School of Physics, Engineering and Computer ScienceAssignment Briefing Sheet (2020/21 Academic Year) This Assignment assesses the following module Learning Outcomes (from Definitive Module Document):LO1: Have a knowledge and understanding of the issues involved in the design, realization /administration, andmanagement of a networked computing environment.LO2: Be able to design, install and support a local area network based on established user requirements.Assignment Brief:This coursework is worth 70% of the overall mark for the module. Some parts of the coursework will requireresearch beyond the material discussed in the course. This is intended and is part of the assessment. See theattachment for further information.The deadline is 06.05.2021 by electronic submission via Canvas.Please see the table underneath for the expected structure of the report and the breakdown of the mark allocation.Please include appropriate references and a bibliography. You are expected to use appropriate peer-reviewedsources for supporting your arguments, and an appropriate referencing style as per the University regulations.Submission Requirements:This is assignment is to be submitted and marked anonymously. Students should ONLY use their student IDnumber to identify themselves on their work. Work submitted via Canvas for anonymous marking willautomatically have an anonymity number allocated to it.When you are ready to submit your CW1, you will be required to submit the following:• Technical reports in pdf format• A zipped folder containing the files of the implemented network.• A short video demo showing the tests performed on the implemented networks in Task 2• A video demo showing the network administrative tasks carried out from Task 3The name of the files submitted should have your student registration number as part of the name (e.g.TechnicalReport_12003456.pdf, completedNetwork1_12003456.pkt – this is for Cisco Packet tracer,Test_demo_12003456.mp4, etc.)Marks awarded for:This assignment is worth 70 % of the overall assessment for this module.Marks awarded for:see attachedType of Feedback to be given for this assignment:Summative feedback School of Physics, Engineering and Computer ScienceAssignment task Description:You are a newly employed graduate engineer working for an IT Network Support & Services Company. You havebeen are presented with the following challenge: A businesswoman wants you to design, install, test and supporttwo secure computer networks for her primary and secondary business sites. The secondary business site is located25 miles away from the main premises and she wants you to also prepare the network design and carry out theinstallation on a later date. The office buildings for the primary and secondary site were newly purchased and it willrequire fully functioning secure networks to run her business. The floor plans can be seen in the images below:Figure 1: The floorplan of the primary business site:Website: https://www.pinterest.co.uk/pin/105905028710606130/School of Physics, Engineering and Computer ScienceFigure 2: The floorplan of the secondary business site:Website: https://www.pinterest.co.uk/pin/28077197661283751/To proceed with the given assignment, your line manager wants you to carry out three main tasks.Task 1: Network DesignsYour line manager wants you to provide detailed network designs for the primary and secondary business sites ofthe company using the provided office floor plans as a guide. The customer has provided the following specificationsfor the network.Network Specifications: Primary business site• Office 1 should be used as the Communication Room (comms room)• There should be at least 15 workstations which must include one for the reception andconference room respectively.• Three of the workstations should be running Linux OS i.e. Debian & Ubuntu LTS versions.• In the comms room, there is a need for at least one hardware firewall to be connected to theborder router and the main router should serve as the DHCP server.• The network must have a DNS server, FTP server, and at least two 24-port switches.• Most core network devices should be in the comms room. They will need racks. It is expectedthat most of the networking infrastructure should be stored in the same room unless inexceptional cases.• The LAN must be 100% redundant in the case of a single point failure. Redundancy is critical.In the case that one of the circuits fails the other one must be up and able to warn for backup.• There must be a Backup server and Print server.School of Physics, Engineering and Computer Science• You are expected to choose your network devices sensibly i.e., a carrier-class router shouldnot be used when you only need an enterprise-class router.• You must consider scalability for future network expansion.• Your network must have four VLANs which should be named Management, IT Support,Human Resources, and Sales Team.• The workstations required for each VLAN are as follows: Management (3), IT support (3) HumanResources (3), and Sales Team (6).• VLAN Routing must be enabled to ensure that workstations in the different departments cancommunicate with each other.• Your network must have at least one Layer 3 switch, to ensure devices that are on the samesubnet or virtual LAN connect at lightning speeds.• The main server required for network administration must be Linux-based (i.e., Debian orUbuntu OS).• The main router must have an access control list enabled to block the following UDP & TCP ports: MSRPC (135), Syslog (514), IRC – TCP ports 6660-6669, and SNMP (161 -162).• You must also provide a brief description of the network devices or software needed. Forexample, Server OS or VM technologies.• There is a 10G SFP+ transceiver connection that will need to be connected to an ISP providerrouter. This connection comes to the comms room from the ISP’s building.Network Specifications: Secondary business site• The secondary business site is a bit smaller than the main site with only five rooms.• One of the rooms should be a comms room with at least one hardware firewall to be connected to the borderrouter. This border router must be able to communicate with the border router of their main office premisesvia their respective ISPs or using a VPN.• The comms room should have the main router which can serve as a DHCP server and at least one 24-portswitch. Note: The main router serving as a DHCP server is not a compulsory requirement for this site. Theworkstations IP configuration can be configured manually if you want that option, however, testing mustshow that all devices can communicate with each other.• The main router must have an access control list enabled to block the following ports: TFTP (69) &NETBIOS/IP 137 – 139.• Most devices should be in the comms room and the LAN must also be 100% redundant.• Each office and the reception area are equipped with 1 desktop PC and all PCs can connect to aPrint Server.• The PCs in the secondary site should be able to communicate with PCs on the main site.Task 2: Network Implementation and TestingYour line manager wants you to implement the network design on a virtual platform to test some of the requirednetwork services and functionalities before you can carry out the physical network installations. You are expectedto implement and test the proposed network using an Open-Source network simulator or emulator such as Ciscopacket tracer, GNS3, Boson NetSim, VIRL, VIRL, CORE, etc. A list of emulators and simulators can be foundhere: list of emulators & simulators.Furthermore, you are expected to create comprehensive test and evaluation plans of the network designs andimplemented services. This should be in tabular format.School of Physics, Engineering and Computer ScienceTask 3: Required Network Administrative tasks (Primary Office Only)Your manager wants you to implement and execute the following administrative tasks on the networksimplemented on the virtual platform. This is to ensure that the same tasks can be carried out when thephysical network installation is carried out. You are also expected to carry out some furtheradministrative tasks on the Linux server that is designative for administrative purposes only. To ensureyou can perform the required administrative tasks, you are expected to first execute the tasks on a Linuxserver installed on a VMWare Player or VirtualBox.The required administrative tasks for this section are as follows:• The main router should be configured as the DHCP server as advised earlier and you must ensure that theIP addresses for the main router, DNS server, Linux Server, FTP server, Backup server, Print server are allexcluded from the address pool.• All workstations should be enabled to dynamically request IP from the DHCP server when they are switchedon.• Configure SSH on the main router and test these functionalities.• Ensure all workstations can ping each other and other core network devices i.e., main router.• All workstations must be able to connect to the internet.• Create 15 network users and assign network administrative duties to two of the users. Note: thismust be done on the Linux Server.• Ensure that all users have an initial password which they will change when they first login in.• Create two user groups (primary and secondary). The two network administrations should be inthe primary group while the rest of the users should be placed in the secondary group.• Aside from the network administrator accounts, create two other privileged accounts that givemembers the ability to run commands as root.School of Physics, Engineering and Computer ScienceWhat is required from you (FOR ALL TASKS):Task 1: Network Designs• You must prepare two detailed network diagrams for the primary and secondary business sitesillustrating your solutions. A simplified third network diagram showing the combination of the two siteswill be required.• You can use the floorplan as a template although you must demonstrate connectivity between differentrooms in your design.• Ideally, you should use Microsoft’s Visio or any other drawing software.• You must search, select, and briefly evaluate the real network hardware chosen for your network designsbacked up by appropriate references.• You should use legends as part of your designs with a full description of your cabling and networkdevices.• There are several ways that you can prepare a network diagram and advice will be provided. The goal isto be able to communicate your design efficiently in a professional manner.• You need to use appropriate referencing (IEEE or Harvard) for the devices you propose. Various websitessell this type of equipment and there are also the main manufacturers that list their products andspecifications.• Many companies manufacture network products. You can choose any other manufacturer like Cisco,Huawei, Juniper, Ciena, etcTask 2: Network Implementations and Testing• You must implement the primary and secondary network designs on a network simulator such as aCisco Packet tracer) or a network emulator (i.e. GNS3). However, it will be advisable to use the CiscoPacket Tracer 7.3.1 as you have already been practising with this in some of our lab sessions.• You must produce a detailed test and evaluation plan of the implemented networks, and theresults of the testing carried out must be added to the test result section/column in form ofscreenshots.• You are also required to produce a short video demo showing some test results of the implementednetwork functionalities and network services.Task 3: Network Administrative tasks• You must provide the detailed configuration for the DHCP server for the primary business site.• You must provide the detailed configuration of the access control list enabled on the main router.• The detailed SSH configuration for the main router.• Screenshot evidence of the Linux server administrative tasks i.e.o The 15 network users including the two network administrators.o The usernames of the users and passwords.o The two groups (primary and secondary group) showing the list of users.School of Physics, Engineering and Computer Scienceo The privileged accounts showing members that can run commands as root.• You must provide a video demo showing all the network administrative tasks being executed.Note: You can use an application that will record your screen while you are carrying out Task 3.You can use the following format for Task 1 – 3 of the coursework (optional):Task 1: Network DesignsSection 1. The 3 diagramsSection 2. Design Description. Justification of how your design fulfills the specifications. Forexample, redundancy, scalability, security features, cabling, etc.Section 3. Network hardware including the brief evaluation and/or reflection on your selection ofthe network hardware backed up by appropriate references (IEEE or Harvard).Task 2: Implemented Networks on Simulator or Emulator Section 1.Section 2.Screengrabs of the implemented networksA comprehensive test plan in tabular format which must include screengrabs of the resultof testing and evaluations carried out.Section 3.Conclusion Note: The short demo video showing some test results of the implemented network functionalities and networkservices should be saved in mp4 format. You must submit this video with the trace files of the implementednetwork. Failure to do this will lead to a zero score in this section.Task 3: Network Administration tasks• Section 1: The detailed configuration for the DHCP server (You can show the code in a logicalmanner).• Section 2: The detailed configuration of the access control list enabled on the main router.• Section 3: The detailed SSH configuration for the main router.• Section 4: Screengrabs of the Linux server administrative tasks.Note: The video demo showing all the network administrative tasks being executed in task 3 should be saved inmp4 format.Further clarifications:This coursework requires a lot of critical thinking. View this task not just as an assessment activity but as a chanceto critically evaluate and reflect on networking technologies and enhance your knowledge interacting with yourtutor. The submitted evidence for this task must be your work – plagiarism will be penalised. Please refer to the tablebelow for the marking criteria.School of Physics, Engineering and Computer Science TaskDescriptionAvailable MarksAwarded MarksTask 1The Network DesignsThe complete network design for the primary site showing all the required networkdevices, workstations, and connectivity between different rooms. You must also includethe IP Address table.15The complete network design for the secondary site showing all the required networkdevices, workstations, and connectivity between different rooms. You must also includethe IP Address table.10The simplified network diagram showing the combination of the two sites.5Justifications of how your network designs fulfill the required network specifications. Itmust also provide details of how your network designs achieved redundancy, scalability,and included security features.6Brief evaluations on your selection of the network hardware backed up by appropriatereferences (IEEE or Harvard).4Task 2Network Implementations and TestingThe complete network implementation of the primary site showing all the requirednetwork devices, workstations, and the successful interactions of all devices i.e.,workstations in the different VLANs must be able to communicate with each other andwith all the key network devices.15The complete network implementation of the secondary site showing all the requirednetwork devices, workstations, and the successful interactions of all devices.8Implementation of the combined networks via ISP or VPN.6A well-detailed test and evaluation plan preferably in a tabular format.Note: The test results/ outcomes can also be included in the plan after the tests areperformed10A short video showing the tests and evaluation carried out.6Mandatory submission of the properly labelled trace files of the implemented networks.5Network Administrative tasksTask 3The detailed configuration for the DHCP server logically showing the codes.4The detailed configuration of the access control list enabled on the main router.4The detailed SSH configuration for the main router2Screenshot evidence of the Linux server administrative tasks i.e.6The video demo showing all the network administrative tasks been executed in task 34OverallCommentsand marks100 o The 15 network users including the two network administrators.o The usernames of the users and passwordso The two groups (primary and secondary group) showing the list of users.o The privileged accounts showing members that can run commands as root.
