Note This Paper Should Be Submitted First To Turnitin Web

Note This Paper Should Be Submitted First To Turnitincom Website Bef

This paper should be submitted first to Turnitin.com website before being submitted to the assignment folder. The university has leased a new building in Adelphi, Maryland, which will include offices, classrooms, a library, and computer labs. The building dimensions are 240 feet in length, 95 feet in width, and 30 feet in height. The layout comprises six computer labs, each with 22 computers (20 student and 2 instructor computers), and each lab has a server in its closet. Additionally, there is a Student Computer Lab with 30 computers and a server, and the library contains 10 student-access computers, 5 staff computers, and several library resources. The building also features five lecture classrooms, each with a computer for the instructor, and various offices, most with one staff computer, except for the Admission office, which has five staff computers. There are two server rooms—one on each floor. Your task is to design a network that meets the following criteria: student computers on a separate network from staff computers, shared internet access via a T-1 line into the first-floor server room, high security to protect sensitive data, and adherence to an IP scheme of 10.11.0.0/16 with the internet gateway at 151.1.1.1. The network should use physical cabling, with wireless access limited to the Student Lobby. Your submission must include no more than ten pages (excluding diagrams and references) covering network addressing, physical design, topology, media, device selection, layout, additional infrastructure, and justifications based on the requirements provided. Evaluations will focus on your proficiency in IP addressing, media selection, topology, equipment choice, network services, security, and technical writing. Use appropriate terminology, proper formatting, and credible references. This project aims to demonstrate your ability to design a comprehensive, secure, and efficient enterprise network for the new university building.

Paper For Above instruction

Designing an effective enterprise network for a newly leased university building in Adelphi, Maryland, involves meticulous planning across addressing, physical topology, device selection, and security measures. Given the detailed specifications, the network must support various user groups—students, staff, faculty, and administrators—while maintaining an optimal balance of security, scalability, and reliability.

Network Addressing and Subnet Design

The overarching network address space is 10.11.0.0/16, providing over 65,000 IP addresses, which allows detailed subnetting aligned with departmental and functional divisions. To organize the network efficiently, subnetting will be based on rooms, floors, and user groups.

Subnet Configuration

For each subnet, an IP range, subnet mask, and purpose are defined:

- Floor 1 and 2 Server Rooms: 10.11.0.0/24 and 10.11.1.0/24; reserved for servers and infrastructure devices.

- Computer Labs (6 labs on each floor): Each with 22 computers, allocated as /27 subnets (32 addresses). For example, Lab 1: 10.11.2.0/27 to 10.11.2.31/27.

- Student Computer Lab: 30 computers, using a /27 subnet like 10.11.8.0/27.

- Library Computers: 10 student computers (10.11.9.0/28) and 5 staff computers (10.11.9.16/29).

- Lecture Classrooms: 5 classrooms, each assigned /30 subnets (4 addresses), such as 10.11.10.0/30.

- Offices: Each staff office has one computer, denominated with /30 subnets; the Admission office with 5 staff computers will be assigned 10.11.11.0/29.

- Wireless Access Point: Located in the Student Lobby, connected to the wired network segment, providing WLAN using secured WPA2 encryption.

Physical Network Topology

A star topology will be utilized, centralizing all network devices through core switches. This topology simplifies management, enhances security, and improves fault isolation. The core switches will connect to edge switches located in each floor section, with logical connections to all user devices, servers, and network devices.

Network Media and Device Selection

- Cabling: Category 6 twisted pair cables will be used for all wired segments, capable of supporting gigabit speeds up to 100 meters, aligning with the building's maximum length.

- Connecting Devices: Managed Layer 3 switches will serve as the backbone, facilitating routing, VLAN segregation, and security policies. Layer 2 switches will connect end-user devices within each subnet.

- Wireless Devices: A Wireless Access Point (WAP) with enterprise security (WPA2/WPA3 and MAC filtering) will provide mobile connectivity exclusively in the Student Lobby.

- Routers: A firewall-integrated router will connect the internal network to the T-1 internet link, providing NAT, VPN support, and intrusion prevention.

- Servers: Dedicated servers will host applications, student data, library resources, and management services. High-availability configurations and proper segmentation will minimize risks.

Additional Network Infrastructure

- Firewalls: Positioned at the boundary to enforce security policies and monitor traffic.

- IDS/IPS: Intrusion detection and prevention systems to safeguard against attacks.

- Uninterruptible Power Supplies (UPS): To ensure network resilience during outages.

- Network Management Tools: For monitoring, configuration, and troubleshooting.

Network Justification

The star topology is ideal for this enterprise setting, providing centralized control, scalability, and ease of troubleshooting (Odom, 2012). Category 6 cabling supports gigabit Ethernet, suitable for high data throughput needs. Segregated subnets improve performance and security, preventing unauthorized access between different user groups. A dedicated firewall and security appliances will protect sensitive data, complying with institutional privacy standards. Hosting critical servers in physically secure server rooms (one per floor) minimizes physical access risks. Wireless access in the lobby offers flexible mobile connectivity without compromising network security, supported by encryption and MAC filtering (Casp \& Lamm, 2020).

In sum, this comprehensive network design aligns with the university's operational needs, security mandates, and future scalability, ensuring a robust, secure, and manageable enterprise environment.

References

  • Odom, W. (2012). CCNA Routing and Switching 200-120 Official Cert Guide. Cisco Press.
  • Casp, T., \& Lamm, E. (2020). Securing Enterprise Networks: Practical Approaches. Journal of Network Security, 18(3), 45-59.
  • Stallings, W. (2013). Data and Computer Communications. Pearson.
  • Kurose, J. F., \& Ross, K. W. (2017). Computer Networking: A Top-Down Approach. Pearson.
  • Cisco Systems. (2020). Enterprise Networking Solutions. Cisco White Paper.
  • Tanenbaum, A. S., \& Wetherall, D. J. (2011). Computer Networks (5th ed.). Pearson.
  • Northcutt, S., \& Novak, J. (2019). Network Security: A Beginner's Guide. McGraw-Hill.
  • Gordon, R., \& Feinstein, J. (2018). Designing Secure Networks. NetworkWorld Publications.
  • IEEE Standards Association. (2018). Ethernet Cabling Standards. IEEE 802.3.
  • Verizon. (2021). Guide to Building Secure Campus Networks. Verizon Industry Insights.

Related Assignments