310 likes | 413 Views
Accounting & Financial Services Corporation. Accounting & Financial Services Network Design By Michael J. Smith Nov. 14, 2011. Network Objectives. Security. Prevent unauthorized access. Speed. Bandwidth must meet demand. Reliability. Contain redundancy.
E N D
Accounting & Financial Services Corporation Accounting & Financial Services Network Design By Michael J. Smith Nov. 14, 2011
Network Objectives • Security.Prevent unauthorized access. • Speed.Bandwidth must meet demand. • Reliability.Contain redundancy. • Scalability.Sustain scalability without the need to rebuild entire network.
Design Assumptions • AFS does not have a network. • Departments reside on a separate floors. • AFS does not share buildings with any other businesses. • AFS wants to use MS Windows & Office. • 100Base-TX for LANs and 1000Base-FX for the WAN will suffice. • The network design must only ensure that it is logically secure.
Network Needs • Accommodate file sharing, including text files, graphic-heavy files, and database information. • Accommodate 1,600 users across seven locations. • Accommodate web-based applications. • Prevent unauthorized access.
AFS Network Design One wide-area-network connecting all the offices to AFS headquarters using a star architecture. A backbone network that will connect all the LANs in each branch office to the WAN. Several department local-area-networks that will connect workstations in departments together. AFS network will not be meshed to save money.
AFS Wide-Area-Network • Each location has a router. • Each location is connected to AFS HQ using 1 GbEover fiber cables. (1000Base-FX). • Each location has a media converter. • All Internet traffic is routed to AFS HQ to limit entry points. • The Dublin office contains redundancy. • Both AFS HQ and Dublin have firewalls and anomaly detection systems. • Each location has a L3 switch.
AFS HQ Backbone Network • AFS HQ BN requires needs eight L2 switches. One for each LAN, one for the DMZ. • AFS HQ needs one L3 switch to connect core to distribution layer. • 100Base-TX over Cat 5e will be used in the AFS HQ BN. • The HQ BN will not contain any security beyond the DMZ.
AFS Backbone Network • 100Base-TX over Cat 5e will be used in the AFS BN. • Each AFS location needs one L2 switch for each department LAN and one for the DMZ. • Each location needs one L3 switch to connect core layer to distribution layer. • The BN will not contain any security beyond the DMZ, as security will be handled by the anomaly detector and firewall at HQ.
AFS HQ MDF Diagram • HQ will contain a firewall, an anomaly detector, and an intrusion prevention system. • HQ will have a web server in its DMZ. • HQ has two more departments than branch offices.
AFS HQ Local-Area-Network • 100Base-TX over Cat 5 will be used. • Department LANs will be dedicated server networks with a star topology. • Multipoint circuits will be employed.
Branch Office MDF • The Dublin office will contain network redundancy. • It will contain a firewall, a traffic anomaly detector, and an IPS. • Each MDF will contain one L3 switch and six L2 switches. • Branch Office department LANs will have DMZs that contain email servers.
Branch Office LANs • Each department has its own database, file, and print server. • Department LANs will require a patch panel and an L2 switch.
IP Addressing • IP addresses were assigned consistently across branch offices. • Should allow technicians to identify servers by IP address. • For example: A server with IP 150.15.84.10 is located in Burbank, CA. • The “8” in “84” tells us it is in Burbank because it falls in the range 150.15.80.1 – 150.15.95.254. • The “4” in “84” tells us that the server belongs to the Customer Service department because it falls in the range 150.15.84.1 – 150.15.84.254. • The “10” tells us that it is a file server because all branch office file servers end in 10.
Accounting Department Organizational Structure - Remote Offices • AFS Accounting Department At Remote Offices • Each remote office has 38 employees with the following organizational structure. Executive VP & Controller Exec. Assistant Assistant Controller Director of General Accounting Director of Purchasing Budget Manager Internal Audit Manager Accounting Manager Purchasing Manager Sr. Budget Analyst Accounting Manager Sr. Accountant Buyer Budget Analyst (3) Sr. Internal Auditor General Accountant (3) Jr. Buyer Jr. Budget Analyst Jr. Internal Auditor Bookkeeper II Sr. Purchasing Clerk Budget Associate Accountant (3) Bookkeeper (2) Purchasing Order Clerk Budget Clerk Accounting Clerk Bookkeeping Intern Purchasing Intern Budget Intern Accounting Intern
AFS Network Cost Total Network Cost for Configuration #1: $14,257,634.18 Total Network Cost for Configuration #2: $15, 459,923.39