Solution to major problems of the network

The initial concerns on the UMUC network are addressed as follows.
• The high rate of packet collision is due to the bus topology of the current network. The recommended solution is “Tree topology” which will dramatically reduce the packet collision and enhance network performance.
• A single Domain by the name of UMUC.local will be created to centralize network management. After the creation of this domain, there will be two child domains that will be created on the Domain controller by the name Staff.UMUC.local and Student.UMUC.local. A domain is a security boundary which house resources and there access is granted to personnel who work with or on those resources.
• Another T1 line can be installed and can be used as a backup link to the internet. When the first T1 line goes down the other T1 line, with a sleeping mode, can be configured to go up and supply the internet. The additional link will serve as a backup.
• The Microsoft Windows Backup and recovery system will be utilized to Backup data on computers.
• A firewall, Intrusion prevention system (IPS) or Intrusion detection system (IDS) can be deployed safely in the server room for the security of the internal network. Since the network is not too big, and the data is not very sensitive, the firewall will suffice for the security of the network.

The ideal firewall solutions for small business integrate a hardware firewall with software controls into a comprehensive security solution that includes virtual private network (VPN) support, antivirus, antispam, antispyware, and content filtering capabilities (Cisco, n.d.).
• A DHCP (Dynamic Host Configuration Protocol) could be deployed in the server room for automatic IP addressing removing the need for static or manual IP addressing.

Network Design
The total number of computers on the first floor are 69. The total number of computers on the upper floor are 99. This makes a total number of computers to be . There will be two servers.
One of the servers will be a domain controller and a DNS server. The other sever will be a domain controller and a DHCP server.
We will have 2 Layer 3 switches of 48 ports and one Layer 3 switch with 24 ports on the first floor to provide network connectivity. We will install a two layer 3 switches with 48 port and a 12 port Layer 3 switch on the second floor. We will be able to connect computers including the server and the firewall Cisco, n.d.) .
On the 2nd floor, there are 99 computers and one server (domain controller/DHCP). The Layer 3 switches will be configured with VLANs. This VLANs work like subnets. It will drastically reduce domain broadcasting and improve the network performance. These two switches will be connected through a Cisco router to enhance network performance. These switches are layer 3 so the computers will be able to communicate despite VLAN creations.
All the switches will be connected with each other via Ethernet cable creating a tree Topology.
In the tree topology all the computer in the vicinity like a lab or a staff area, are connected with via Ethernet cables switches and all the switches are joined together with Ethernet cable.
There will be one empty Active directory Domain that will be created which will contain no objects. Under that there will be two child Domains. One domain will be called Staff.UMUC.local. The second domain will be Student.UMUC.com. Active Directory is a repository of all the objects on the network. Objects like computers, domains, Sites and Servers, etc.
The Student.UMUC.local domain will only contain student computers and permission and rights will be given only to students to access this domain. Students will not be able to gain access to other three domains.
The Staff.UMUC.local domain will contain Staff computers. The staff members will be given access to the computers contained in that domain.
Finally, the Staff.UMUC.local domain will also contain all the devices related to the internet such as internet proxy server and wifi devices.

Server Deployment for UMUC

Server Deployment for UMUC
Two Microsoft Domain controllers running Windows 2012 Server edition will be deployed in the physically secure server room which will host all four domains. All the Work Station will be deployed with Windows 8. The domain controllers will host all the four domains. The network Administrator will grant appropriate user permissions to the respective domains.
DNS server will also be deployed on one of the Domain controller. DNS server provides host name to IP address resolution and vice versa.
A DHCP server will be deployed and configured on the machine for Automatic IP addressing for all the machines.
A Firewall device, will also be needed to protect the network from threats from outside. This will enhance the security of the network for many folds. The internet T1 line should pass through the firewall. It should be connected to a wifi router to provide internet to the students.
1. Network Address (definition)
Network address or IP address is the number that tells a host the location of another host. The communication between the devices is facilitated by Network addresses. The total number of Work Stations on the network are 186. It is recommended to have 21 hosts on a single subnet (Network segment). Each subnet will contain 21 computers connected. A LAN router will be connected with the switch connecting these 21 computers to reduce broadcast, improving network speed. This will make 14 subnets. A VLAN should not have more than 23 subnets for IP based VLANs (Supportforums.cisco.com, 2005).
Subnet Mask (definition):Subnet mask is a series of number that distinguishes between the Network ID and the Host ID on a network address. We will use the subnet mask 255.255.255.240.
IP Addresses scheme of the UMUC network: The range of IP addresses that will be used will be from 10.15.0.1 to 10.15.0.190. The 188 Work Stations will get a single IP address on a lease from the Domain DHCP server’s IP address pool.
• Each server will have a static address. The Domain controller with DNS will get a static IP addresses 10.15.0.187.
• The other domain controller with the DHCP on the same box will get the static IP address 10.15.0.188.
• The internal NIC (Network interface card) of the Firewall will get the Static IP 10.15.0.189.

Physical Network Design
Q1. Define the topology that will be used.
Ans. The Tree topology will be used.
Q2. Select the appropriate network media to use.
Ans. STP (Shielded Twisted Pair) Ethernet cable will be sufficient
Q3.Select the appropriate network connecting devices to use.
Ans. Hubs are not recommended since they create too much broadcast. Switches will be ideal because they use multicast technology. One Firewall with two interface cards will be sufficient.
1. Physical layout of the computers on the floor plan.

Computers on the floor

2nd floor

2. List of additional servers or network devices needed to implement the network.

• Two domain controller servers one installed with DNS and the other installed with DHCP on the same machine.
• One Firewall (Cisco RV220W is recommended)
• Layer 3 Switches
3. Justifications for your network design (number 1 – 5 above)
The Tree topology is one of the best topologies to minimize packet collisions in the network. The Ethernet STP network cables are the de facto standard of Ethernet networks. Switches are Multicast technology and do not rely on broad cast as Hubs. Therefore, switches are able to enhance network performance.

Network Diagram
*Network Diagram

References
Supportforums.cisco.com. (2005). Recommended number of hosts per subnet – cisco support community. [online] Retrieved from: https://supportforums.cisco.com/thread/23147 [Accessed: 16 Feb 2014].
Cisco. (n.d.). Firewall solutions for small business. [online] Retrieved from: http://www.cisco.com/cisco/web/solutions/small_business/resource_center/articles/secure_my_business/firewall_solutions_for_small_business/index.html [Accessed: 17 Feb 2014].

Cisco. (n.d.). Cisco catalyst 3560 series switches data sheet. [online] Retrieved from: http://www.cisco.com/c/en/us/products/collateral/switches/catalyst-3560-series-switches/product_data_sheet09186a00801f3d7d.html [Accessed: 18 Feb 2014].
Cisco. (n.d.). Firewall solutions for small business. [online] Retrieved from: http://www.cisco.com/cisco/web/solutions/small_business/resource_center/articles/secure_my_business/firewall_solutions_for_small_business/index.html [Accessed: 17 Feb 2014].