Cisco Threaded Case Study

advertisement
Cisco Threaded Case Study
This is our selling presentation for
Washington School District
Presented by
Mike
Nick
& Tonya
Our presentation of
Mountain Sky
SunnySlope
WAN Overview

There will be three Regional hubs established with
each schools site assigned to go through one of the
three hubs. At each Regional hub will be a highpower router. All Internet traffic will be switched
to the District Office router for outside contact
through a Frame Relay WAN using PVC (always
connected).

We will use 4 T1 lines – one between each of the
Regional hubs and then one Frame Relay.
LAN Overview
LAN – Between and within buildings at each
school site, running 2 LAN segments *One for Teachers and Staff members
with Admin Server
*One for Students.
LAN Wiring Scheme
Requirements

Multi-Mode Fiber – 100 Base FX, Fast
Ethernet, which has a distance maximum of
400 M.
- We will be using for vertical crossconnect.
- We will be using a dedicated T1 WAN link
to provide Point-to-Point to go between
each school’s POP and the Regional hubs.
LAN Wiring Scheme Cont’d

CAT 5 UTP, 100 Base TX, which has a distance of
100 M.
- We will be using for horizontal cross-connect.
- We will be using the EIA/TIA-568-B cabling
lengths. (3m, 90m, and 6m).
- All wiring will be terminated in lockable cabinet
containing all terminations, will also include
decorative wire and proper conduits or sleeved
cores.
LAN Wiring Scheme End

Each room will accommodate up to 24
student workstations and 1 teacher
workstation.
 Each IDF and MDF will be a secured
lockable closet with key code entrance.
 Wiring hub and patch panel may be
mounted to wall.

Mountain Sky Model
District Supplied Servers
and Functions
Enterprise servers:
* DNS server at MDF to translate hostname to IP
Address for web access available to everyone.
* Email Server also at MDF to send and store all email messages with complete directory of staff
members and students at that location.
• Administrative Server at MDF for
administrative database – Student tracking,
attendance, grading, etc., for teachers and staff
only.
District Supplied Servers and
Functions (Cont)
* Library Server at MDF available to all users.
TCP/IP.
Workgroup servers:
* Application Server all computer applications such
as word processing and spread sheet software.
* Backup Server for nightly backup of data within
each school’s IDF.
* DHCP to obtain IP address, located at each
respective school.
IP Addressing (overall)

Network Number 10.0.0.0
 Subnet Mask 255.255.0.0
 254 Subnets
 65534 Hosts per Subnet
 over 16.6M host addresses supported
IP Addressing (each school)

2 Subnets per School
– Student (10.1.0.0 - 10.99.0.0)
 33 schools/subnets – (66-Future)
 DHCP Administered
– Administrative (10.101.0.0 - 10.199.0.0)
 33 schools/subnets - (66-Future)
 Static Addresses Assigned

Future Growth
– (10.200.0.0 - 10.255.0.0)
Future Growth

IP Range
– 10.200.0.0 - 10.254.0.0
 27 additional schools (or additional network growth)
supported w/2 subnets for each school
 10.0.0.0 is wire address subnet (n/a)
 10.255.0.0 is broadcast address subnet (n/a)
Security
For external threats – Internet connectivity will utilize a
double firewall implementation (DMZ) at the Data
Center with all exposed Internet applications being on a
public backbone network. Therefore, all connections
initiated from Internet into the Washington Elementary
School District will be denied. We are using a two-layer
Hierarchical model so that the students and teachers will
not cross, causing information to be passed between the
two LANs.
Security (cont)2
We are setting up that our model will have in
two physical LAN segments be installed at
each of the schools and the District Office.
One LAN designated for administrative and
one LAN for students. Each computer will
be divided in appropriate categories and
then placed on the appropriate LAN
segment.
Security (cont)3
* We will utilize Access Control Lists (ACLs) on
the routers, all traffic from within the
administrative LAN will not allow traffic from the
curriculum LAN. ACL exceptions can be made
upon individual review. The District Office will
control all ACLs.
* Applications such as E-mail and Directory
Services will flow freely between LAN segments.
Security (End)
*
We will set up user ID and passwords for
security into the network. We will use First Initial
and last name for the User ID. We will use last
four digits of Social Security to set up passwords.
The user will be required to change his/her
password upon first sign-on. Password will
require at least 6 digits, not more than 10. Request
to change password 30 days, with no repeats.
* All computers will have access to the World Wide
Web – Internet via the District Office/Data Center.
This will be monitored.
Internet Connectivity
The Internet Connectivity for the Washington
School District will be provided through the
District Office/Data Center via a T1- Data circuit
(Frame Relay). Both staff and students will obtain
their internet connection from the workstation,
through the LAN switch, IDF, MDF, checked by
both security measures (backbone and ACL) and
out through the District Office Router to the
Internet.
District Routers
7000 Series
Data Center
Service Center
Shaw Butte
Other IDFs
Connecting
3000 Series
Other IDFs
connecting
MDF Level
IDF Level
X 24
Network 1
PC#1
PC#1
Network 2
Internet Connectivity Drawing
User Counts

We will 250 max workstations for students
and 75 for administrative.
 One run for each teacher/admin
 Three runs (total 24) students/curriculum
Download