Académique Documents
Professionnel Documents
Culture Documents
0 DESIGN
This chapter provides detailed information about design; this chapter provides deep concept
and information about the design and the network of ministry of foreign affairs. Also this chapter
describes the general design of the project and design.
The network devices of this ministry are so close by the distance, the longest distance is
when you came down the stairs towards the network department is 8 steps but all the others the
longest distance is 5 steps
4.2.1.1 Router
Router connect networks using one of the following routed protocols
R1#
R1#
R1#show running-config
Building configuration...
To secure the router telnet accessing we configure inside the router this command
R1(config)#
R1(config)#
R1(config)#line vty 0 4
R1(config-line)#
R1(config-line)#password cisco
R1(config-line)#login
R1(config-line)#
R1(config-line)#exit
R1(config)#
R1(config)#
Here below are the configurations of switch we protect and make secure the switches of our
project like protecting to access switches from telnet and the authorization access from inside the
network
switch(config)#
switch(config)#
switch(config)#hostname S3
S3(config)#
S3(config)#enable secret cisco
S3(config)#no ip domain-lookup
S3(config)#spanning-tree mode pvst
S3(config)#in vlan1
S3(config-if)#ip address 192.168.1.4 255.255.255.0
S3(config-if)#ip default-gateway 192.168.1.1
S3(config)#
Banner motd is the warning message when someone tries to access the network devices
S3(config)#banner motd -c
Enter TEXT message. End with the character '-'.
*****************************************************************
Unauthorized access and logins are Forbidden
*****************************************************************-c
This is all about making the network devices especially the switches secure
from both internally and externally who do not have the authentication or the right
to access them.
S3(config)#
S3(config)#line console 0
S3(config-line)#password Cisco
S3(config-line)#logging synchronous
S3(config-line)#login
S3(config-line)#
S3(config-line)#line vty 0 4
S3(config-line)#password cisco
S3(config-line)#login
S3(config-line)#
S3(config-line)#line vty 5 15
S3(config-line)#password cisco
S3(config-line)#login
S3(config-line)#
DTP mode
S3#
S3#show dtp
Global DTP information
Sending DTP Hello packets every 30 seconds
Dynamic Trunk timeout is 300 seconds
0 interfaces using DTP
S3#
Switch VLANs
S3#
S3#
S3#show vlan
VLAN Name Status Ports
---- -------------------------------- --------- -------------------------------
1 default active Fa0/6, Fa0/11, Fa0/12, Fa0/13
Fa0/14, Fa0/15, Fa0/16, Fa0/17
Fa0/18, Fa0/19, Fa0/20, Fa0/21
Fa0/22, Fa0/23, Fa0/24, Gig0/1
Gig0/2
30 network active Fa0/5
40 Ministry active Fa0/8, Fa0/9
50 DG active Fa0/7, Fa0/10
60 HR active Fa0/1, Fa0/2
70 Archive active
80 Accounting active Fa0/3, Fa0/4
90 attendences active
1002 fddi-default active
1003 token-ring-default active
1004 fddinet-default active
1005 trnet-default active
VLAN Type SAID MTU Parent RingNo BridgeNo Stp BrdgMode Trans1
Trans2
---- ----- ---------- ----- ------ ------ -------- ---- -------- ------ ------
1 enet 100001 1500 - - - - - 0 0
30 enet 100030 1500 - - - - - 0 0
40 enet 100040 1500 - - - - - 0 0
50 enet 100050 1500 - - - - - 0 0
60 enet 100060 1500 - - - - - 0 0
Remote SPAN VLANs
------------------------------------------------------------------------------
4.2.1.3 VLANs
Departments VLANs
Network admin 30
Ministry 40
DG 50
Human Resource 60
Archive 70
Accounting 80
Attendance 90
Politics 100