 Teacher : KIM Bunthoeurn
 Group 3
 Group members:
o ENG Phally
o CHHENG Sounly
o POV Sopheap
o SRORNG Voleak
o NGET Phanny
 Topic: Company description
1
 Introduction
 IP Subneting
 Infrastructure Design
 Domain Hosting Company
 OS needed
 Service installation
 Service respond
 Khmer Movie Production- Phnom Penh Company
 OS needed
 Service installation
 Service respond
2
 Khmer movie Production- Thailand Company
 OS needed
 Service installation
 Service respond
 Happy all the time Company
 OS needed
 Service installation
 Service respond
 Q and A
3
• We have 4 company that:
- Domain Hosting company is a company that sell
domain.
- Khmer Movie Production- Phnom Penh company is a
company that sell some products and buy domain
from Domain Hosting company.
- Khmer Movie Production- Thailand are the same
Khmer Movie Production- Phnom Penh.
- Happy All The Time Company is a company that sell
some products but didn’t buy products for Domain
Hosting Company.
- But all the company can communicate together.
4
 As we known, IP Subneting is very importance to
divide to other LAN. So, in each company I have to
manage IP subneting by following:
 Khmer Movie Production- Phnom Penh:
 On R1 router:
- LAN Server: 10.10.1.0/28
- LAN Client: 192.168.10.0/25
 On R2 router:
- LAN Server: 172.16.16.0/29
- Between R1 and R2: 172.16.18.0/29
5
 Khmer Movie Production- Thailand:
- LAN Server (DNS, AD and DHCP, File Server and
Network Monitoring) : 10.10.8.0/29
- LAN DMZ : 172.16.16.0/29
- LAN Clients: 192.168.1.0/25
 Happy All The Time:
- LAN Server ( AD, DNS and DHCP, File server,
Mail Local Server) : 10.10.10.0/29
- LAN Clients: 172.16.17.0/25
 Sell domain
- Primary IP 172.16.1.205/23
- Secondary IP 172.16.1.208/23
6
7
8
 As we know that this company sell domain. So, this
company will create domain for Khmer Movie
Production- PP and Khmer Movie Production- Thailand
Company.
What we need to do:
 OS:
- Window Server 2003 (Primary DNS and Secondary DNS)
 Services needed:
o DNS
9
 In Primary DNS machine:
• Install DNS
• Create Forward and Reverse lookup zone
 We will create domain:
- WWW/kmp-ca.com for Khmer Movie Production-PP
- WWW/kmp-th.com for Khmer Movie Production-Th
10
 In Secondary DNS machine:
• Install DNS
• Create two secondary zone:
Because we want transfer from DNS master (Primary
DNS)
11
12
 As we known, this company buy domain from Domain
Hosting Company. So, what they will do:
 OS needed:
- 2 Window server 2003
- 4 Linux
 Services:
- AD, DHCP, DNS
- File server (Create file sharing)
- Proxy and Firewall
13
- Network Monitoring (Nagios)
- Open VPN (Site-To-Site)
- Web Hosting (Apache)
- FTP Server (Pure-ftp)
 Service respond:
• AD, DHCP and DNS (Window server 2003)
- AD: Active Directory
- DHCP: Provide IP to clients
- DNS: Resolve host name to IP address
• File server ( Window server 2003)
- Create file share to clients.
14
• Proxy and Firewall (Linux : R1 and R2)
- Create rule for clients can access and cannot access.
- We use Squid Guard to be proxy. So, we can block
something that we want.
• Network Monitoring ( Linux)
- We use Nagios to configure as Network Monitoring our
clients.
• Open VPN: Site-To-Site (On Linux R2)
- We configure Open VPN between our company and
Khmer Movie Production- Thailand Company.
15
• FTP Server (Linux)
- We use FTP server in order to user admin can upload,
download and update website.
- Web Hosting: we use apache to configure web server to
host our website.
16
17
 As we known, this company like Khmer Movie
Production-PP. This company sell some products and
buy domain from Domain Hosting Company. What they
needed:
 OS needed:
- 2 Window server 2003
- 4 Linux
 Services:
- AD, DHCP, DNS
- File Server
- Network Monitoring
18
- Mail Hosting
- Web mail hosting
- Proxy with IPtables
- Open VPN ( Site-To-Site)
 Services respond:
• AD, DHCP, DNS (Window server 2003)
- AD: Active Directory
- DNS: Resolve from host name to IP address
- DHCP: Provided IP to clients
• File sever (Window server 2003)
- Create file share for clients
19
• Network Monitoring (Linux)
- We use Nagios to be a network monitoring our services
that we know it’s down or not.
• Mail Hosting (SquirrelMail on Linux)
- We configure squirrelmail to be mail local in order to
clients can send and receive mail.
• Web Mail Hosting ( Linux)
- We configure web mail hosting in order to host our web
site for clients inside and outside LAN can access.
20
• Proxy with IPtables ( Linux)
- We create rule for clients can access and can’t access
something.
- Use Squid Guard to be a proxy
• Open VPN (Site-To-Site): (Linux)
- We create VPN site-to-site between our company and
Khmer Movie Production-Thailand Company.
21
22
 As we known, this company sell some products but didn’t
buy domain from Domain Hosting Company. But this
company can communicate to KMP-CA, Domain Hosting
and KMP-TH also. What they configured:
 OS needed:
- 4 Window server 2003
 Services:
- AD, DHCP and DNS
- File Server
- Mail Local Server
23
- Network Monitoring (MDaemon)
- ISA with Proxy
 Services respond:
• AD, DHCP and DNS (Window server 2003)
- AD: Active Directory
- DHCP: Provided IP address to clients
- DNS: Resolve from host name to IP address
• File server (Window server 2003)
- Create file share to clients
• Mail local server ( Window server 2003)
- We configure mail in order to clients can send and
received mails.
24
• Network Monitoring ( Mdaemon): (Window server 2003)
- We use Mdaemon to configure a network monitoring our
clients.
• ISA with Proxy: (Window server 2003)
25
26