270 likes | 417 Views
Distribution. ED01. English. Code : STM#116. Proposed Network Configuration. Samsung Electronics Co., Ltd. Objectives. After successful completion of the course the trainees should be able to execute the following activities. To understand basic technology of the network. TBD. Contents.
E N D
Distribution ED01 English Code : STM#116 Proposed Network Configuration Samsung Electronics Co., Ltd.
Objectives • After successful completion of the course the trainees should be able to execute the following activities. • To understand basic technology of the network. • TBD
Contents WAN Configuration VoIP Network Configuration Switch/Router Configuration Security Configuration
Data Service WAN interface on the Serial ISP CSU/DSU 10.0.0.x • IP Telephony V.35/HSSI • Management 10.0.0.x
IP Telephony • Data Service WAN1 and WAN2 interface with the ISP DSL DSL DSL Internet Dynamic VDSL Modem Modem Static 61.77.137.81/25 LP40 MP40 Gateway 10.0.0.1 MGI Call server 10.0.0.2 Media Gateway 10.0.0.3
Digital Phone • Digital Phone 2001 2001 System to System Site #A IP Phone ADSL 165.213.109.100 3202 165.213.109.100 3202 Internet #1 IP : 61.77.207.154 MP40 : 10.0.0.2 MGI : 10.0.0.3 Site #B VDSL VDSL IP Phone ADSL IP Phone 61.77.207.150(DHCP) 3201 #2 IP : 61.77.137.81 MP40 : 192.168.0.2 MGI : 192.168.0.3 10.0.0.20(DHCP) 3201
Data Service DSL Configuration ISP AP WIP5000M Modem DSLAM PDA GWIM Laptop PC WLI GWSM GPLIM GPLIM • Management • IP Telephony
VoIP Phone • Digital Phone 3201 2001 Public IP Phone • Home Internet 192.168.0.100 3202 WAN : 165.213.89.178 IP : 10.0.0.10 Public IP : 165.213.89.178 LP40 GWIM MP40 LAN : 10.0.0.x MGI64 GPLIM 16DLI IP : 10.0.0.15 Public IP : 165.213.89.178 LAN : 10.0.0.100
Digital Phone 2001 NAPT for VoIP Service Public Fixed IP : 165.213.109.186 Inter Private IP : 10.0.0.1/24 165.213.109.186:6000U • Home MP40 • IP phone 165.213.109.186:9000U 165.213.109.186:30000~30031U 165.213.109.100 3202 165.213.109.100 3202 MGI 10.0.0.20 3201 10.0.0.2:6000U 10.0.0.2:9000U MP (10.0.0.2) 10.0.0.3:30000 ~30031U MGI (10.0.0.3) NAPT
IP Phone PC SIP SIP SIP SIP standard SIP standard SIP standard SIP ALG IP : 168.219.149.225 Internet ADSL WAN : 165.213.89.218 LAN : 192.168.1.1 IP : 192.168.1.180 IP : 192.168.1.181
GWIM and GSIM QoS AP WIP5000M Internet PDA Auto-QoS Auto-NAPT Service Laptop PC • VoIP Group 10.0.0.0/24
GPLIM QoS Internet port based QoS (using port priority) MP40 GWIM GPLIM MGI • IP phone with 5 • value of 802.1p tag field • IP phone with 1 • value of 802.1p tag field
IP Phones • PC • Server Farm Layer 3 Routing • GWIM : L3 Routing, QoS, Firewall/IDS, VoIP Service • GSIM : L3 Routing, QoS, VoIP Service • GPLIM : QoS, PoE External Optical Cable : Sx,Lx PSTN Internet 1000Base-Sx/Lx V.35/HSSI GWIM GPLIM GWSM External Optical Cable : Sx,Lx Fail over & Load balancing GPLIM GPLIM 10/100Base-Tx with PoE Max. 2 PLIM per cabinet (24ports)
IP Phones • PC • Server Farm Layer 3 Routing with NAT • GWIM : NAT/PT, DMZ, QoS, VoIP Service • GSIM : L3 Routing, QoS, VoIP Service • GPLIM : QoS, PoE PSTN Internet Mail Server Web Server External Optical Cable : Sx,Lx V.35/HSSI DMZ 1000Base-Sx/Lx GWIM GPLIM GWSM External Optical Cable : Sx,Lx Fail over & Load balancing GPLIM GPLIM 10/100Base-Tx with PoE Max. 2 PLIM per cabinet (24ports)
Training Center • R&D Center • DMZ PC 192.168.1.101 PC 192.168.1.102 PC 192.168.2.101 PC 192.168.2.102 PC 192.168.2.103 Web Server FTP Server Two Internal Network WAN Configuration 165.213.97.100 192.168.1.1 (GSIM #1) 192.168.2.1 (GSIM #2) Internet LAN Configuration 192.168.1.1/24 192.168.2.1/24 192.168.0.x • Server Access Group Server 192.168.1.10
IP Phones • PC Layer2 Switching and Router • GWIM : NAT/PT, DMZ, IDS, QoS, VoIP Service • GPLIM : QoS, PoE Internet GPLIM GWIM GPLIM 10/100Base-Tx with PoE Max. 2 PLIM per cabinet (24ports)
VoIP Group • PC Group • Test Group 10.0.0.0/24 10.0.1.0/24 10.0.2.0/24 VLAN Configuration Internet LAN Configuration IP : 10.0.0.1/24 Multi IP : 10.0.1.1/24 10.0.2.1/24 MP40 GWIM GPLIM MGI
Configures OSPF 7400 B 192.168.30.0/24 172.16.0.0/24 7400 A 7400 C PC PC 10.0.0.100 10.0.0.100 10.0.0.0/24 30.0.0.0/24 7400 A router ospf 1 redistribute connected subnets network 192.168.30.0 0.0.0.255 area 0 7400 B router ospf 1 redistribute connected network 172.16.0.0 0.0.0.255 area 0 network 192.168.30.0 0.0.0.255 area 0 DataServer >> enable >> configure terminal >> router ospf >> network 172.16.0.0/24 area 0 >> redistribute kernel >> redistribute connected 7400 A Routing Table C 192.168.30.0/24 is directly connected, Serial0 172.16.0.0/24 is subnetted, 1 subnets O 172.16.0.0 [110/49] via 192.168.30.2, 00:01:11, Serial0 10.0.0.0/24 is subnetted, 1 subnets C 10.0.0.0 is directly connected, FastEthernet0 30.0.0.0/24 is subnetted, 1 subnets O E2 30.0.0.0 [110/20] via 192.168.30.2, 00:01:11, Serial0 DataServer Routing Table O>* 10.0.0.0/24 [110/20] via 172.16.0.1, eth0, 00:02:31 C>* 30.0.0.0/24 is directly connected, eth1 C>* 127.0.0.0/8 is directly connected, lo O 172.16.0.0/24 [110/10] is directly connected, eth0, 00:03:10 C>* 172.16.0.0/24 is directly connected, eth0 O>* 192.168.30.0/24 [110/74] via 172.16.0.1, eth0, 00:02:32
IP Phone PC PC PC DHCP Configuration Internet ADSL WAN : 165.213.109.186/24 LAN : 10.0.0.1/24
Data Service • Un-trusted Network • IP Telephony Configure a IDS 165.213.88.100 Mail server 165.213.109.0 Internet 165.213.87.230 • Management 165.213.89.238 10.0.0.0 10.0.0.0
DMZ • Management • IP Telephony Web Server FTP Server Configure a DMZ ISP Modem DSLAM 165.213.97.100 192.168.0.x 10.0.0.x 10.0.0.x
VPN Configuration • IPSec and IKE (Internet Key Exchange) Tunneling (IPSec, PPTP, L2TP) #1 IP : 165.213.109.185/24 10.0.0.1/24 #1 IP : 165.213.89.245/24 192.168.1.1