PBL Project - 201100984 - 201000542

Individual Assessment Cover Sheet
Assessment Title:
Networking Project
Programme Title:
BACHELOR OF ICT
Course No.:
ITB6003
Course Title:
Networking and Data Communications 2
Student Name:
Abeer AlRumaidh - Reem Alattar
Student ID:
201100984 / 201000542
By submitting this assessment for marking, either electronically or as hard copy, I confirm the
following:
This assignment is my own work

Any information used has been properly referenced.
I understand that a copy of my work may be used for moderation.
I have kept a copy of this assignment
Table of Contents
.................................................................... 1
Introduction ............................................................................................................................................. 3
IPV4 Addressing Scheme ............................................................................................................... 4
1.
1.2 Routing Protocol ........................................................................................................................... 4

2.VLANs ............................................................................................................................................... 23
2.1 Italy / Milan Branch ..................................................................................................................... 23
2.2 Greece / Athens Branch .............................................................................................................. 23
2.3 Boston Branch ............................................................................................................................. 23
2.4 China / Beijing Branch ................................................................................................................. 24
2.5 Bahrain / Manama Branch .......................................................................................................... 24
2.6 Brazil / Brazilia Branch ................................................................................................................ 24
2.7 UAE / Dubai Branch..................................................................................................................... 24
Security and Redundancy.............................................................................................................. 25
2.
4.1 Security .......................................................................................................................................... 25

4.2 Redundancy.................................................................................................................................... 25
3.
Wireless Access ............................................................................................................................ 26
4.
Encapsulation method PPP-CHAP ............................................................................................... 26
5.
Frame Relay .................................................................................................................................. 27
6.
Network Address Translation ....................................................................................................... 28
7.
Access Lists .................................................................................................................................. 28

8.1 Server Access List ........................................................................................................................ 28
8.2 All Branches Access List............................................................................................................... 29
8.
STP Spanning tree protocol ....................................................................................................... 29
9.
Banner Massages .......................................................................................................................... 30
10.
IPv6 ........................................................................................................................................... 30
Reference List ....................................................................................................................................... 31
Page 2 of 31
Introduction
This report outlines a network plan for Global Health Services (GHS) Company. The company consists
of a main site which is located in Milan and six other sites that are located in six different countries
that include Greece, USA, China, Bahrain, Brazil, and UAE. Each of these sites has a certain number
of employees to be hired. The companys main goal is to provide a wide range of health services
human kind. Furthermore, the company wants to connect Milan to the other six site offices; each
site has different number of users. The report will implement different steps like separating
different user by Virtual local area network (VLANs) , Assigning IPV4 address, Wireless access ,
Access List (ACLs) , Network Address Translation/Port Address Translation (NAT/PAT) on Milan
site ,and recommendations on how to IPV6
GHS Network
Page 3 of 31
1. IPV4 Addressing Scheme

Global Health Services will implement a private IPV4 scheme from class c (192.168.0.0);Implementing a
private IP addressing version 4 networks for Global Health Services with Variable Length Subnet (VLSM)
technique, for the devices to connect between each other a routing protocol is choose .and for security
the company will use password and key network devices in the login banners.
1.2 Routing Protocol

Enhanced Interior Gateway Protocol (EIGRP) will implemented on Global Health Services, seven
different sites routers to allow communications between routers
EIGRP is a hybrid distance vector routing protocol, it uses Diffusing Update Algorithm (DUAL) to offer a
loop-free and quick convergence network, less CPU compared to OSPF and Fast convergence as it
stores it neighbour routing table . Moreover, EIGRP supports IP, IPX, VLSM and CIDR.Plus offers
backward compatibility with IGRP ("The Pros and Cons of OSPF and EIGRP")
1.3 VLSM
Department
Administration
Other
Training
WLAN
IT
Marketing
Native Vlan
Accounting
Management
Accounting
Needed
20
20
20
20
10
10
8
5
5
5
Size
30
30
30
30
14
14
14
6
6
6
Address
Assignable range
192.168.0.0
192.168.0.1 - 192.168.0.30
192.168.0.64
192.168.0.65 - 192.168.0.94
192.168.0.32
192.168.0.33 - 192.168.0.62
192.168.0.96
192.168.0.97 - 192.168.0.126
192.168.0.192 192.168.0.193 - 192.168.0.206
192.168.0.240 192.168.0.241 - 192.168.0.254
192.168.1.32
192.168.1.33 - 192.168.1.46
192.168.1.112 192.168.1.113 - 192.168.1.118
192.168.1.168 192.168.1.169 - 192.168.1.174
192.168.1.112 192.168.1.113 - 192.168.1.118
Table 1 : IP Address (Italy / Milan)
Broadcast
192.168.0.31
192.168.0.95
192.168.0.63
192.168.0.127
192.168.0.207
192.168.0.255
192.168.1.47
192.168.1.119
192.168.1.175
192.168.1.119
Subnet Mask
255.255.255.224
255.255.255.224
255.255.255.224
255.255.255.224
255.255.255.240
255.255.255.240
255.255.255.240
255.255.255.248
255.255.255.248
255.255.255.248
Mask
/27
/27
/27
/27
/28
/28
/28
/29
/29
/29
Department
Other
Administration
Marketing
Native Vlan
Accounting
IT
Management
Needed
15
10
10
7
5
5
5
Size
30
14
14
14
6
6
6
Address
Assignable range
192.168.0.128 192.168.0.129 - 192.168.0.158
192.168.0.160 192.168.0.161 - 192.168.0.174
192.168.0.224 192.168.0.225 - 192.168.0.238
192.168.1.48
192.168.1.49 - 192.168.1.62
192.168.1.104 192.168.1.105 - 192.168.1.110
192.168.1.152 192.168.1.153 - 192.168.1.158
192.168.1.160 192.168.1.161 - 192.168.1.166
Table 2 : IP Address (Greece / Athens)
Broadcast
192.168.0.159
192.168.0.175
192.168.0.239
192.168.1.63
192.168.1.111
192.168.1.159
192.168.1.167
Subnet Mask
255.255.255.224
255.255.255.240
255.255.255.240
255.255.255.240
255.255.255.248
255.255.255.248
255.255.255.248
Mask
/27
/28
/28
/28
/29
/29
/29
Department
Administration
IT
Marketing
Other
Native vlan
Accounting
Management
Needed
10
10
10
10
7
5
5
Size
14
14
14
14
14
6
6
Address
Assignable range
192.168.0.176 192.168.0.177 - 192.168.0.190
192.168.0.208 192.168.0.209 - 192.168.0.222
192.168.1.0
192.168.1.1 - 192.168.1.14
192.168.1.16
192.168.1.17 - 192.168.1.30
192.168.1.64
192.168.1.65 - 192.168.1.78
192.168.1.88
192.168.1.89 - 192.168.1.94
192.168.1.176 192.168.1.177 - 192.168.1.182
Table 3 : IP Address (USA / Boston)
Broadcast
192.168.0.191
192.168.0.223
192.168.1.15
192.168.1.31
192.168.1.79
192.168.1.95
192.168.1.183
Subnet Mask
255.255.255.240
255.255.255.240
255.255.255.240
255.255.255.240
255.255.255.248
255.255.255.248
255.255.255.248
Mask
/28
/28
/28
/28
/29
/29
/29
Page 4 of 31
Department
Accounting
Administration
IT
Marketing
Native vlan
Other
Management
Department
Administration
Accounting
Marketing
Native Vlan
IT
Management
Other
Needed
5
5
5
5
5
3
3
Size
6
6
6
6
6
6
6
Address
Assignable range
192.168.1.80
192.168.1.81 - 192.168.1.86
192.168.1.136 192.168.1.137 - 192.168.1.142
192.168.1.144 192.168.1.145 - 192.168.1.150
192.168.1.192 192.168.1.193 - 192.168.1.198
192.168.1.200 192.168.1.201 - 192.168.1.206
192.168.1.232 192.168.1.233 - 192.168.1.238
192.168.1.240 192.168.1.241 - 192.168.1.246
Table 4 : IP Address (China / Beijing)
Broadcast
192.168.1.87
192.168.1.143
192.168.1.151
192.168.1.199
192.168.1.207
192.168.1.239
192.168.1.247
Subnet Mask
255.255.255.248
255.255.255.248
255.255.255.248
255.255.255.248
255.255.255.248
255.255.255.248
255.255.255.248
Mask
/29
/29
/29
/29
/29
/29
/29
Needed
5
5
5
5
3
3
2
Size
6
6
6
6
6
6
6
Address
Assignable range
192.168.1.120 192.168.1.121 - 192.168.1.126
192.168.1.96
192.168.1.97 - 192.168.1.102
192.168.1.184 192.168.1.185 - 192.168.1.190
192.168.1.216 192.168.1.217 - 192.168.1.222
192.168.2.32
192.168.2.33 - 192.168.2.38
192.168.2.40
192.168.2.41- 192.168.2.46
192.168.2.80
192.168.2.81 - 192.168.2.86
Table 5 : IP Address (Brazil / Brazilia)
Broadcast
192.168.1.127
192.168.1.103
192.168.1.191
192.168.1.223
192.168.2.39
192.168.2.47
192.168.2.87
Subnet Mask
255.255.255.248
255.255.255.248
255.255.255.248
255.255.255.248
255.255.255.248
255.255.255.248
255.255.255.248
Mask
/29
/29
/29
/29
/29
/29
/29
Department
Needed
Size
Administration
Native Vlan
Other
IT
Marketing
Accounting
Management
3
3
3
3
6
6
6
6
Department
Needed
Size
Native Vlan
Administration
IT
Marketing
Accounting
Other
3
3
3
3
2
6
6
6
6
6
Address
Assignable range
Broadcast
192.168.1.129 192.168.1.128
192.168.1.135
192.168.1.134
192.168.1.209 192.168.1.208
192.168.1.215
192.168.1.214
192.168.1.249 192.168.1.248
192.168.1.255
192.168.1.254
192.168.2.0
192.168.2.1 - 192.168.2.6
192.168.2.7
192.168.2.8
192.168.2.9 - 192.168.2.14
192.168.2.15
192.168.2.16 192.168.2.17- 192.168.2.22 192.168.2.23
192.168.2.24 192.168.2.25 - 192.168.2.30 192.168.2.31
Table 6 : IP Address (Bahrain/Manama)
Address
Assignable range
192.168.1.225 192.168.1.224
192.168.1.230
192.168.2.48 192.168.2.49 - 192.168.2.54
192.168.2.56 192.168.2.57 - 192.168.2.62
192.168.2.64 192.168.2.65 - 192.168.2.70
192.168.2.72 192.168.2.73 - 192.168.2.78
192.168.2.88 192.168.2.89 - 192.168.2.94
Table 7 : IP Address (UAE /Dubai)
Broadcast
192.168.1.231
192.168.2.55
192.168.2.63
192.168.2.71
192.168.2.79
192.168.2.95
Subnet Mask
255.255.255.248
255.255.255.248
255.255.255.248
/29
/29
/29
255.255.255.248
255.255.255.248
255.255.255.248
255.255.255.248
/29
/29
/29
/29
Subnet Mask
255.255.255.248
Mask
255.255.255.248
255.255.255.248
255.255.255.248
255.255.255.248
255.255.255.248
/29
/29
/29
/29
/29
Italy Administration (20 PC)

Device Name
IP Address
Subnet Mask
Default Gateway
Milan-PC1
192.17.0.2
255.255.255.224
192.17.0.1
Milan-PC2
192.17.0.3
255.255.255.224
192.17.0.1
Milan-PC3
192.17.0.4
255.255.255.224
192.17.0.1
Page 5 of 31
Mask
/29
Milan-PC4
192.17.0.5
255.255.255.224
192.17.0.1
Milan-PC5
192.17.0.6
255.255.255.224
192.17.0.1
Milan-PC6
192.17.0.7
255.255.255.224
192.17.0.1
Milan-PC7
192.17.0.8
255.255.255.224
192.17.0.1
Milan-PC8
192.17.0.9
255.255.255.224
192.17.0.1
Milan-PC9
192.17.0.10
255.255.255.224
192.17.0.1
Milan-PC10
192.17.0.11
255.255.255.224
192.17.0.1
Milan-PC11
192.17.0.12
255.255.255.224
192.17.0.1
Milan-PC12
192.17.0.13
255.255.255.224
192.17.0.1
Milan-PC13
192.17.0.14
255.255.255.224
192.17.0.1
Milan-PC14
192.17.0.15
255.255.255.224
192.17.0.1
Milan-PC15
192.17.0.16
255.255.255.224
192.17.0.1
Milan-PC16
192.17.0.17
255.255.255.224
192.17.0.1
Milan-PC17
192.17.0.18
255.255.255.224
192.17.0.1
Milan-PC18
192.17.0.19
255.255.255.224
192.17.0.1
Milan-PC19
192.17.0.20
255.255.255.224
192.17.0.1
Milan-PC20
192.17.0.21
255.255.255.224
192.17.0.1
Italy - Management (5 PC)

Device Name
IP Address
Subnet Mask
Default Gateway
Milan-PC21
192.17.1.170
255.255.255.248
192.17.1.169
Milan-PC22
192.17.1.171
255.255.255.248
192.17.1.169
Milan-PC23
192.17.1.172
255.255.255.248
192.17.1.169
Milan-PC24
192.17.1.173
255.255.255.248
192.17.1.169
Milan-PC25
192.17.1.174
255.255.255.248
192.17.1.169
Italy Accounting (5 PC)

Device Name
IP Address
Subnet Mask
Default Gateway
Milan-PC26
192.17.1.114
255.255.255.248
192.17.1.113
Milan-PC27
192.17.1.115
255.255.255.248
192.17.1.113
Page 6 of 31
Milan-PC28
192.17.1.116
255.255.255.248
192.17.1.113
Milan-PC29
192.17.1.117
255.255.255.248
192.17.1.113
Milan-PC30
192.17.1.118
255.255.255.248
192.17.1.113
Italy Marketing (10 PC)

Device Name
IP Address
Subnet Mask
Default Gateway
Milan-PC31
192.17.0.242
255.255.255.240
192.17.0.241
Milan-PC32
192.17.0.243
255.255.255.240
192.17.0.241
Milan-PC33
192.17.0.244
255.255.255.240
192.17.0.241
Milan-PC34
192.17.0.245
255.255.255.240
192.17.0.241
Milan-PC35
192.17.0.246
255.255.255.240
192.17.0.241
Milan-PC36
192.17.0.247
255.255.255.240
192.17.0.241
Milan-PC37
192.17.0.248
255.255.255.240
192.17.0.241
Milan-PC38
192.17.0.249
255.255.255.240
192.17.0.241
Milan-PC39
192.17.0.250
255.255.255.240
192.17.0.241
Italy IT (10 PC)

Device Name
IP address
Subnet Mask
Default Gateway
Milan-PC41
192.17.0.194
255.255.255.240
192.17.0.193
Milan-PC42
192.17.0.195
255.255.255.240
192.17.0.193
Milan-PC43
192.17.0.196
255.255.255.240
192.17.0.193
Milan-PC44
192.17.0.197
255.255.255.240
192.17.0.193
Milan-PC45
192.17.0.198
255.255.255.240
192.17.0.193
Milan-PC46
192.17.0.199
255.255.255.240
192.17.0.193
Milan-PC47
192.17.0.200
255.255.255.240
192.17.0.193
Milan-PC48
192.17.0.201
255.255.255.240
192.17.0.193
Milan-PC49
192.17.0.202
255.255.255.240
192.17.0.193
Milan-PC50
192.17.0.203
255.255.255.240
192.17.0.193
Italy Training (20 PC)

Device Name
IP address
Page 7 of 31
Subnet Mask
Default Gateway
Milan-PC51
192.17.0.34
255.255.255.224
192.17.0.33
Milan-PC52
192.17.0.35
255.255.255.224
192.17.0.33
Milan-PC53
192.17.0.36
255.255.255.224
192.17.0.33
Milan-PC54
192.17.0.37
255.255.255.224
192.17.0.33
Milan-PC55
192.17.0.38
255.255.255.224
192.17.0.33
Milan-PC56
192.17.0.39
255.255.255.224
192.17.0.33
Milan-PC57
192.17.0.40
255.255.255.224
192.17.0.33
Milan-PC58
192.17.0.41
255.255.255.224
192.17.0.33
Milan-PC59
192.17.0.42
255.255.255.224
192.17.0.33
Milan-PC60
192.17.0.43
255.255.255.224
192.17.0.33
Milan-PC61
192.17.0.44
255.255.255.224
192.17.0.33
Milan-PC62
192.17.0.45
255.255.255.224
192.17.0.33
Milan-PC63
192.17.0.46
255.255.255.224
192.17.0.33
Milan-PC64
192.17.0.47
255.255.255.224
192.17.0.33
Milan-PC65
192.17.0.48
255.255.255.224
192.17.0.33
Milan-PC66
192.17.0.49
255.255.255.224
192.17.0.33
Milan-PC67
192.17.0.50
255.255.255.224
192.17.0.33
Milan-PC68
192.17.0.51
255.255.255.224
192.17.0.33
Milan-PC69
192.17.0.52
255.255.255.224
192.17.0.33
Milan-PC70
192.17.0.53
255.255.255.224
192.17.0.33
Italy Other (20 PC)

Device Name
IP address
Subnet Mask
Default Gateway
Milan-PC71
192.17.0.66
255.255.255.224
192.17.0.65
Milan-PC72
192.17.0.67
255.255.255.224
192.17.0.65
Milan-PC73
192.17.0.68
255.255.255.224
192.17.0.65
Milan-PC74
192.17.0.69
255.255.255.224
192.17.0.65
Page 8 of 31
Milan-PC75
192.17.0.70
255.255.255.224
192.17.0.65
Milan-PC76
192.17.0.71
255.255.255.224
192.17.0.65
Milan-PC77
192.17.0.72
255.255.255.224
192.17.0.65
Milan-PC78
192.17.0.73
255.255.255.224
192.17.0.65
Milan-PC79
192.17.0.74
255.255.255.224
192.17.0.65
Milan-PC80
192.17.0.75
255.255.255.224
192.17.0.65
Milan-PC81
192.17.0.76
255.255.255.224
192.17.0.65
Milan-PC82
192.17.0.77
255.255.255.224
192.17.0.65
Milan-PC83
192.17.0.78
255.255.255.224
192.17.0.65
Milan-PC84
192.17.0.79
255.255.255.224
192.17.0.65
Milan-PC85
192.17.0.80
255.255.255.224
192.17.0.65
Milan-PC86
192.17.0.81
255.255.255.224
192.17.0.65
Milan-PC87
192.17.0.82
255.255.255.224
192.17.0.65
Milan-PC88
192.17.0.83
255.255.255.224
192.17.0.65
Milan-PC89
192.17.0.84
255.255.255.224
192.17.0.65
Milan-PC90
192.17.0.85
255.255.255.224
192.17.0.65
Email Server
149.5.1.2
255.255.255.224
149.5.1.1
Web Server
149.5.1.3
255.255.255.224
149.5.1.1
Port IP address
Device
Port
IP
Subnet Mask
Milan-Router
Fa0/0.10
192.168.1.169
255.255.255.248
Fa0/0.20
192.168.0.241
255.255.255.240
Fa0/0.30
192.168.1.113
255.255.255.248
Fa0/0.40
192.168.0.193
255.255.255.240
Fa0/0.50
192.168.0.1
255.255.255.224
Fa0/0.60
192.168.0.65
255.255.255.224
Page 9 of 31
Fa0/0.70
192.168.0.33
255.255.255.224
Fa0/0.88
192.168.0.97
255.255.255.224
Fa0/0.99
192.168.1.33
255.255.255.240
S0/0/0.110
192.168.2.105
255.255.255.252
S0/0/0.120
192.168.2.109
255.255.255.252
S0/0/0.130
192.168.2.113
255.255.255.252
S0/0/0.140
192.168.2.117
255.255.255.252
S0/0/0.150
192.168.2.121
255.255.255.252
S0/0/0.160
192.168.2.125
255.255.255.252
S0/0/1
100.0.0.1
255.255.255.252
Milan-Switch1
VLAN 99
192.168.1.33
255.255.255.224
Milan-Switch2
VLAN 99
192.168.1.34
255.255.255.224
Milan-Switch3
VLAN 99
192.168.1.35
255.255.255.224
Milan-Switch4
VLAN 99
192.168.1.36
255.255.255.224
Milan-Switch5
VLAN 99
192.168.1.37
255.255.255.224
Milan-Switch6
VLAN 99
192.168.1.38
255.255.255.224
Milan-Switch7
VLAN 99
192.168.1.39
255.255.255.224
Milan-Switch8
VLAN 99
192.168.1.40
255.255.255.224
Table 8 : IP Address for Devices (Milan Branch)
Greece Accounting (5 PC)

Device Name
IP address
Subnet Mask
Default Gateway
Athens-PC1
192.17.1.106
255.255.255.248
192.17.1.105
Athens-PC2
192.17.1.107
255.255.255.248
192.17.1.105
Athens-PC3
192.17.1.108
255.255.255.248
192.17.1.105
Athens-PC4
192.17.1.109
255.255.255.248
192.17.1.105
Athens-PC5
192.17.1.110
255.255.255.248
192.17.1.105
Page 10 of 31
Greece Marketing (10 PC)

Athens-PC6
192.17.0.226
255.255.255.240
192.17.0.225
Athens-PC7
192.17.0.227
255.255.255.240
192.17.0.225
Athens-PC8
192.17.0.228
255.255.255.240
192.17.0.225
Athens-PC9
192.17.0.229
255.255.255.240
192.17.0.225
Athens-PC10
192.17.0.230
255.255.255.240
192.17.0.225
Athens-PC11
192.17.0.231
255.255.255.240
192.17.0.225
Athens-PC12
192.17.0.232
255.255.255.240
192.17.0.225
Athens-PC13
192.17.0.233
255.255.255.240
192.17.0.225
Athens-PC14
192.17.0.234
255.255.255.240
192.17.0.225
Athens-PC15
192.17.0.235
255.255.255.240
192.17.0.225
Greece IT (5 PC)
Device Name
IP address
Subnet Mask
Default Gateway
Athens-PC16
192.17.1.154
255.255.255.248
192.17.1.153
Athens-PC17
192.17.1.155
255.255.255.248
192.17.1.153
Athens-PC18
192.17.1.156
255.255.255.248
192.17.1.153
Athens-PC19
192.17.1.157
255.255.255.248
192.17.1.153
Athens-PC20
192.17.1.158
255.255.255.248
192.17.1.153
Greece Administration (10 PC)

Device Name
IP address
Subnet Mask
Default Gateway
Athens-PC21
192.17.0.162
255.255.255.240
192.17.0.161
Athens-PC22
192.17.0.163
255.255.255.240
192.17.0.161
Athens-PC23
192.17.0.164
255.255.255.240
192.17.0.161
Athens-PC24
192.17.0.165
255.255.255.240
192.17.0.161
Athens-PC25
192.17.0.166
255.255.255.240
192.17.0.161
Athens-PC26
192.17.0.167
255.255.255.240
192.17.0.161
Page 11 of 31
Athens-PC27
192.17.0.168
255.255.255.240
192.17.0.161
Athens-PC28
192.17.0.169
255.255.255.240
192.17.0.161
Athens-PC29
192.17.0.170
255.255.255.240
192.17.0.161
Athens-PC30
192.17.0.171
255.255.255.240
192.17.0.161
Greece Management (5 PC)

Device Name
IP address
Subnet Mask
Default Gateway
Athens-PC31
192.17.1.162
255.255.255.248
192.17.1.161
Athens-PC32
192.17.1.163
255.255.255.248
192.17.1.161
Athens-PC33
192.17.1.164
255.255.255.248
192.17.1.161
Athens-PC34
192.17.1.165
255.255.255.248
192.17.1.161
Athens-PC35
192.17.1.166
255.255.255.248
192.17.1.161
Greece Other (15 PC)

Device Name
IP address
Subnet Mask
Default Gateway
Athens-PC36
192.17.0.130
255.255.255.224
192.17.0.129
Athens-PC37
192.17.0.131
255.255.255.224
192.17.0.129
Athens-PC38
192.17.0.132
255.255.255.224
192.17.0.129
Athens-PC39
192.17.0.133
255.255.255.224
192.17.0.129
Athens-PC40
192.17.0.134
255.255.255.224
192.17.0.129
Athens-PC41
192.17.0.135
255.255.255.224
192.17.0.129
Athens-PC42
192.17.0.136
255.255.255.224
192.17.0.129
Athens-PC43
192.17.0.137
255.255.255.224
192.17.0.129
Athens-PC44
192.17.0.138
255.255.255.224
192.17.0.129
Athens-PC45
192.17.0.139
255.255.255.224
192.17.0.129
Athens-PC46
192.17.0.140
255.255.255.224
192.17.0.129
Athens-PC47
192.17.0.141
255.255.255.224
192.17.0.129
Athens-PC48
192.17.0.142
255.255.255.224
192.17.0.129
Page 12 of 31
Athens-PC49
192.17.0.143
255.255.255.224
192.17.0.129
Athens-PC50
192.17.0.144
255.255.255.224
192.17.0.129
Port IP address
Device
Port
IP
Subnet Mask
Athens-Router
Fa0/0.10
192.168.1.161
255.255.255.248
Fa0/0.20
192.168.0.255
255.255.255.240
Fa0/0.30
192.168.1.105
255.255.255.248
Fa0/0.40
192.168.1.153
255.255.255.248
Fa0/0.50
192.168.0.161
255.255.255.240
Fa0/0.60
192.168.0.129
255.255.255.224
Fa0/0.99
192.168.1.49
255.255.255.240
S0/0/0.210
192.168.2.106
255.255.255.252
S0/0/0.220
192.168.2.129
255.255.255.252
S0/0/0.230
192.168.2.133
255.255.255.252
S0/0/0.240
192.168.2.137
255.255.255.252
S0/0/0.250
192.168.2.141
255.255.255.252
S0/0/0.260
192.168.2.145
255.255.255.252
Athens-Switch1
VLAN 99
192.168.1.50
255.255.255.240
Athens-Switch2
VLAN 99
192.168.1.51
255.255.255.240
Athens-Switch3
VLAN 99
192.168.1.52
255.255.255.240
Athens-Switch4
VLAN 99
192.168.1.53
255.255.255.240
Athens-Switch5
VLAN 99
192.168.1.54
255.255.255.240
Athens-Switch6
VLAN 99
192.168.1.55
255.255.255.240
Table 9 : IP Address for Devices (Athens Branch)
USA Management (5 PC)
Page 13 of 31
Device Name
IP address
Subnet Mask
Default Gateway
Boston-PC1
192.17.1.178
255.255.255.248
192.17.1.177
Boston-PC2
192.17.1.179
255.255.255.248
192.17.1.177
Boston-PC3
192.17.1.180
255.255.255.248
192.17.1.177
Boston-PC4
192.17.1.181
255.255.255.248
192.17.1.177
Boston-PC5
192.17.1.182
255.255.255.248
192.17.1.177
USA Marketing (10 PC)

Device Name
IP address
Subnet Mask
Default Gateway
Boston-PC6
192.17.1.2
255.255.255.240
192.17.1.1
Boston-PC7
192.17.1.3
255.255.255.240
192.17.1.1
Boston-PC8
192.17.1.4
255.255.255.240
192.17.1.1
Boston-PC9
192.17.1.5
255.255.255.240
192.17.1.1
Boston-PC10
192.17.1.6
255.255.255.240
192.17.1.1
Boston-PC11
192.17.1.7
255.255.255.240
192.17.1.1
Boston-PC12
192.17.1.8
255.255.255.240
192.17.1.1
Boston-PC13
192.17.1.9
255.255.255.240
192.17.1.1
Boston-PC14
192.17.1.10
255.255.255.240
192.17.1.1
Boston-PC15
192.17.1.11
255.255.255.240
192.17.1.1
USA Accounting (5 PC)

Device Name
IP address
Subnet Mask
Default Gateway
Boston-PC16
192.17.1.90
255.255.255.248
192.17.1.89
Boston-PC17
192.17.1.91
255.255.255.248
192.17.1.89
Boston-PC18
192.17.1.92
255.255.255.248
192.17.1.89
Boston-PC19
192.17.1.93
255.255.255.248
192.17.1.89
Boston-PC20
192.17.1.94
255.255.255.248
192.17.1.89
USA IT (10 PC)
Page 14 of 31
Device Name
IP address
Subnet Mask
Default Gateway
Boston-PC21
192.17.0.210
255.255.255.240
192.17.0.209
Boston-PC22
192.17.0.211
255.255.255.240
192.17.0.209
Boston-PC23
192.17.0.212
255.255.255.240
192.17.0.209
Boston-PC24
192.17.0.213
255.255.255.240
192.17.0.209
Boston-PC25
192.17.0.214
255.255.255.240
192.17.0.209
Boston-PC26
192.17.0.215
255.255.255.240
192.17.0.209
Boston-PC27
192.17.0.216
255.255.255.240
192.17.0.209
Boston-PC28
192.17.0.217
255.255.255.240
192.17.0.209
Boston-PC29
192.17.0.218
255.255.255.240
192.17.0.209
Boston-PC30
192.17.0.219
255.255.255.240
192.17.0.209
USA Other (10 PC)

Device Name
IP address
Subnet Mask
Default Gateway
Boston-PC31
192.17.1.18
255.255.255.240
192.17.1.17
Boston-PC32
192.17.1.19
255.255.255.240
192.17.1.17
Boston-PC33
192.17.1.20
255.255.255.240
192.17.1.17
Boston-PC34
192.17.1.21
255.255.255.240
192.17.1.17
Boston-PC35
192.17.1.22
255.255.255.240
192.17.1.17
Boston-PC36
192.17.1.23
255.255.255.240
192.17.1.17
Boston-PC37
192.17.1.24
255.255.255.240
192.17.1.17
Boston-PC38
192.17.1.25
255.255.255.240
192.17.1.17
Boston-PC39
192.17.1.26
255.255.255.240
192.17.1.17
Boston-PC40
192.17.1.27
255.255.255.240
192.17.1.17
USA Administration (10 PC)

Device Name
IP address
Subnet Mask
Default Gateway
Boston-PC41
192.17.0.178
255.255.255.240
192.17.0.177
Page 15 of 31
Boston-PC42
192.17.0.179
255.255.255.240
192.17.0.177
Boston-PC43
192.17.0.180
255.255.255.240
192.17.0.177
Boston-PC44
192.17.0.181
255.255.255.240
192.17.0.177
Boston-PC45
192.17.0.182
255.255.255.240
192.17.0.177
Boston-PC46
192.17.0.183
255.255.255.240
192.17.0.177
Boston-PC47
192.17.0.184
255.255.255.240
192.17.0.177
Boston-PC48
192.17.0.185
255.255.255.240
192.17.0.177
Boston-PC49
192.17.0.186
255.255.255.240
192.17.0.177
Boston-PC50
192.17.0.187
255.255.255.240
192.17.0.177
Port IP address
Device
Port
IP
Subnet Mask
Athens-Router
Fa0/0.10
192.168.1.177
255.255.255.248
Fa0/0.20
192.168.1.1
255.255.255.240
Fa0/0.30
192.168.1.89
255.255.255.248
Fa0/0.40
192.168.0.209
255.255.255.240
Fa0/0.50
192.168.0.177
255.255.255.240
Fa0/0.60
192.168.1.17
255.255.255.240
Fa0/0.99
192.168.1.65
255.255.255.248
S0/0/0.310
192.168.2.110
255.255.255.252
S0/0/0.320
192.168.2.130
255.255.255.252
S0/0/0.330
192.168.2.149
255.255.255.252
S0/0/0.340
192.168.2.153
255.255.255.252
S0/0/0.350
192.168.2.157
255.255.255.252
S0/0/0.360
192.168.2.161
255.255.255.252
Boston -Switch1
VLAN 99
192.168.1.66
255.255.255.248
Boston -Switch2
VLAN 99
192.168.1.67
255.255.255.248
Page 16 of 31
Boston -Switch3
VLAN 99
192.168.1.68
255.255.255.248
Boston -Switch4
VLAN 99
192.168.1.69
255.255.255.248
Boston -Switch5
VLAN 99
192.168.1.70
255.255.255.248
Table 10: IP Address for Devices (Boston Branch)
China Management (2 PC)

Device Name
IP address
Subnet Mask
Default Gateway
Beijing-PC1
192.17.1.242
255.255.255.248
192.17.1.241
Beijing-PC2
192.17.1.243
255.255.255.248
192.17.1.241
China Marketing (5 PC)

Device Name
IP address
Subnet Mask
Default Gateway
Beijing-PC3
192.17.1.194
255.255.255.240
192.17.1.193
Beijing-PC4
192.17.1.195
255.255.255.240
192.17.1.193
Beijing-PC5
192.17.1.196
255.255.255.240
192.17.1.193
Beijing-PC6
192.17.1.197
255.255.255.240
192.17.1.193
Beijing-PC7
192.17.1.198
255.255.255.240
192.17.1.193
China Other (3 PC)

Device Name
IP address
Subnet Mask
Default Gateway
Beijing-PC8
192.17.1.234
255.255.255.240
192.17.1.233
Beijing-PC9
192.17.1.235
255.255.255.240
192.17.1.233
Beijing-PC10
192.17.1.236
255.255.255.240
192.17.1.233
China Accounting (5 PC)

Device Name
IP address
Subnet Mask
Default Gateway
Beijing-PC11
192.17.1.82
255.255.255.240
192.17.1.81
Beijing-PC12
192.17.1.83
255.255.255.240
192.17.1.81
Beijing-PC13
192.17.1.84
255.255.255.240
192.17.1.81
Beijing-PC14
192.17.1.85
255.255.255.240
192.17.1.81
Page 17 of 31
Beijing-PC15
192.17.1.86
255.255.255.240
192.17.1.81
China IT (5 PC)
Device Name
IP address
Subnet Mask
Default Gateway
Beijing-PC16
192.17.1.146
255.255.255.240
192.17.1.145
Beijing-PC17
192.17.1.147
255.255.255.240
192.17.1.145
Beijing-PC18
192.17.1.148
255.255.255.240
192.17.1.145
Beijing-PC19
192.17.1.149
255.255.255.240
192.17.1.145
Boston-PC20
192.17.1.150
255.255.255.240
192.17.1.145
China Administration (5 PC)

Device Name
IP address
Subnet Mask
Default Gateway
Beijing-PC21
192.17.1.138
255.255.255.240
192.17.1.137
Beijing-PC22
192.17.1.139
255.255.255.240
192.17.1.137
Beijing-PC23
192.17.1.140
255.255.255.240
192.17.1.137
Beijing-PC24
192.17.1.141
255.255.255.240
192.17.1.137
Beijing-PC25
192.17.1.142
255.255.255.240
192.17.1.137
Port IP address
Beijing-Router
Fa0/0.10
192.168.1.241
255.255.255.248
Fa0/0.20
192.168.1.193
255.255.255.240
Fa0/0.30
192.168.1.81
255.255.255.248
Fa0/0.40
192.168.1.145
255.255.255.240
Fa0/0.50
192.168.1.137
255.255.255.240
Fa0/0.60
192.168.1.233
255.255.255.240
Fa0/0.99
192.168.1.201
255.255.255.248
S0/0/0.410
192.168.2.114
255.255.255.252
S0/0/0.420
192.168.2.134
255.255.255.252
S0/0/0.430
192.168.2.150
255.255.255.252
Page 18 of 31
S0/0/0.440
192.168.2.165
255.255.255.252
S0/0/0.450
192.168.2.169
255.255.255.252
S0/0/0.460
192.168.2.173
255.255.255.252
Beijing-Switch1
VLAN 99
192.168.1.202
255.255.255.248
Beijing -Switch2
VLAN 99
192.168.1.203
255.255.255.248
Beijing -Switch3
VLAN 99
192.168.1.204
255.255.255.248
Beijing -Switch4
VLAN 99
192.168.1.205
255.255.255.248
Beijing -Switch5
VLAN 99
192.168.1.206
255.255.255.248
Beijing -Switch6
VLAN 99
192.168.1.207
255.255.255.248
Table 11: IP Address for Devices (Beijing Branch)
Device Name
Brazilia -PC1
Brazilia -PC2
Device Name
Brazilia PC3
Brazilia PC4
Device Name
Brazilia PC5
Brazilia PC6
Brazilia PC7
Brazilia PC8
Brazilia PC9
Device Name
Brazilia -PC10
Brazil Management (2 PC)

IP address
Subnet Mask
192.17.2.42
255.255.255.248
192.17.2.43
255.255.255.248
Brazil IT (2 PC)
IP address
Subnet Mask
192.17.2.34
255.255.255.248
192.17.2.35
255.255.255.248
Brazil Marketing (5 PC)
IP address
Subnet Mask
192.17.1.186
255.255.255.248
192.17.1.187
255.255.255.248
192.17.1.188
255.255.255.248
192.17.1.189
255.255.255.248
192.17.1.190
255.255.255.248
Brazil Other (1 PC)
IP address
Subnet Mask
192.17.2.82
255.255.255.248
Brazil Accounting (5 PC)
Default Gateway
192.17.2.41
192.17.2.41
Default Gateway
192.17.2.33
192.17.2.33
Default Gateway
192.17.1.185
192.17.1.185
192.17.1.185
192.17.1.185
192.17.1.185
Default Gateway
192.17.2.81
Device Name
IP address
Subnet Mask
Default Gateway
Brazilia PC11
192.17.1.98
255.255.255.248
192.17.1.97
Brazilia -PC12
192.17.1.99
255.255.255.248
192.17.1.97
Brazilia -PC13
192.17.1.100
255.255.255.248
192.17.1.97
Brazilia -PC14
192.17.1.101
255.255.255.248
192.17.1.97
Page 19 of 31
Brazilia -PC15
192.17.1.102
255.255.255.248
192.17.1.97
Brazil Administration (5 PC)

Device Name
IP address
Subnet Mask
Default Gateway
Brazilia -PC16
192.17.1.122
255.255.255.248
192.17.1.121
Brazilia -PC17
192.17.1.123
255.255.255.248
192.17.1.121
Brazilia -PC18
192.17.1.124
255.255.255.248
192.17.1.121
Brazilia -PC19
192.17.1.125
255.255.255.248
192.17.1.121
Brazilia -PC20
192.17.1.126
255.255.255.248
192.17.1.121
Port IP address
Device
Port
IP
Subnet Mask
Brazilia-Router
Fa0/0.10
192.168.2.41
255.255.255.248
Fa0/0.20
192.168.1.185
255.255.255.240
Fa0/0.30
192.168.1.97
255.255.255.248
Fa0/0.40
192.168.2.33
255.255.255.240
Fa0/0.50
192.168.1.121
255.255.255.240
Fa0/0.60
192.168.2.81
255.255.255.240
Fa0/0.99
192.168.1.217
255.255.255.248
S0/0/0.510
192.168.2.118
255.255.255.252
S0/0/0.520
192.168.2.138
255.255.255.252
S0/0/0.530
192.168.2.154
255.255.255.252
S0/0/0.540
192.168.2.166
255.255.255.252
S0/0/0.550
192.168.2.177
255.255.255.252
S0/0/0.560
192.168.2.181
255.255.255.252
Brazilia -Switch1
VLAN 99
192.168.1.218
Page 20 of 31
255.255.255.248
Brazilia -Switch2
VLAN 99
192.168.1.219
255.255.255.248
Brazilia -Switch3
VLAN 99
192.168.1.220
255.255.255.248
Brazilia -Switch4
VLAN 99
192.168.1.221
255.255.255.248
Brazilia -Switch5
VLAN 99
192.168.1.222
255.255.255.248
Table 12: IP Address for Devices (Brazilia Branch)
Device Name
Manama -PC1
Manama -PC2
Device Name
Manama PC3
Manama PC4
Device Name
Manama PC5
Manama PC6
Device Name
Manama PC7
Manama PC8
Device Name
Manama PC9
Manama -PC10
Manama -PC11
Manama -PC12
Manama -PC13
Device Name
Manama PC14
Manama PC15
Device
Manama-Router
Bahrain Management (2 PC)

IP address
Subnet Mask
192.17.2.26
255.255.255.248
192.17.2.27
255.255.255.248
Bahrain Marketing (2 PC)
IP address
Subnet Mask
192.17.2.10
255.255.255.248
192.17.2.11
255.255.255.248
Bahrain Accounting (2 PC)
IP address
Subnet Mask
192.17.2.18
255.255.255.248
192.17.2.19
255.255.255.248
Bahrain IT (2 PC)
IP address
Subnet Mask
192.17.2.2
255.255.255.248
192.17.2.3
255.255.255.248
Bahrain Administration (5 PC)
IP address
Subnet Mask
192.17.1.130
255.255.255.248
192.17.1.131
255.255.255.248
192.17.1.132
255.255.255.248
192.17.1.133
255.255.255.248
192.17.1.134
255.255.255.248
Bahrain Other (2 PC)
IP address
Subnet Mask
192.17.1.250
255.255.255.248
192.17.1.251
255.255.255.248
Port IP address
Port
IP
Fa0/0.10
192.168.2.25
Fa0/0.20
192.168.2.9
Fa0/0.30
192.168.2.17
Fa0/0.40
192.168.2.1
Fa0/0.50
192.168.1.129
Fa0/0.60
192.168.1.249
Fa0/0.99
192.168.1.209
S0/0/0.610
192.168.2.122
S0/0/0.620
192.168.2.142
S0/0/0.630
192.168.2.158
Page 21 of 31
Default Gateway
192.17.2.25
192.17.2.25
Default Gateway
192.17.2.9
192.17.2.9
Default Gateway
192.17.2.17
192.17.2.17
Default Gateway
192.17.2.1
192.17.2.1
Default Gateway
192.17.1.129
192.17.1.129
192.17.1.129
192.17.1.129
192.17.1.129
Default Gateway
192.17.1.249
192.17.1.249
Subnet Mask
255.255.255.248
255.255.255.248
255.255.255.248
255.255.255.248
255.255.255.248
255.255.255.248
255.255.255.248
255.255.255.252
255.255.255.252
255.255.255.252
Manama-Switch1
Manama -Switch2
Manama -Switch3
Manama -Switch4
Manama -Switch5
Manama -Switch6
Device Name
Dubai -PC1
Device Name
Dubai PC2
Dubai PC3
Device Name
Dubai PC4
Dubai PC5
Device Name
Dubai PC6
Dubai PC7
Device Name
Dubai PC8
Dubai PC9
Device Name
Dubai PC10
Device
Dubai-Router
Dubai-Switch1
S0/0/0.640
S0/0/0.650
S0/0/0.660
VLAN 99
VLAN 99
VLAN 99
VLAN 99
VLAN 99
VLAN 99
192.168.2.170
192.168.2.178
192.168.2.185
192.168.1.210
192.168.1.211
192.168.1.212
192.168.1.213
192.168.1.214
192.168.1.215
Table 13: IP Address for Devices (Bahrain Branch)
UAE Management (1 PC)

IP address
Subnet Mask
192.17.2.92
255.255.255.248
UAE Marketing (2 PC)
IP address
Subnet Mask
192.17.2.66
255.255.255.248
192.17.2.67
255.255.255.248
UAE Accounting (2 PC)
IP address
Subnet Mask
192.17.2.74
255.255.255.248
192.17.2.75
255.255.255.248
UAE Administration (2 PC)
IP address
Subnet Mask
192.17.2.50
255.255.255.248
192.17.2.51
255.255.255.248
UAE IT (2 PC)
IP address
Subnet Mask
192.17.2.58
255.255.255.248
192.17.2.59
255.255.255.248
UAE Other (1 PC)
IP address
Subnet Mask
192.17.2.86
255.255.255.248
Port IP address
Port
IP
Fa0/0.10
192.168.2.97
Fa0/0.20
192.168.2.65
Fa0/0.30
192.168.2.73
Fa0/0.40
192.168.2.57
Fa0/0.50
192.168.1.49
Fa0/0.60
192.168.2.89
Fa0/0.99
192.168.1.225
S0/0/0.710
192.168.2.126
S0/0/0.720
192.168.2.146
S0/0/0.730
192.168.2.162
S0/0/0.740
192.168.2.174
S0/0/0.750
192.168.2.182
S0/0/0.760
192.168.2.186
192.168.1.226
VLAN 99
Page 22 of 31
255.255.255.252
255.255.255.252
255.255.255.252
255.255.255.248
255.255.255.248
255.255.255.248
255.255.255.248
255.255.255.248
255.255.255.248
Default Gateway
192.17.2.91
Default Gateway
192.17.2.65
192.17.2.65
Default Gateway
192.17.2.73
192.17.2.73
Default Gateway
192.17.2.49
192.17.2.49
Default Gateway
192.17.2.57
192.17.2.57
Default Gateway
192.17.2.85
Subnet Mask
255.255.255.248
255.255.255.248
255.255.255.248
255.255.255.248
255.255.255.248
255.255.255.248
255.255.255.248
255.255.255.252
255.255.255.252
255.255.255.252
255.255.255.252
255.255.255.252
255.255.255.252
255.255.255.248
Dubai -Switch2
Dubai -Switch3
Dubai -Switch4
Dubai -Switch5
192.168.1.227
192.168.1.228
192.168.1.229
192.168.1.230
Table 14: IP Address for Devices (Dubai Branch)
VLAN 99
VLAN 99
VLAN 99
VLAN 99
255.255.255.248
255.255.255.248
255.255.255.248
255.255.255.248
2.VLANs
VLAN is virtual local area networks; it helps to connect workstations that have the same requirement
with each other. VLAN separate the LAN into different broadcast domains which will control the
broadcast traffic. Companies or organizations implement VLANs to reduce the cost, security and
higher performance.
Global health services (GHS) is recommended to implement VLANs to separate different department
to enforce network security to retain the host with sensitive data secured, reduce the traffic flow within
the network,
GHS branch office is located in Milan , it has six different brunches, so each branch there will be a
different VLAN table , that will contain VLANs for each department , as shown in the tables below .
2.1 Italy / Milan Branch
VLAN ID
VLAN 10
VLAN 20
VLAN 30
VLAN 40
VLAN 50
VLAN 60
VLAN 70
VLAN 88
VLAN 99
VLAN Name
Administration
Training
Other
IT
Marketing
Accounting
Management
Wireless
Native VLAN
2.2 Greece / Athens Branch
VLAN ID
VLAN 10
VLAN 20
VLAN 30
VLAN 40
VLAN 50
VLAN 60
VLAN 70
VLAN 99
VLAN Name
Administration
Training
Other
IT
Marketing
Accounting
Management
Native VLAN
2.3 Boston Branch
VLAN ID
VLAN 10
VLAN 20
VLAN Name
Administration
Training
Page 23 of 31
VLAN 30
VLAN 40
VLAN 50
VLAN 60
VLAN 70
VLAN 99
Other
IT
Marketing
Accounting
Management
Native VLAN
2.4 China / Beijing Branch
VLAN ID
VLAN Name
VLAN 10
VLAN 20
VLAN 30
VLAN 40
VLAN 50
VLAN 60
VLAN 70
VLAN 99
Administration
Training
Other
IT
Marketing
Accounting
Management
Native VLAN
2.5 Bahrain / Manama Branch
VLAN ID
VLAN Name
VLAN 10
VLAN 20
VLAN 30
VLAN 40
VLAN 50
VLAN 60
VLAN 70
VLAN 99
Administration
Training
Other
IT
Marketing
Accounting
Management
Native VLAN
2.6 Brazil / Brazilia Branch
VLAN ID
VLAN Name
VLAN 10
VLAN 20
VLAN 30
VLAN 40
VLAN 50
VLAN 60
VLAN 70
VLAN 99
Administration
Training
Other
IT
Marketing
Accounting
Management
Native VLAN
2.7 UAE / Dubai Branch
VLAN ID
VLAN 10
VLAN 20
VLAN 30
VLAN 40
VLAN 50
VLAN 60
VLAN 70
VLAN 99
VLAN Name
Administration
Training
Other
IT
Marketing
Accounting
Management
Native VLAN
Page 24 of 31
2.8 VTP
VTP is implemented in core layer switches as a Server and as a client in both distribution and access
layer . VTP will provide a better network management and manage switches.
3.Security and Redundancy

3.1 Security
To insure a higher level of security on the network, GHS implemented different measures of security
on all the routers and switches. First of all is the access port security, which carry out the specific
interface on the switch that is connected to the PC, so that only a certain number of PCs is allowed to
connect to the network, if by any case a new PC is connected with a Mac address which does not
exist -- the Port will automatically shut down. This will avoid common security attacks. The Secure
MAC Address types are static, dynamic, and sticky. GHS will implement the sticky Secure MAC
Address because they are Dynamically learned, furthered to the MAC address table either manually
or after it is configured as dynamically learned and the configuration is stored in the running
configuration (Switch Concepts and Configuration).
A company ensures a higher level of security on it devices by setting passwords on switches and
routers An encrypted privileged EXEC mode password of cisco, the aim of using passwords is to avoid
unauthorized users to access the EXEC mode by adding line VTY and line console.
2.2 Redundancy
To guarantee the network availability for any failure, the company design the topology as a
Hierarchical network model which have three different layers which are core, distribution and
access to provide alternative paths
Page 25 of 31
2. Wireless Access
The company will have a wireless local-area network (LAN) that uses radio waves and fixed access
that uses Ethernet ports in each site to connect to the internet.
Global Health Services will experience benefits of having wireless network. First, mobility; the GHS
users can connect from their laptops and tablets, second expanding, if the company is thinking of
future expanding, they will use less cables which mean less cost .last , security, the company can
control who can access the network, Global Health Services will implement Wireless will be
implemented only in one site .
3. Encapsulation method PPP-CHAP

GHS and EIX should be connected so that GHS have internet access , PPP encapsulation method
were implemented in the routers .
The fact that PPP protocol has several advantages has led the company to utilize this method. The
protocol allows for a wide range of applicability to many devices provided by different vendors as
Page 26 of 31
well as supporting authentication options which facilitates the exchange of authentication messages.
These authentication options includes two main protocols which are Password Authentication
Protocol (PAP) and Challenge Handshake Authentication protocol (CHAP). PPP Protocol also allows
for some flexibility in size control by supporting Data compression and decompression which will
partially enhance the networks performance. It is important to note that Network Control Protocols
(NCPs) are some of the primary components of PPP which are key in establishing as well as
configuring various network layer protocols. NCPs, which are located between the data link layer
and network layer, provide control by permitting network layer protocols to work on the same
communication links .
The company wanted to implement CHAP which is Challenge-Handshake Authentication Protocol
because it does provide protection against playback attack from the peers.
4. Frame Relay
All branches need to be connected through the internet and WAN, that why frame relay was
implemented in the network because it is one of the most known WAN private packets switched
protocols.
Frame relay connect different sites by using Permanent Virtual Circuits (PVC). It allows the different
branches of GHS to connect with each other within the frame relay cloud. Frame relay is cost
efficient so it saves money and that because that the company should only buy the local loop and
bandwidth from the network provider. To connect branches together DLCI which is Data Link
Connection Identifier , should be used to identify each connection . In the topology we used
different range for each country such as 110 , 120 , 130 , etc. ("Bahrain Polytechnic - IT Team")
Page 27 of 31
5. Network Address Translation

Network Address Translation (NAT) is a method that assigns a public address to a computer that is a
part of a private network. When the user sends a package outside the network, NAT will translate
the internal IP address to an external IP Address. NAT is useful because the administrator of the
network will have the advantages of using a private network meanwhile connecting to the internet
.also, all the users in a private network need only one public ip address if NAT is implemented. NAT is
implemented in Milan router which is connected to EIX.
NAT is implemented in the company network so that the IP Address of the users that have access to
the users that have internet will be converted. The public address range will be assigned in the serial
that is connecting both of Milan Router and EIX router. ("Bahrain Polytechnic - IT Team")
6. Access Lists
ACL which is Access Lists is implemented in all the routers in the network; it is a list that preform
packet filtering by permitting or denying access to the network (Bahrain Polytechnic - IT Team").
ACL will block unwanted Traffic or users, provide a Bandwidth control and provide NAT Control. ("IP
Access List Overview", 2006)
8.1 Server Access List

This Access list is implemented in Milan Router for internet to access the web server and Email
server network. Meanwhile Internet will be denied form access any other part of the network. This
Access list is an extended Access list that were used in the serial that connect Milan to the EIX
router. The Access list is using pop3 and www for web server and smtp for Email server.
Page 28 of 31
Ip access-list extended Milan-Servers

Permit tcp any 149.5.1.0 0.0.0.31 eq www
Permit tcp any 149.5.1.0 0.0.0.31 eq pop3
Permit tcp any 149.5.1.0 0.0.0.31 eq smtp
Deny ip any 149.5.1.0 0.0.0.31
Permit ip any any
8.2 All Branches Access List

This Access list is implemented in all the branches because all the branches have the same
departments. The first two statements are for IT department, the Access list will allow only the IT
Staff to access their device through SSH and deny access through SSH to all users who are not from
IT Staff. The three statements after that will control the access of the Other department, it will
only allow the staff to access the internet and the servers and it will deny them from accessing
everything else on the network. The next statement will be about denying the administration
department form accessing the internet. The Last statement is about permitting access to all other
users.
Permit tcp 192.168.0.192 0.0.0.15 any eq 22
Deny any any eq 22
Permit ip 192.168.0.64 0.0.0.31 10.1.1.0 0.0.0.3
Permit ip 192.168.0.64 0.0.0.31 149.5.1.0 0.0.0.31
Deny ip 192.168.0.64 0.0.0.31 any
Deny ip 192.168.0.0 0.0.0.31 10.1.1.0 0.0.0.3
Permit ip any any
The networks IP will be changed in each branch
7. STP Spanning tree protocol

STP which is Spanning Tree Protocol is a network protocol that provides a free loop topology for any
LAN network. STP protocol will allow one logical path to be open between the network destinations
by blocking redundant part that might accrue a loop. When there is a failure in the paths, STP opens
an alternate path to replace the pervious path. (Bahrain Polytechnic - IT Team").
STP use STA which is Spanning Tree Algorithm to control which port in the switches need to be
configured so that STP will be able to prevent loops. STA is an algorithm that assigns switches to root
bridge and to assign switch ports to root ports after works through an election process. The Bridge-
Page 29 of 31
ID (BID) which has the bridge priority and the MAC address is controlled by the election process. The
lowest MAC address will be the root bridge
8. Banner Massages
Banner Message of the Day (MOTD) is implemented in each branch, in their routers and their
switches. The Message will be displayed as soon as the person enters the device (Switch or Router).
There will be two messages, the first message will be implemented in routes only which is for
welcoming the user in the branch and the second message will be implemented in routes and
switches which will be that the unauthorized access is forbidden. The captures below will show an
example of our banner message.
9. IPv6
The company might update their network to IPV6 which is IP version 6 and it is the last version of the
internet protocol. That will help them to get a larger Ip address range than IPV4 which is the one
implemented in the network. Having IPV6 addressing scheme has more efficient packet processing
because unlink IPV4, IPV6 does not have IP-Level checksum so there will be no need to recalculate at
every router hop ("Bahrain Polytechnic - IT Team"). Also, IPV6 have a direct data flow and that
because it supports multicasting which allows the user to send bandwidth-intensive packet through
the network while saving the bandwidth. ("Six Benefits Of IPv6 - Network Computing")
The company may need to change the IPV that they are using in case of an expanding because there
is a huge difference between IPV6 and IPV4. ("IPv6.com - Top 10 Features that make IPv6 greater
than IPv4")
Auto Configuration of address is available in IPV6 while in IPV4 DHCP should be used to
configure ip address.
Provide a large IP Address range
Provide a better connectivity
Provide a better security for application and networks
Better multicasting
Ease of Administration
Page 30 of 31
Reference List
Bahrain Polytechnic - IT Team. (2014). ACL (Power Point Slids).
Bahrain Polytechnic - IT Team. (2014). Frame Relay (Power Point Slids)
Bahrain Polytechnic - IT Team. (2014). IPV6(Power Point Slids).
Bahrain Polytechnic - IT Team. (2014). NAT & PAP (Power Point Slids).
Bahrain Polytechnic - IT Team. (2014). STP(Power Point Slids).
Frame Relay. (n.d.). Retrieved December 29, 2014, from

http://www.protocols.com/pbook/frame.htm
IP Access List Overview. (2006, January 1). Retrieved December 29, 2014, from
http://www.cisco.com/c/en/us/td/docs/ios/sec_data_plane/configuration/guide/12_4/se
c_data_plane_12_4_book/sec_access_list_ov.pdf
IPv6.com - Top 10 Features that make IPv6 greater than IPv4. (n.d.). Retrieved
December 29, 2014, from http://ipv6.com/articles/general/Top-10-Features-thatmake-IPv6-greater-than-IPv4-Part3.htm
Six Benefits Of IPv6 - Network Computing. (n.d.). Retrieved December 29, 2014,
from http://www.networkcomputing.com/networking/six-benefits-of-ipv6/d/did/1232791?
The Pros and Cons of OSPF and EIGRP. (2009, September 5). Retrieved December
29, 2014, from https://gotechsf.wordpress.com/2009/09/05/the-pros-and-cons-of-ospfand-eigrp/
Page 31 of 31

PBL Project - 201100984 - 201000542

Transféré par

Informations du document

Description originale:

Titre original

Copyright

Formats disponibles

Partager ce document

Partager ou intégrer le document

Options de partage

Avez-vous trouvé ce document utile ?

Ce contenu est-il inapproprié ?

Droits d'auteur :

Formats disponibles

PBL Project - 201100984 - 201000542

Transféré par

Droits d'auteur :

Formats disponibles

Individual Assessment Cover Sheet

Networking and Data Communications 2

Abeer AlRumaidh - Reem Alattar

This assignment is my own work

1.2 Routing Protocol ........................................................................................................................... 4

4.1 Security .......................................................................................................................................... 25

Wireless Access ............................................................................................................................ 26

Encapsulation method PPP-CHAP ............................................................................................... 26

Frame Relay .................................................................................................................................. 27

Network Address Translation ....................................................................................................... 28

Access Lists .................................................................................................................................. 28

STP Spanning tree protocol ....................................................................................................... 29

Banner Massages .......................................................................................................................... 30

Reference List ....................................................................................................................................... 31

1. IPV4 Addressing Scheme

1.2 Routing Protocol

Italy Administration (20 PC)

Italy - Management (5 PC)

Italy Accounting (5 PC)

Italy Marketing (10 PC)

Italy IT (10 PC)

Italy Training (20 PC)

Italy Other (20 PC)

Table 8 : IP Address for Devices (Milan Branch)

Greece Accounting (5 PC)

Greece Marketing (10 PC)

Greece Administration (10 PC)

Greece Management (5 PC)

Greece Other (15 PC)

Table 9 : IP Address for Devices (Athens Branch)

USA Management (5 PC)

USA Marketing (10 PC)

USA Accounting (5 PC)

USA IT (10 PC)

USA Other (10 PC)

USA Administration (10 PC)

Table 10: IP Address for Devices (Boston Branch)

China Management (2 PC)

China Marketing (5 PC)

China Other (3 PC)

China Accounting (5 PC)

China Administration (5 PC)

Table 11: IP Address for Devices (Beijing Branch)

Brazil Management (2 PC)

Brazil Administration (5 PC)

Table 12: IP Address for Devices (Brazilia Branch)

Bahrain Management (2 PC)

UAE Management (1 PC)

2.1 Italy / Milan Branch

2.2 Greece / Athens Branch

2.3 Boston Branch

2.4 China / Beijing Branch

2.5 Bahrain / Manama Branch

2.6 Brazil / Brazilia Branch

2.7 UAE / Dubai Branch

3.Security and Redundancy

3. Encapsulation method PPP-CHAP

5. Network Address Translation

8.1 Server Access List

Ip access-list extended Milan-Servers

8.2 All Branches Access List

The networks IP will be changed in each branch