Name DIALAEME SAMUEL

Reg Number 20201218492

Course CSC 509

NETWORK DESIGN AND IMPLEMENTATION FOR OSCTECH COMPANY LTD

Network Topology

I implemented a three-tier hierarchical network architecture consisting of:

1. Core Layer: Central routing device connecting all floors

2. Distribution Layer: Multilayer switches on each floor for inter-VLAN

routing

3. Access Layer: Department switches and wireless access points for end-

user connectivity

The design follows a star topology at each floor, with hierarchical

connections between floors.

Network Devices

Device Type Quantit Specification Purpose

y
Core Router 1 Cisco 2901 Main routing between floors
Multilayer 4 Cisco 3560 Floor-level distribution and inter-
Switches VLAN routing

Access 13 Cisco 2960 Department-level access

Switches
Wireless APs 13 Cisco Aironet Wireless connectivity for
departments
Servers 3 Cisco UCS DHCP, HTTP, and Email services
PCs 242 Client End-user computing
workstations

Printers 36 Network Departmental printing services

printers

Subnetting

Department VLA Network Subnet Mask Usable IP Broadcast

N Address Range
Managemen 111 192.168.20 255.255.255. 192.168.20. 192.168.2
t .0 192 (/26) 1-62 0.63
Research 112 192.168.20 255.255.255. 192.168.20. 192.168.2
.64 192 (/26) 65-126 0.127
Human 113 192.168.20 255.255.255. 192.168.20. 192.168.2
Resource .128 192 (/26) 129-190 0.191
Marketing 121 192.168.20 255.255.255. 192.168.20. 192.168.2
.192 192 (/26) 193-254 0.255
Accounting 122 192.168.21 255.255.255. 192.168.21. 192.168.2
.0 192 (/26) 1-62 1.63
Finance 123 192.168.21 255.255.255. 192.168.21. 192.168.2
.64 192 (/26) 65-126 1.127
Logistics & 131 192.168.21 255.255.255. 192.168.21. 192.168.2
Store .128 192 (/26) 129-190 1.191
Customer 132 192.168.21 255.255.255. 192.168.21. 192.168.2
Care .192 192 (/26) 193-254 1.255
Guest Area 133 192.168.22 255.255.255. 192.168.22. 192.168.2
.0 128 (/25) 1-126 2.127
Administrati 141 192.168.22 255.255.255. 192.168.22. 192.168.2
on .128 192 (/26) 129-190 2.191
ICT 142 192.168.22 255.255.255. 192.168.22. 192.168.2
.192 192 (/26) 193-254 2.255
Server 143 192.168.23 255.255.255. 192.168.23. 192.168.2
Room .0 224 (/27) 1-30 3.31
 CONFIGURATION CODE USED

! ip address 192.168.24.1 255.255.255.252

=========================
========================= no shutdown
====================
! CORE ROUTER CONFIGURATION ip domain-name osctech.com
! crypto key generate rsa
=========================
========================= 1024
====================
ip ssh version 2
enable
line vty 0 4
configure terminal
transport input ssh
hostname Core-Router
login local
no ip domain-lookup
username admin privilege 15 secret
enable secret cisco123 admin123
line console 0
password console123 router ospf 1
login router-id 1.1.1.1
logging synchronous network 192.168.23.96 0.0.0.31 area 0
line vty 0 4 network 192.168.24.0 0.0.0.3 area 0
password telnet123 default-information originate always
login
service password-encryption !
=========================
banner motd #Authorized Access Only! =========================
Violators will be prosecuted!# ====================
! ROUTER CONFIGURATION
interface GigabitEthernet0/0 !
description Connection to Distribution =========================
Switch =========================
====================
ip address 192.168.23.100
255.255.255.224 enable

no shutdown configure terminal

hostname Floor1-Router

interface GigabitEthernet0/1 no ip domain-lookup

description Connection to Internet enable secret cisco123

line console 0
password console123 ip domain-name osctech.com
login crypto key generate rsa
logging synchronous 1024
line vty 0 4 ip ssh version 2
password telnet123 line vty 0 4
login transport input ssh
service password-encryption login local
banner motd #Authorized Access Only! username admin privilege 15 secret
Violators will be prosecuted!# admin123

interface GigabitEthernet0/0 router ospf 1

description Connection to Distribution router-id 2.2.2.2
Switch
network 192.168.20.0 0.0.0.63 area 0
ip address 192.168.23.101
255.255.255.224 network 192.168.20.64 0.0.0.63 area 0

no shutdown network 192.168.20.128 0.0.0.63 area 0

network 192.168.23.96 0.0.0.31 area 0

interface GigabitEthernet0/1
description Management VLAN Interface
ip address 192.168.20.1 255.255.255.192
no shutdown
interface GigabitEthernet0/2
description Research VLAN Interface
ip address 192.168.20.65
255.255.255.192
!
=========================
=========================
====================
! DISTRIBUTION SWITCH CONFIGURATION
!
=========================
=========================
====================
enable

no shutdown configure terminal

hostname Distribution-Switch

interface GigabitEthernet0/3 no ip domain-lookup

description Human Resource VLAN enable secret cisco123

Interface line console 0
ip address 192.168.20.129 password console123
255.255.255.192
login
no shutdown
logging synchronous
line vty 0 15
password telnet123 interface Vlan99
login description Management VLAN
service password-encryption ip address 192.168.23.102
255.255.255.224
banner motd #Authorized Access Only!
Violators will be prosecuted!# no shutdown

vlan 99 interface range GigabitEthernet0/1 - 4

name Management description Trunk to Floor Switches
vlan 111 switchport mode trunk
name Management_Dept switchport trunk allowed vlan all
vlan 112 no shutdown
name Research_Dept
vlan 113 interface GigabitEthernet0/5
name HR_Dept description Link to Core Router
vlan 121 switchport mode trunk
name Marketing_Dept switchport trunk allowed vlan all
vlan 122 no shutdown
name Accounting_Dept
vlan 123 ip domain-name osctech.com
name Finance_Dept crypto key generate rsa
vlan 131 1024
name Logistics_Store_Dept ip ssh version 2
vlan 132 line vty 0 15
name Customer_Care_Dept transport input ssh
vlan 133 login local
name Guest_Area
vlan 141 !
=========================
name Administration_Dept =========================
vlan 142 ====================

name ICT_Dept ! ACCESS SWITCH CONFIGURATION

vlan 143 !
=========================
name Server_Room =========================
====================
enable switchport trunk allowed vlan all
configure terminal no shutdown
hostname Floor1-Switch
no ip domain-lookup interface range FastEthernet0/1 - 20
enable secret cisco123 description Management Department
line console 0 switchport mode access
password console123 switchport access vlan 111
login switchport port-security
logging synchronous switchport port-security mac-address
sticky
line vty 0 15
switchport port-security maximum 1
password telnet123
switchport port-security violation
login shutdown
service password-encryption no shutdown
banner motd #Authorized Access Only!
Violators will be prosecuted!#
interface range FastEthernet0/21 - 40
description Research Department
vlan 99
switchport mode access
name Management
switchport access vlan 112
vlan 111
switchport port-security
name Management_Dept
switchport port-security mac-address
vlan 112 sticky
name Research_Dept switchport port-security maximum 1
vlan 113 switchport port-security violation
name HR_Dept shutdown
no shutdown

interface Vlan99
description Management VLAN interface range FastEthernet0/41 - 48

ip address 192.168.23.103 description Human Resources

255.255.255.224 Department

no shutdown switchport mode access

switchport access vlan 113

interface GigabitEthernet0/1 switchport port-security

description Trunk to Distribution Switch switchport port-security mac-address

sticky
switchport mode trunk
switchport port-security maximum 1
switchport port-security violation
shutdown
no shutdown

ip domain-name osctech.com
crypto key generate rsa
1024
ip ssh version 2
line vty 0 15
transport input ssh
login local
username admin privilege 15 secret
admin123