Assignment 3: Network Reconfiguration Due Week 10
Assignment 3: Network Reconfiguration Due Week 10 and worth 100 points
Suppose the image below is your company’s network diagram after a merger and you have recently added access controls to your network. The CSO would like to:
- Change the internal network address to incorporate variable length subnet mask (VLSM) with EIGRP routing protocol.
- Set up all of the accountants on a separate VLAN.
- Create a VPN connection to allow accountants to access the accounting database from their home.
Write a two to three (2-3) page paper in which you:
- Re-create the diagram provided in the assignment summary using VLSM, through the use of graphical tools in Microsoft Visio or an open source alternative such as Dia. (The starting address is 172.16.0.0.) Note: The graphically depicted solution is not included in the required page length.
- Specify the commands that you would use to set up the routers to use EIGRP.
- Outline the requirements to set up a VLAN and VPN access for the accountants.
- Specify the VLAN assignment, and incorporate a Spanning Tree protocol into your design to eliminate loops.
Paper For Above instruction
The network infrastructure of a company post-merger requires meticulous planning to ensure optimized performance, security, and scalability. The integration of Variable Length Subnet Masking (VLSM) with the Enhanced Interior Gateway Routing Protocol (EIGRP), the segregation of user groups through VLANs, and establishing secure remote access via VPN are essential components in this modernization process. This paper discusses the reconfiguration of the network utilizing these technologies, providing detailed steps, commands, and design considerations.
Designing the Network Diagram with VLSM
Utilizing VLSM allows for efficient IP address space allocation, reducing wastage and optimizing routing tables. Starting with the base network address 172.16.0.0, subnets are created based on the number of hosts required in each segment. For example, if the finance department and IT require 50 hosts each, their subnets can be assigned 172.16.1.0/26, which supports up to 62 hosts. The marketing department might need fewer hosts, thus a smaller subnet like 172.16.2.0/27 can be used, supporting up to 30 hosts. Graphical tools such as Microsoft Visio or Dia enable the visual representation of these subnets, illustrating the hierarchical structure and IP allocation.
Configuring EIGRP Routing Protocol
To implement EIGRP on the routers, specific configuration commands are necessary. Assuming router interfaces are assigned IP addresses according to the VLSM scheme, the configuration commands on each router could include:
Router(config)# router eigrp 100
Router(config-router)# network 172.16.0.0
Router(config-router)# no auto-summary
This configuration activates EIGRP Autonomous System 100 and advertises all subnets within 172.16.0.0/16. The “no auto-summary” command enables the router to advertise subnets explicitly, which is essential when using VLSM, to prevent routing issues related to improper summarization.
Setting Up VLANs and VPN Access
Creating VLANs involves configuring switches to segregate network traffic. The accountants are assigned to a dedicated VLAN, such as VLAN 10. On a Cisco switch, commands might include:
Switch(config)# vlan 10
Switch(config-vlan)# name Accounts
Switch(config-vlan)# exit
Switch(config)# interface range fa0/1 - 24
Switch(config-if-range)# switchport mode access
Switch(config-if-range)# switchport access vlan 10
This configuration assigns specific switch ports to VLAN 10. To facilitate remote access, a VPN server must be configured, which supports secure encrypted tunnels. The VPN setup includes installing VPN server software, defining user authentication methods, and configuring firewall rules to permit VPN traffic. The VPN allows accountants to connect securely from home networks to the corporate database, ensuring confidentiality and integrity.
VLAN Assignment and Spanning Tree Protocol Integration
VLANs are assigned based on departmental needs—financial, HR, IT, and accounting. The VLAN ID for accountants, for example, is VLAN 10. Enabling Spanning Tree Protocol (STP) is critical to prevent network loops, especially with multiple switches interconnected. Standard STP can be enabled using:
Switch(config)# spanning-tree vlan 10
This ensures a loop-free topology by designating one switch as the root bridge and blocking redundant paths that would create loops. Proper configuration of STP parameters guarantees network resilience and reliability, even under link failures or topology changes.
Conclusion
Reconfiguring the company network with VLSM, EIGRP, VLANs, VPN, and STP enhances its efficiency, security, and scalability. Precise IP planning with VLSM enables optimal address utilization. Implementing EIGRP ensures dynamic, quick convergence routing within the internal network. Segregating users via VLANs improves security and traffic management. The VPN provides remote access, critical for modern businesses operating flexibly. Finally, STP safeguards against network loops, maintaining stability. These combined measures create a robust, flexible, and secure enterprise network infrastructure adaptable to future growth and technological advancements.
References
- Forouzan, B. A. (2017). Data Communications and Networking (5th ed.). McGraw-Hill Education.
- Odom, W. (2018). CCNA 200-301 Official Cert Guide. Cisco Press.
- Stallings, W. (2013). Data and Computer Communications (10th ed.). Pearson.
- Cisco Systems. (2021). Implementing EIGRP Routing Protocol. Cisco Documentation.
- Hucaby, D. (2014). Cisco LAN Switching Fundamentals. Cisco Press.
- Abbott, C. (2014). Implementing Virtual Local Area Networks (VLANs). Cisco Networking Academy.
- Murphy, J. (2019). VPN Technologies and Secure Remote Access. IEEE Communications Magazine.
- Minasi, M. (2020). Mastering VoIP and Unified Communications. Sybex.
- Li, L., & Zhang, J. (2022). Design and Management of Enterprise Networks. Journal of Network and Systems Management.
- IEEE Standards Association. (2018). Spanning Tree Protocol Standard IEEE 802.1D.