Requirements 25 | 26 | A trading floor Support center employs 600 staff. They have recently expanded and as a result, need to move to a new 27 | building. A building has been identified but has no network. This means that before they can make to move out, new 28 | network service needs to be designed and implemented in the new building. Existing Network comprises of the following 29 | elements: The new building is expected to have three floors with two departments in each for example; 30 | 1. First floor- (Sales and Marketing Department-120 users expected, Human Resource and Logistics Department 120 users expected). 31 | 2. Second floor- (Finance and Accounts Department-120 users expected, Administrator and Public Relations 32 | Department-120 users expected). 33 | 3. Third floor- (ICT-120 users expected, Server Room-12 devices expected). 34 | 35 | Therefore, as a key member of the Networks Team, you have been tasked to design a network for the new building. At this 36 | stage, logical design is required, which shows the measures that you would put in place to ensure that the new network 37 | meets the current business need and is future-proofed: 38 | 39 | * Use Cisco Packet Tracer to design and implement the network solution. 40 | * Use hieratical model providing redundancy at every layer i.e. two routers and two multilayer switches are expected 41 | to be used to provide redundancy. 42 | * The network is also expected to connect to at least two ISPs to provide redundancy and each router to the 43 | connected to the two ISPs. 44 | * Each department is required to have a wireless network for the users. 45 | * Each department should be in a different VLAN and in different subnetwork. 46 | * Provided a base network of 172.16.1.0, carry out subnetting to allocate the correct number of IP addresses to each 47 | department. 48 | * The company network is connected to the static, public IP addresses (Internet Protocol) 195.136.17.0/30, 49 | 195.136.17.4/30, 195.136.17.8/30 and 195.136.17.12/30 connected to the two Internet providers. 50 | * Configure basic device settings such as hostnames, console password, enable password, banner messages, disable 51 | IP domain lookup. 52 | * Devices in all the departments are required to communicate with each other with the respective multilayer switch 53 | configured for inter-VLAN routing. 54 | * The Multilayer switches are expected to carry out both routing and switching functionalities thus will be assigned IP 55 | addresses. 56 | * All devices in the network are expected to obtain an IP address dynamically from the dedicated DHCP servers 57 | located at the server room. 58 | * Devices in the server room are to be allocated IP address statically. 59 | * Use OSPF as the routing protocol to advertise routes both on the routers and multilayer switches. 60 | * Configure SSH in all the routers and layer three switches for remote login. 61 | * Configure port-security for the Finance and Accounts department to allow only one device to connect to a 62 | switchport, use sticky method to obtain mac-address and violation mode shutdown. 63 | * Configure PAT to use the respective outbound router interface IPv4 address, implement the necessary ACL rule. 64 | * Test Communication, ensure everything configured is working as expected. 65 | 66 | Technologies Implemented 67 | 68 | 1. Creating a network topology using Cisco Packet Tracer. 69 | 2. Hierarchical Network Design. 70 | 3. Connecting Networking devices with Correct cabling. 71 | 4. Configuring Basic device settings. 72 | 5. Creating VLANs and assigning ports VLAN numbers. 73 | 6. Subnetting and IP Addressing. 74 | 7. Configuring Inter-VLAN Routing on the Multilayer switches (Switch Virtual Interface). 75 | 8. Configuring Dedicated DHCP Server device to provide dynamic IP allocation. 76 | 9. Configuring SSH for secure Remote access. 77 | 10. Configuring OSPF as the routing protocol. 78 | 11. Configuring NAT Overload(Port Address Translation PAT). 79 | 12. Configuring standard and extended Access Control Lists ACL. 80 | 13. Configuring switchport security or Port-Security on the switches. 81 | 14. Configuring WLAN or wireless network (Cisco Access Point). 82 | 15. Host Device Configurations. 83 | 16. Configuring ISP routers. 84 | 17. Test and Verifying Network Communication. 85 | 86 | 87 | I have followed [this video](https://www.youtube.com/watch?v=eqEd84yeRxg&t=8s). 88 | 89 | 90 | ### Topology 91 | ![Topology](image.png) 92 | 93 | 94 | [contributors-shield]: https://img.shields.io/github/contributors/Mehedi-Hasan-Rabbi/Company-Business-System-Network-Design.svg?style=for-the-badge 95 | [contributors-url]: https://github.com/Mehedi-Hasan-Rabbi/Company-Business-System-Network-Design/graphs/contributors 96 | [forks-shield]: https://img.shields.io/github/forks/Mehedi-Hasan-Rabbi/Company-Business-System-Network-Design.svg?style=for-the-badge 97 | [forks-url]: https://github.com/Mehedi-Hasan-Rabbi/Company-Business-System-Network-Design/network/members 98 | [stars-shield]: https://img.shields.io/github/stars/Mehedi-Hasan-Rabbi/Company-Business-System-Network-Design.svg?style=for-the-badge 99 | [stars-url]: https://github.com/Mehedi-Hasan-Rabbi/Company-Business-System-Network-Design/stargazers 100 | [issues-shield]: https://img.shields.io/github/issues/Mehedi-Hasan-Rabbi/Company-Business-System-Network-Design.svg?style=for-the-badge 101 | [issues-url]: https://github.com/Mehedi-Hasan-Rabbi/Company-Business-System-Network-Design/issues 102 | [license-shield]: https://img.shields.io/github/license/Mehedi-Hasan-Rabbi/Company-Business-System-Network-Design.svg?style=for-the-badge 103 | [license-url]: https://github.com/Mehedi-Hasan-Rabbi/Company-Business-System-Network-Design/blob/master/LICENSE.txt 104 | [linkedin-shield]: https://img.shields.io/badge/-LinkedIn-black.svg?style=for-the-badge&logo=linkedin&colorB=555 105 | [linkedin-url]: https://www.linkedin.com/in/ultr4-instinct/ 106 | 107 | --------------------------------------------------------------------------------