IT ITT - Wade W Schlueter

advertisement
 Earleen Patricio Wade Schlueter Matt Moricz IT 331 Capstone ITT Technical Institute November 22, 2010 Table of Contents 1 Executive Summary 1 1.1 Binary Synaptics Background 1 1.2 City of DuPont 2 2 City of DuPont Requested Services 2 2.1 Initial Assessment 2 2.2 Desktop Application Support 3 2.3 Server Administration 4 2.4 Network Administration 5 2.5 Security 10 2.6 Strategic Planning 10 3 Testing 10 4 Training 10 5 Cost‐benefit Analysis 11 6 Price listing 11 7 Final Cost 11 Appendices 11 Gantt Chart Pagei
1 Executive Summary Binary Synaptics has been awarded to assist for the City of DuPont, Washington with the City's IT services as well as redesign of their IT network infrastructure. 1.1 Binary Synaptics Background Binary Synaptics was established in September 2010 at by Earleen Patricio, Wade Schlueter, and Matt Moricz. We specialize in information technology network infrastructure design. Our services include but not limited to design of new IT network infrastructure to redesign to your already existing network. We will assess your current infrastructure and make recommendations based on our findings. Matt’s Bio Matt has an Associate’s degree in Multimedia Options from ITT Technical Institute and is currently working on his Computer Network Systems degree. He is continuing his education with ITT after graduation in the Information Security Systems Bachelor program. Aside from his It education, Matt has provided excellent customer service during his time as a technical support agent for Intuit’s TurboTax software. Wade’s Bio Wade is a started out as a self taught computer technician, as his interest in computer repair was greatly spurred onwards by his mother's reliance on her PC for her appraisal business. She was unfortunate enough to have the Migraine Edition of Windows, Win ME. During high school, he took his first chance at a few basic computer classes. He learned the basic hardware and software processes of an average computer, and even learned a bit of C++, Java, and HTML programming too! His path in the IT world was soon driven to the great programs at ITT Tech. A variety of hands on classes helped him and his co‐founders become familiar with Active Directory, DNS, cabling techniques, and many other things. Along the way, they have met some amazing teachers who helped them progress with their career field. With graduation only just around the corner, there is still much to learn and study in the ever changing world of information technology systems. Earleen's Bio Earleen Patricio was introduced to the world of Technology when she was in her sophomore year of high school. She took basic computer classes all through high school as well as attending many technology conferences, camps, and seminars. After graduating high school, I wanted to further my education in the field of information technology so I enrolled to take computer networking system classes. While attending ITT Technical Institute I have come a long Page1
way learning about LINUX, WANs and LANs, Connecting a router and learning how to communicate from one computer to another computer. This has been a great experience that has taken me on journey for the past two years, learning from amazing instructors that did everything they can to help their students succeed! 1.2 City of DuPont City of DuPont is a small town located in the state of Washington southwest of Tacoma. 2 City of DuPont Requested Services 2.1 Initial Assessment Need:  The City would like to have an initial assessment starting with a compiled and updated inventory of all information technology related assets. In addition, assess system architecture and current processes, and make recommendations for improved city‐wide IT system performance.  Based on the background information as stated in the City's request for Proposals, the City currently runs Windows Server 2000 with workstations either with Windows 2000 or Windows XP Professional operating systems. It is also mentioned that Springbrook Financial Software server and the Windows Server are operating on the same machine.  City Hall uses a T‐1 line from Eschelon Telecommunications to connect to the Internet. The Police Department computers and Internet connection are managed by the Internet via Law Enforcement Support Agency (LESA). The Fire Department connects to the Internet via Comcast cable. The Public Works Department is in process of installing an additional T‐1 line from Eschelon.  City e‐mail and the city website are hosted by Eschelon.  Norton Corporate Security is currently used for computers located within City Hall. All other computers have stand‐alone versions of Norton Antivirus and updates via Live Update.  The City also requests the IT network infrastructure for the new Medical Building to be completed with wireless capability.  Installation of an 80' tower. Recommendations:  Binary Synaptics will conduct an inventory for assets as requested. Inventory time should take no longer than a week. First two days will consist of inventory all three buildings; Civic Center, Public Safety, and the newly built Medical Clinic.  Binary Synaptics recommendation for the server issue is to upgrade the server with a newer machine with Windows Server 2008. Another server machine will house the Springbrook Financial Software server. To ensure proper compatibility, new PCs will be installed in each office and workstation. Each PC will be installed with Windows 7 Professional Operating system as well as Microsoft Office 2010. Page2
 Since City Hall and the Public Works occupy the same building, it is recommended that the Public Works does not install another T‐1 building and share the one already installed. The Police department should maintain their IT support through LESA. The Fire Department can still use Comcast cable for its Internet needs.  A Microsoft Exchange Server will be used to manage the City's e‐mail services, and a server running Linux will act the Web Server.  Symantec Endpoint Encryption will be used to replace Norton Corporate Security and Norton Antivirus for PCs and laptops. Symantec Critical System Protection will be used for monitoring and policies.  Symantec Backup Exec will be employed for Data Encryption & Backup for Offsite Backups.  Install AN HD‐80 from AN Wireless Tower Company. 2.2 Desktop Applications Support Need:  City requests for basic support functions including installing PCs, laptops, PDAs, printers, peripherals, and office automation software; diagnosing and correcting desktop application problems, configuring laptops and desktops for standard applications and identifying and correcting end user hardware problems, and performing advanced troubleshooting.  Maintain an up‐to‐date inventory of all City computer related hardware and make available to City personnel upon request.  Assist designated personnel with software and hardware purchases.  Assist in development of software and hardware policies and procedures. Recommendations:  Binary Synaptics will provide the initial desktop support functions during the implementation phase. During this time, we will train the IT personnel who will be responsible for the support once the Company has completed the project.  Inventory will be conducted and maintained through the use of a barcode system. Each PC, laptop, printer, and other peripherals will be assigned a barcode. The information on the barcode will contain the type of equipment and its location and will be stored in a specialized database.  Binary Synaptics will assist in the development of procedures and policies in what software and hardware devices are authorized for installation and proper use.  The following hardware and software will be installed on PCs: o Workstations  11 XPS 8100 Desktop with Intel i7 (high performance)  Will be used mainly by the City Engineering department and City Inspectors. Page3


11 Vostro 230 Mini Tower with Intel Core 2 Quad 98 Vostro 230 Mini Tower with Celeron  Will be used by all other users. o Printers  5 HP Color Laserjet CM4730fsk Multifunction Printer (copy rooms)  11 HP Offciejet 7500A Wide Format e‐All‐in‐One Printer (designated offices) 2.3 Server Administration Needs:  Management of computer systems and networks to include complex application, database, messaging, web, and other servers and associated hardware, software, communications, operating systems necessary for the quality, security, performance, availability, recoverability, and reliability of the system.  Schedule preventive maintenance for equipment is properly and promptly performed. Maintain maintenance records on equipment. Develop operations, administrative, and quality assurance back‐up plans and procedural documentation. Setup new users and edit or remove existing users on server. Management of user logins and security.  Server performance and capacity management services with reporting when specified thresholds are reached.  Configuration management, including changes, upgrades, patches, etc.  Support of Springbrook financial software and other specialized software products.  Coordinate repair and maintenance work with contracted repair vendors. Ensure repairs are conducted in a timely fashion. Recommendations:  Binary Synaptics will assist the City with the initial backup of all critical files prior to upgrading to the Windows 2008 Server.  Notifications e‐mails will be sent out in regards to schedule maintenance for any system upgrades, changes, patches and alert City personnel if the server will be down for any length of time.  Maintenance will be conducted during off hour or low peek times. Example will include After work hours and/or weekends.  Suggest that hired IT personnel will be trained in Springbrook to provide support. Consult with Springbrook for training. Page4
Disaster Recovery Plan  Data shall be backed up regularly to a data array, which will be swapped out with another data array once a week. The data shall be kept in a large bank deposit box with appropriate antistatic bags and cushioning. Thus in the event of a natural disaster, such as the building burning down entirely, minimal data loss is experienced.  In the event of a major natural disaster that could damage the entire city of DuPont, it is suggested that a different set of cheap hard drives be used to back up data from the set stored at the bank once a month, and ship it to a location out of state in a secure location. 2.4 Network Administration Need:  Scope of all activity includes all City network equipment including switches, firewalls, routers, and other security devices.  Primary installation and maintenance of printers, network copiers/scanners, etc.  Maintenance to include regular analysis, routine configuration changes, and installation of patches and upgrades.  Alert notifications to designated City personnel in the event of failure.  Complete proactive monitoring of network equipment including bandwidth utilization, and other performance indicators, with reporting when specific thresholds are reached.  Network performance and capacity management services, and network troubleshooting.  Maintain network documentation and procedures. 2.4.1 Existing Network Layout Page5
Recommendations:  Binary Synaptics will be responsible for the initial installation and maintenance of printers, network copiers/scanners.  Upon completion of the project, the hired IT personnel will be responsible for all activity and aspects for network administration.  Binary Synaptics will install the following:  Hardware: o 5 Cisco Catalyst 6503  3 Operational  2 Spares o Cisco 48 Port 10/100/1000 Mbs Module  3 Operational  2 Spares o Cisco 7200 Series Router  1 Operational  1 Spare o 2 Cisco ASA5520‐AIP20‐K9  1 Operational  1 Spare o 2 AN HD‐80 Heavy Duty Wireless Tower o 3 Racks o 4 Cat 48 port Patch Panel o 6 Wire Management Panel Page6
3 Eaton Outlet monitoring and managed ePDU 3 19” Rack Mount Monitor with KeyBoard and Touchpad 3 Battery Backup IBM Power Servers  12 Operational  1 Spare o IBM Web/Monitoring Server  4 operational  1 spare o 5 Blade Center Chassis o HP Fiber Channel, 12 Slot HDD Array o Hot Swappable 4 GB Channel 450 GB HDD for Offsite Backup  Software: o Microsoft Windows 2008 Server Licensing o 120 CALs o 130 Device Licenses (phone, printers) o 17 Microsoft Server 2008 Standard o 15 Microsoft Server 2008 Enterprise o Exchange Server o 2 Exchange Server Enterprise Licenses o 112 Exchange Server Access Licenses o Microsoft Windows 2008 Server Licensing o 120 CALs o 130 Device Licenses (phone, printers) o 17 Microsoft Server 2008 Standard o 15 Microsoft Server 2008 Enterprise o Exchange Server o 2 Exchange Server Enterprise Licenses o 112 Exchange Server Access Licenses o Symantec Endpoint Encryption o Symantec Critical System Protection o Symantec Backup Exec o
o
o
o
2.4.2 Proposed Network Layout Page7
2.4.3 Detailed Proposed Network Layout Page8
2.5 Security Needs:  Maintenance of virus detection programs on City servers, e‐mail, and all other City computers and laptops.  Perform security audits as requested and notify City personnel immediately of suspected breaches of security or intrusion detection.  Configure City system to enable remote access in a secure environment and provide remote access administration as requested by designated City personnel. Recommendations: Security Policy  Only IT staff shall be allowed into the IT machine room, which shall be controlled through the use of a key. It is suggested that a digital keypad is placed in addition to key security, so the staff going in and out of the IT room can be monitored and logged. In addition, only the head network manager and contracting staff of Binary Synaptics may have administrative access to any of the servers, as well as the passwords used to encrypt critical system data. Other IT staff personnel will assist the employees at the City Hall, Medical Building, and the Police & Fire Department as required.  No personal computers or devices shall be allowed to connect to the network, which will be controlled through the networking devices themselves. All data that is required to be taken offsite must be encrypted, and shall be enforced via software management and security auditing policies. Page9
 Symantec Endpoint Encryption for laptops, removable media.  Symantec Critical System Protection for Monitoring and Policies. 2.6 Strategic Planning Needs:  Engineering, planning, and design services for major system enhancements, including installations and upgrades of new or existing systems.  Provide technical leadership for server technology issues.  Make recommendations for future purchasing and technology needs.  Install new servers, software, and hardware and transfer data when acquired.  Strategic planning, design, and installation or upgrade of core network systems.  Binary Synaptics will be available for future consultations in regards to any future upgrades 3 Testing  Ensure all equipment is operational  Connect equipment in lab setting  Configure equipment  IP settings  User Accounts  Check for vulnerabilities, potential issues  Deploy real world 4 Training  All head IT administrators who will take over once Binary Synaptics has completed the contracted service shall be trained first on the various systems and subsystems in use. This training period is expected to take a month’s time, and each training session will go 6 hours in length.  Additional IT personnel shall be trained with the additional help of head IT administrators (in order to provide additional training) once the head IT administrators have completed their own training. This training is expected to take five days in six hour sessions, examining non‐critical user system, devices, and software.  The last and final portion of the training shall be focused on the staff of the City Hall, Medical Building, and Police & Fire Departments. Each group shall be trained for five days with six hour sessions, exploring the new software and system set ups. Previously trained IT staff will assist with training in order to maximize their understanding and expedite training of the entire staff. Page
10
5 Cost‐benefit Analysis  IBM has a promotion for free BladeCenter chassis with purchase of Blade Servers. Cost for chassis is about $5,000 a piece. The city will save $25,000 for five. 6 Price Listings  There will be reoccurring cost with services under contract such as LESA, Springbrook, and Internet Service Provider. Quantity
Product
Price Per
Unit
Total Price
Network Components
Switch and Subcomponents
5
$1,850
$9,250
5
$3,800
$19,000
Cisco 7200 Series Router (1 Spare)
2
$13,750
$27,500
Cisco ASA5520-AIP20-K9 Firewall (1 Spare)
2
$11,,000
$22,000
Cisco Wireless Control System Base, License for 50 access
points
2
$2,750
$5,500
Cisco 5508 Wireless Controller - network management device
Wireless AP for Cisco Network - Aironet 1260
2
$7,800
$15,600
20
$900
$18,000
2
$5,500
$11,000
Rack
3
$450
$1,350
Cat6 48 port Patch Panel
Wire Management Panel
4
6
$85
$25
$340
$150
Eaton Outlet Monitoring and Managed ePDU
3
$1,200
$3,600
19" Rack Mount Monitor with Keyboard and Touchpad KVM
Switch
Battery Backup
3
$1,050
$3,150
3
$2,850
$8,550
11
$1,400
$15,400
Cisco Catalyst 6503 (2 Spares) - switch
Cisco 48 Port 10/100/1,000 Mbps Module (2 Spares)
Indoor Wireless
Tower and Wireless Equipment
Wireless Equipment - Contract Out to another Vendor
Heavy Duty Wireless Tower - AN HD-80
Rack & Hardware Components
Computer Hardware and Peripherals
Workstations
High Performance Workstation - XPS 8100 Desktop with Intel
i7
Page
11
Standard Workstation – Vostro 230 Mini Tower with Intel
Core 2 Quad
Economy Workstation - Vostro 230 Mini Tower with Celeron
11
$900
$9,900
98
$450
$44,100
IBM Power Servers (File Sharing, Web, DNS, Application,
etc) (1 Spare)
13
$14,500
$188,500
IBM Web/Monitoring Servers (1 Spare)
5
$3,300
$16,500
5
$0
$0
4
$850
$3,400
105
$45
$4,725
6
$6,700
$40,200
HPOfficejet 7500A
HP Fibre Channel, 12 Slot HDD Array
15
$300
$4,500
4
$12,500
$50,000
Hot Swappable 4 Gb Fibre Channel 450 GB HDD For Offsite Backup
40
$2,600
$104,000
120
$320
$38,400
120
$26
$3,120
130
$25
$3,250
Microsoft Server 2008 Standard (1 Spare)
17
$760
$12,920
Microsoft Server 2008 Enterprise (1 Spare)
15
$2,400
$36,000
2
$3,300
$6,600
$60
$6,720
$6,860
$13,720
109
$135
$14,715
2
Free
$0
1
$100,000
$100,000
Servers
BladeCenter H Chassis - IBM Promotion free with Blade
Servers
Cisco IP Phones
Cisco Unified IP Conference Station 7937G
Cisco CP-7961G
Printers
HP Color Laserjet CM4730fsk
Software
Microsoft Office Professional Plus 2010 Licenses (11 Spare)
Windows CALs
Microsoft Windows 2008 Server Licensing – Client User
License - (109 + 10% growth worth of extra licenses = 120)
Microsoft Windows 2008 Server Licensing – Device License
(21 printers, 109 phones = 130)
Windows Server 2008 Licensing
Exchange Server
Exchange Server Enterprise License
Exchange Server Access Licenses
112
Microsoft SQL
SQL Server
2
SQL Licenses
CentOS for Linux Webserver Box - Free!
Springbook Financial Software
Springbook Server Edition - 10 User, Training, Licensing,
Installation, Conversion - Phone call with VP of Sales
Page
12
1
$150,000
$150,000
Medical Appointment Software (20 License Package)
1
$2,450
$2,450
Medical Appointment Software Enhancement Plan (20
License Package)
1
$720
$720
Dental X-Ray Software - Dexis Imaging
2
Call for
Costs
0
Symantec Endpoint Encryption - For Laptops, Removable
Media, etc
15
$175
$2,625
Symantec Critical System Protection - Monitoring and Polices
2
$230
$460
Symantec Backup Exec for SQL Server
2
$220
$440
Symantec Backup Exec - Data Encryption & Backup for Offsite
Backups
10
$550
$5,500
121
$15
$1,815
LESA Software, Hardware, and Support Cost for the Police
Department
Medical Software
Symantec Software
Recurring Costs
Symantec Endpoint Protection
Labor
Regular Work Hours (Per Month over six months, three people,
business expenses)
6
$76,800
$460,800
After Hours Emergency Repair (1 Hour Minimum Cost)
1
$180
May Vary
Total Costs
Subtotal
$1,486,470
Total (+ 9.3% Sales Tax)
$1,624,800
7 Final Cost  The total cost of the project will be an estimated $1.6 million. Appendices Page
13
Medical Clinic Topology Page
14
Internet
VPN Connection to Office
Home User
Wireless Tower
VPN Wireless Connection
City Hall
Police and Fire Department
Medical Building
Wireless Tower
V.S. DNS
– Standard Server
Internet
Switch at the
Police & Fire
Department
SQL Database
- Enterprise
V.S. Exchange
- Enterprise
Enterprise Server
DSU
Linux Web Server
With Redundant
Linux Web Server
Managed
Switch
Switch
Router
Firewall
Monitoring Server
- Standard
VPN Connection to Medical Building
V.S. Application/File Server
- Standard
Wireless Tower to Medical Building
V.S. Active Directory
- Standard
Enterprise Server
V.S. WSUS
- Standard
Springbook Financial Server
- Enterprise
VPN Conne
ct
ion to City H
al
l
Wireless Tower to City Hall
V.S. DNS/Global Catalogue
- Standard
Server
- Enterprise
SQL Database
- Enterprise
V.S. Application/File Server
- Standard
V.S. WSUS
- Standard
Monitoring Server - Standard
Download