Company Network Design & Implementation Using Cisco Packet Tracer | Enterprise Network Project #6

Video Statistics and Information

Video

Captions Word Cloud

Reddit Comments

Captions

hi guys welcome back to my channel and thank you so much for clicking so basically today we're going to undo the enterprise networking project 6 and as you can remember we've covered project 1 2 3 4 and five and suppose you will not access the classes i will leave links on the description part of the video or the first comment click on the links and get access to the projects and another option you can go to our channel blue tech networking training then under this section the playlist click on the playlist then scroll scroll here enterprise networking projects you click on the enterprise tracking projects and these are the recorded projects that we have so far we had our first project as the simple networking project then we had a small small office home office network then hotel management system then compass management system and finally bank network design and today guys we are going to look into the sixth enterprise networking project and suppose you're new to this channel or even if you're not subscribed to a channel kindly do us that favor click on the subscribe button like our video and share this video okay guys so without any further ado let's start we normally get projects or case studies from friends students or clients across the world and we analyze the case study design a network and implement the network based on the requirements on that case study so in this case project 6 we add a case study from a client so let me just open the case study this one so this was our case study enterprise networking project six a trading floor support center employs 600 stuffs stuff they have recently expanded and as a result need to move to a new building a building has been identified but as no network this means that before they can move out new network service needs to be designed and implemented in the new building exists existing network comprises of the following so we have the new building is expected to have three floors with two departments in each floor okay so for the for example first floor we had sales and marketing department combined to have 120 users human and human resource and logistics department combined have 120 users and in the in the second floor we had finance and accounts department combined having 120 users and also admin administrator and public relations department combined ad 120 floor 120 users i mean okay then finally on the third floor we had ict department having 120 users and the server room having 12 devices okay therefore as a key member of the network team you have been tasked to design a network for the new building at this stage locally logically design is required which shows the measures that you would put in place to ensure that the new network meets the current business need and it's future proofed okay so guys we have requirements here we are required to use cisco packet tracer to design and implement the network solution then number two use hierarchical model providing redundancy at every layer for example two routers and two multi-layer switches are expected to you to be used to provide redundancy okay the network is also expected to connect to at least two isps to provide redundancy and each router today connected to the two isps i think there was some grammatical headers there but no problem it means each router to connect to the two sps okay each department is required to have wireless network for the users okay each department should be in a different vlan and in different subnet okay provided a business talk of this one carry out submitting to allocate correct number of appearances to each department all right the company network is connected to the static public iprs internet protocol with this one okay to the two internet providers all right number eight configure basic settings such as hostname console password enable password banner messages and disable ip domain lookup right ok devices in all the departments are required to communicate with each other with the ma with the respective mutual switch configured for intervalon routing the multilayer switches are expected to carry out both routing and switching functionality that will be assigned ip addresses okay all devices in the network i expected to obtain an ip address dynamically from the dedicated dcp server located at the server room all right devices in the server room are to be allocated ip address statically all right number 13 use ospf as the routing protocol to advertise routes both on the routers and multi-layer switches okay configure ssh in all the routers and layer 3 switches for remote logging okay number 15 configure port security for finance and accounts department to allow only one pc only one device to connect to a switchboard use sticky method to obtain mac address and violation mod shutdown number 16 configure network address translation with part party spot address translation is a part of part it's part of a nut i mean to use the respective outbound router interface ipv4 address implement the necessary scl rule test communication and ensure everything configured is working as expected guys this is a very long project and a very important project so we have several technologies that we are going to implement here as you can see all of these from number one to number 17 from the design to testing communication all right all right so guys let's start analyzing this case study we have read the case study and have identified that there is a company that employs 600 staff okay and the company has three floors first floor second floor and third floor and each floor has at least two departments and in those departments their respective number of users okay or devices in this in those departments i mean okay all right and after designing that kind of a topology we are required to implement some technologies okay let's start the design part we are going to use cisco packet tracer to design and implement the network solution we are using we are required to use hierarchy called network model you you know hierarchical network model consists of access distribution or aggregation and the co-layer okay so for example as you can see here we have the two routers and two multi-layer switches are expected so the two routers will be at the cool layer the two modular switches will be placed at the distribution layer okay then we'll be having several access layer switches connecting to the respective departments okay so let's do that very fast i'll go back to our packet tester and [Music] and i'll choose this router 2911 router 12 them let's place it somewhere here two of them okay and i'll say this is score out of one and this is called r2 code router 2 okay then we need two distribution layer switches and for the distribution layer switches guys i will choose this one 3650 two of them we need two of them okay all right 36.50 okay all right so this one i'll say this is uh i just said much less which one and these are also to be multi materials with two okay then guys we have several departments we have so we already have the collar the distribution layer so let's implement the access layer and in the case of access layer guys we're going to refresh on the number of departments so i'll open the case study we had how many departments in the first floor we had two departments second floor two and third floor two so we have six departments okay so i'll need six access layer switches take 29 60 and place it somewhere here that is first floor let's see that first floor and then second floor also we had two and finally third floor we also had two departments okay all right so let's continue reading let's continue reading the network is expected to connect to at least two isps okay with each router connecting to the two isps all right so let's assume we had a sps routers there two of them and for the case of asp let me just choose this one 29 11 router that one so these are cisp one isp sorry isp1 and this one is isp2 okay all right so guys this is our design in complete design and we need to connect them using the correct cabling so let's analyze this one for the case of the routers i'll use serial connection and for the case of the routers to mud layer switches just a normal straight through cable for the case of multi-layer switches to the access layer switches crossover cables right okay so what is remaining here is to connect them but before that let me name these these these switches very fast for example this was hr okay so as you can see this is sales and marketing department and this one is hr and logistics departments finance and accounts departments administrator and public relations department ict department and server room department okay all right so let's connect them so i will need a serial connection between the the routers okay all right so i'll go to connections then choose serial with dce and when i click there there is no serial port so we need to insert a serial model on the routers click on the router click on the router and turn off the router there is a button here power button turn it off and drag this hw ic iphone 2t to an empty slot then turn on the router then do for the rest also okay so we can connect them freely i take zero dc here connect here take the first interface to this one okay then serial dc again to connect here to that one connect to that one okay thirdly with the dc here connect this one that one this one okay then this one also from this one to this one okay so we've connected uh their speeds successfully so now let's do connection between the routers and the multi-layer switches and in that case i'll use just automatic that's and finally between the material switches to the access layer switches okay guys so as you can see in our topology we've implemented redundancy and each access layer switch switch is connected to at least two multi-layer switches and each multi-layer switch is connected to at least two routers and each each internal router here is connected to isps so that is redundancy that is in redundancy okay so let's include the host devices in each department for example need a pc a printer and an access point remember on the case study there was a point that says each department is expected to have wireless network for the user so there we need access point so a pc a printer and access point access point will connect to let's say a smartphone or a tablet so let's just take a tablet here okay and the laptop in each department okay then i go to access access points choose pt ap pt right okay so that is the first department let's say it's here okay all right so what i'll do i'll copy these to all other departments so i'll do it very fast to save time okay guys so as you can see i have uh copied all the the required devices to each department so what i'll do guys as you can see these devices are just connected to any other access point because we will not set any password to the access points so what i'll do i'll do the naming very fast to save time okay guys so as you can see i've named the for the five departments and i forgot something here on the server room we are not supposed to include this one i will include servers for example dcp server email server and dns server right okay so i'll do that very fast i will lead this this one okay and then when i print i'll remove here okay okay so this one i'll say system admin pc okay to manage the devices so here we need uh how many servers let's say three just for for demo purpose okay all right so i'll do that very fast and name them dcp server dns server and email server okay so i'm done i'm done as required guys okay so what i'll do is to connect them connecting with the access layer switches and i'll do that very fast to save time also okay so we have connected all the devices and as you can see i'll just try to zoom out as you can see guys we have connected all the devices and as you can see there is redundancy in our network there is redundancy in our network okay all right so what i'll do guys is to identify which floor is this one which department is this one and i'll do that one very very fast so for example so we have identified which flaws are this i'll just say this is first flow first flow okay and this is second flow second flow and finally this is third flow okay all right so do just a minute okay now let's identify the departments i'll do that very fast okay guys so as you can see i've identified the flaws plus the department so what i'll do just to name the departments very fast okay okay so finally guys as you can see we have identified which floors are this one plus the departments right for example this is sales and marketing departments hr and logistics finance and accounts admin and public relation ict and finally server room okay all right so guys basically what i'll do as you can see these interfaces are in shutdown state so guys we need to turn them on turn them up for layer 3 switch this one it doesn't have power supply so we must include the power supply i'll just click on the layer 3 switch and drag this up supply i mean and place here that's done come back to this one also drag the power supply and place there right okay okay so that's done they will turn up as you can see now they are holding this all right so what i'll do guys what i'll do guys also for the for the switching for the router's interfaces i'll turn them up click on the router come to config turn this on up turn on turn on okay guys so guys basically our design part is almost complete so i'll just reset so that we can receive the the normal size okay so as you can see i'll eliminate i will identify these as their c isp let me use blue color these will be our isps okay i'll name them later as we proceed okay so guys basically i think uh this is our design and as you can see it's beautiful and uh the network has a currency and now we can just proceed with the configuration part and i'll just open the case study again and start reading all right so each department is squared over different vlans okay all right okay okay okay configure basic settings so guys we need to start with the configuration and for the configuration guys i have already highlighted few steps that we need to follow to configure these network topology here so these are the steps that i have already highlighted we're going to start with basic settings to all devices plus ssh on the routers and layer 3 switches okay all right so let's start with this sales switch and click on the cell switch enable config t then we need to configure hostname let's name to be let's say sales sales switch okay and then also bana message banana moti let's say inside those two characters let's say no and authorized access okay then what else we have to configure console password enable password and disable ip domain lookup so no ip domain lookup okay then learn console console 0 let's say password to be let's just use cisco for all the password that will use here okay then login exit exit i mean and now what's remaining enable password enable password to be cisco i mean cisco also right cisco okay and guys there's one thing that they forgot to mention here to encrypt all the password service password encryption okay exit right okay so guys we've configured basic settings on that switch and any other thing that we can add at the layer 2 and the layer 2 okay so let's proceed to other remaining devices so for other remaining devices guys i will write the codes the commands on notepad and copy to all other remaining devices to save time so let me open notepad for example we need hostname enable config okay then hostname hostname let's say this is hr switch hr switch okay then line console console 0 password to be cisco then log in the user and exit all right so enable password also enable password to be cisco also so i'll copy that one enable password to be cisco then no ip domain lookup disable ip domain lookup ip no ip sorry no ip domain lookup okay then bana moti remote td two characters inside the characters which they say no and authorized access all right so what's remaining here service password encryption transcript to encrypt all the passwords service password and encryption all right so let me check if i'm leaving anything here hostname console this one burn a message all right so guys as you can see i think i have um then do right okay so i'll copy this one to this switch and for other remaining switches i'll just i'll just uh i'll just uh modify the name and copy right so let's do that very fast to save time okay guys so we're done with the with the layer 2 switches access layer switches so we'll proceed to multi-layer switches and for the case of multiplayer switches guys and the routers guys we are going to include ssh okay okay all right so how do we configure the search guys so first of all i'll just paste the commands here and just say this is my clear switch one multi-layer multi-layer sichuan okay and i copy and then paste all right so let's proceed to configure ssh the first thing to do when configuring ssh make sure the switch has a username host name i mean not the default host name but the configured one right and then the second thing is to configure ip domain name domain name for example ip domain name let's say cisco dot net okay then configure username and password username username to be admin password to be let's say cisco okay good then after this one you create crypto keys crypto key generate rsa then the modulus length is 10 24 okay all right so like learn which you enter line v2y 0 to 15 0 to 15 you say login local to use the local database then make which ui login to use only ssh transport input ssh exit exit do right so guys i'll write the commands also on notepad and copy today switches and the routers all right all right so the first thing is to do is to configure ip domain name let's say cisco dot net okay remember we have configured those name here now this is switch material switch to we have configured those names so we proceed to configure domain name then username username let's say admin uh-huh which did i use at the mean with a to b d capital a or just uh let me just confirm just a minute small small a right okay no problem now so admin admin password to be to be cisco okay then crypto key generate rsa then you hit enter 1024 modulus length okay then enter line v2y 0 to 15 log in local okay use the local database then allow only ssh to be used for remote access okay transport input input ssh exit the interface and do right so guys i'll copy this to the to the remaining layer 3 switch and the routers so what i'll do just to modify names here this is for switch 2 which is this one now for the router i'll just say this is core router 1 r1 okay guys so guys we're done here i'm not going to configure isp routers you know i don't have control over the isp routers okay so i will not configure them what i'll just configure for demonstration purpose is just i peered this to these interfaces okay but rose name and all the rest i won't configure on the isp routers all right so guys also i've forgotten something the version of ssh so let's configure the version of ssh ip ssh version to be version 2. so do right that's done let's configure version of a search very fast ip version ipss version to be version 2 do write okay then to the routers also okay now we are done now we are done guys all right so we're done with the first step the first step was to configure as you analyze our config steps the first step was to configure basic settings to all devices plus ssh on the routers and layer 3 switches now the second step is to configure valence and assign parts the roles of access and trunks on both the layer 2 and 3 switches and now i'm going to combine step 2 and step 3. switchboard security finance department when i will reach finance department switch i will configure switchbot security okay so like guys let's start with assigning vlan numbers okay so what i'll do guys and i said i'll say this is vlan 10 20 30 40 50 etc etc so let me do that very fast okay now that's done now let's start configuring vlans to sales switch sales department switch okay and remember we need to ascend ports roll of trunk and axis for example when you analyze this switch here all the interfaces that are connected to the layer 3 switches will be trunk ports and all the all the interfaces that are connected to the devices are access ports so for example this one is a phase 0 slash 2 and just a minute f 0 1 and a phase 0 slash 2. so during my cabling it was a pattern for example this is a fade through slash one fs002 fs361 a phase rush has two exit exits okay okay so i'll just i'll just click on this switch here and begin configuration cisco password password or cisco enable cisco all right so config so interface arrange fa zero slash one to two the this one this one and this one okay it's a pattern the two interfaces of all the layer two switches that are connected to the layer three switches are a phase resistance one and a phase inducer's two so there must be trunk pots okay all right so switch part mod trunk okay exit now let's create vlan vlan 10 name sales sales okay exit now let's assign parts to that valence so for example from fh0 3 which is this one two f 0 24 should access vlan 10 so interface range f 0 slash three i mean two twenty four remember a switch has twenty four parts first internet ports plus two gigabit ethernet ports okay all right so we are not going to do anything with the diabetes and imports so in this case just fascinating parts but for the gigabit either enforce you can just send them to another vlan and shut them down okay switchboard mode access then switchbot access vlan 10. okay exit do right so guys what can we do with the gigabit either in parts let's assign them to another unused villain which is called villain villain 99 name black black hole villa okay exit so interface range gig zero slash one to two switch part mode access then switchboard access vlan 99 okay then no i mean shutdown shut down those interfaces shutdown all right exit do right so guys i'm going to copy those commands on notepad and copy to the remaining layer 2 switches okay remember we are creating two vlans on each layer two switch the first villain is to access the parts and then to access the usable parts and the second villain is to access the unusable parts okay all right so let me just do that very fast i delete those the first configuration is to configure the first two interfaces to be strength interface range fs012 sorry sorry switchpot mod sorry sorry sorry switchboard mod trunk exit okay now we go to another range so it puts interface range fs0 3 to 24 3 to 24 24 switchboard mode access now okay then copy switchboard access vlan 20 vlan 20. before that let's click the valence vlan 20 name let's say this is hr another vlan is vlan 99 which is black hole name black hole okay then exit those in vlan interfaces all right so guys i've created the interface range this one to this one to access v120 exit then another range should be it should be gig gig zero slash one to two okay accessbilan 99 which is black call all right so do right okay so i'll copy everything and paste to hr switch and for the remaining switches guys i'll just modify the winner the villain number plus the villain name okay for example it will be bill and 30 a name finance then here access bill and 30 but for the black hole villain it's consistent to all other cities right okay so i'll go there and i don't want to sign in using passwords so i'll just say exit and paste right so that's done that's done then i move to this switch here i do it very fast save time okay guys so guys as you can see we have configured the villa numbers the villain to every department and guys as you can see remember i said i will combine step three to step two and step three for the k in the case of the finance department so proceed to finance department and configure support security okay so interface range fa 0 3 to 24 okay sweet pot port security for security then switchboard for security maximum maximum to be only one then switchboard for security address to be sticky command the way it will say there remember here where is it it was somewhere here let me just try to check it out just a minute configure port security to finance and accounts department to allow only one devices to connect switchbot to use sticky method to obtain mac address and violation mode of shutdown so that's what i'm doing so all of these ports should be accessed using one device at a time okay one device i mean okay then you're going to use sticky method to obtain mac addresses right okay then switchboard port security violation mode of shutdown exit do right do show port security all right so as you can see it's there all right so guys i think we're done step two and step three step two and step three only at two switches so guys i'll proceed to layer three switches okay so for layer three switches we won't have access interfaces because if you pay close attention to these switches here guys there are three switches they are connected to the switches and the routers okay so any interface that is connected to the layer 2 switch will be trunk but any interface that is connected to the layer 3 switches will be a layer 3 interface and no switch point let's proceed so for interval and routing that will cover later in this project we have to configure vlans so for example we have how many valencia six villains 10 to 60 10 20 30 40 50 60 all right okay so we'll configure the six vlans to all these switches let three switches i mean okay all right so what i'll do i'll just proceed i'll delete everything and configure the first to configure these parts as trunk ports this one and this one okay so let me just identify which parts are this one this one's fa just a mint fa zero slash three two f a zero slash eight i believe so just a minute just a minute yes so a phaser slash three to eight should be trunk ports okay but this one will be layer three interface of which i will configure later in this project so let's deal first with the trunk interfaces then we configure vlans we create vlans okay so i don't want to sign in using password exit so interface range it's gig just a mint just a minute gig zero three two zero eight interface range gig just a minute it's one just a minute one zero three okay so interface range gig one zero three two eight okay switchboard mod trunk okay exit all right so i'll do the same for the other switch so then switchboard mode trunk to save time then i'm forgetting something i should create vlans and name them all right so villain vlan 10 name sales villain 20 name hr let me just copy this we have six vlans here okay valenti name finance will and 40 name admin vlan 50 name ict and finally we learn sixty name servarum alright so exit do right i copy and paste here first good so we have the valence there now let's move to this switch also and configure the the required interfaces plus the valence exit and i paste okay all right so guys what's remaining let's just go to config steps okay subnetting and ip addressing guys very important very important remember in our case study here in our case study here all devices are in the network i expect to obtain appearances dynamically from dedicated dtp server located at the server room devices in the server room are to be allocated ip address statically okay so we must start with the allocating with manual allocation of devices in the server okay all right so let's proceed guys let's proceed yes i mean i'll open uh our key state again and this was the base network that was given so we need to carry out submitting and allocate the correct number of ip addresses to each department guys submitting takes a lot of time and i've already done that earlier to save time so this is our addressing table okay so for sales department we had this network and this subnet mask remember in sales department we had only 120 devices so this subnet mask satisfies the number of required hosts okay in the hr departments this network and the circuit mask and so on and so forth and now on finance department is this network and discipline mask as you can see okay third floor also this network and disturbance mask satisfying the number of required devices and finally between the routers and layer 3 switches remember we said the layer 3 switches will provide both routing and switching technologies so we might as we must assign appearances to the layer 3 switch interfaces okay then finally here between the routers and on here should be isps okay we we're going to use this one as provided here in the case study this one okay so it's very very simple so what i'll do what i'll do guys i'll proceed to allocate the networks on the network in on our diagram here so for example here was um let's say net to be 172.16.1.0 25. okay so because in server who made only the number of required devices were only 12 here as you can see so the subnet mask changed to slash 28 notation okay all right so i'll do to allocate the network addresses to between between the routers and the electricity i'll do that very fast do so as you can see between the multi-layer switches and the routers will be having these networks as provided here in the addressing table okay all right so let's proceed to provide the addressing to between the routers and the between the routers the co routers and the isp routers okay using this addressing table okay so guys it's done so what's basically remaining is to assign i appear this is to these interfaces okay so as you can see our config step was to submitting and ip addressing all right so we need to assign our appearances to these interfaces of the switch these interfaces of the switch and of the routers also okay so i start from the switches which is a phase 0 one and a phase illustration okay and you know just sign appeared as to a switch lat3 switch interface you must make that interface to be a layer 3 interface by default there are switchbots so you must you must make it to be lf3 interface so what do you do interface range it's a phase zero slash one to two sorry sorry sorry it's gig i mean it's gig gig one zero sorry it's a gig one zero one two two just say no switch switchbot okay okay so now the two interfaces are lab3 interface then i come on this side also interface range gig one zero one to two no just say no switch no switchboard okay do right exit now let's assign ip addresses to those interfaces remember now they are there three interfaces they are routable okay so for example this is gig gig 101 it will take 172.16 172.16.3.145. now this take one four six okay it's because subnet mask is starting notation so we only have two usable appearances okay so the first one is interface gig 101 ip address it's a 172 dot 16 dot three dot one four five let me let me check again yes three dot one four five that's okay i submit mask of uh two 255.255.255.252 because slash 30 prefix okay then no shutdown exit do right then let's go to the other interface which is gig 102 then ips will be ips will be 149 because this is a network so i p address start from 49 149 and 150 okay okay so i make it 149 149 okay then uh no shot do right okay that's done let's move to this switch so this is gig gig002 and this is sorry x01 so g01 i p address to be 172.168.3. remember this is the network 152 is the network 153 then a separate mass of 255.255.255.252. okay no shot exit then the other interface which is or two appearance will be sorry i've got something here it should be 156 144 148 152 156 so that will be 157 now this one will be 157 okay no shot do right okay so guys we've assigned i appeared this to the two interfaces of the layer 3 switch so let's do on the router i start with this router one corrector one so interface gig zero zero is connected to which which switch this one interface gig zero zero is connected to this switch which is uh ips will be dot 156 146 okay so iprs will be 172.16 dot 3.146 okay because this one took 145 and i appear this is 255.255.255.252. no short exit let's move to this interface gig zero one now now gig zero one will be gig zero one appear this will be gig zero one my parents would be 154 because 153 was taken by this interface right now it's 154 154 okay no shot all right guys so let's proceed to configure i paired this up today serial interfaces to the serial interface for example this is serial two zero two one and this one is serial zero two zero so let's start by serial exit interface serial zero two zero and guys the these are one of the most important concept here these are serial interfaces with the dce now we have to configure clock rate if you hover over this interface here you will see a clock sign okay you will see something like a clock sign meaning it's serial dc so we must configure zeroing a clock rate so let's say clock clock rate to be 64 000. okay and now i p address should be i p address a public ips which is a day zone i appear this will be that one dot one zero muscle 255.255.255.252 okay no shot exit now the second serial interface which is that one and uh clock rate also that one and i p address now i appear this will be i play this will be dot five that's five five now shot and do that so guys if that we have done we are done configuring our pdx to this router here so let's move to this router and finally to these routers here so let's start with dx00 so gig zero zero is current to which router this one this is connected to the first multi-layer switch just a minute yes so it should take ipads of this one which will be dot 150 because dot 149 was taken by this interface ip address should be 150 set a mask of 255.255.255.252 no shot exit then x01 is connected to the other switch which will take 158 because that 157 was taken by this interface right okay so it should take 150 158 armenia i pure dash should be ipad it should be should be should be 150 8 i think let me call verify yes you hit enter no shot exit now let's configure appearance to these zero interfaces with the dce which one is this one zero zero two zero this one is zero two zero yeah so zero two zero interface serial zero two zero ipr should be it should be this one dot nine now okay this one is zero zero to zero yes so i appear this should be that one dot nine two five five dot two five five dot two five five dot two five two no shot then clock rate because it's a serial dc interface with a clock rate one two three exit then serial zero two one clock rate first no shot then i appear this okay i play this will be this one not 13 now okay look 13 do right exit so guys what i'll do i said i will not interfere with the isp routers because i don't have control over them but for the demonstration purpose i'll just configure ip addresses to these interfaces okay and a little bit of routing protocol let's say ospf here okay so this one is a just a minute this is serial 3 0 3 0. zero zero three zero should should have appeared as of uh i'll just use uh gui here copy and i come here and i locate here dot two because that one was taken by this router's interface and so that mask will be two five two five two that okay then we move to the other interface which will take uh this one dot 10 that's 10 okay on the subnet mask in that one and just say do right do right okay then now to this router serial 030 is connected to this network which is this one so it will it will take dot six three zero take dot six this is 252 okay and [Music] the remaining this one will take that dot 14 okay because the 13 was taken by this one okay that's 14 okay now it's fine do right okay okay guys so guys we're done with the fourth step and now we're going to configure ospf on there routers and layer 3 switches okay so allow me to close that one first you know this layer 3 switch is connected to how many networks eight networks the six networks of these departments plus the these one one and two those are eight eight networks i mean okay the first network is this one one two three four five and six then seven and eight also this one eight networks so we need to advertise all of these networks okay okay all right exit the first command guys you know we need this raw player 3 switch to carry out routing the first command is to enable routing ip routing that's it's it's enabled now so we can proceed to configure ospf make the switch aware that is using spf of the routing protocol rato spf let's use area 10 a network the first network is this one copy and i paste here that's zero and the world cup mask of uh you know this is stretched on the first rotation so strontium five notation is cooler until two five five two five five two five five dot one two eight so one two eight minus two five five five is equivalent to 127. so the welcome mass will be zero dot zero not zero dot one two seven area zero okay another network will be 128 for this for the for hr department then the second network will be the third network will be 2.0 for finance then 2.2 128 for admin 2.28 for admin then 3.0 for ict and now finally 3.128 for server room but now for the case of server room it has different subnet mask which is slash 28 notation remember this adds the same sub subnet mask of slash 25 okay now this is equivalent to a welcome a world cup mask of 0.000.15. because slash 28 notation is equivalent to 255 255 255 dot 240. so 255 minus 240 is 15. so i'll come here change this one to 15. okay now let's advertise these two networks here these are on this one which is uh 152 and 153 156 copy network i paste that one and now starting notation wildcard mask will be 0.0.0 because subnet mask is 255.255.255.252 so now 255 minus 252 is three area zero okay another network is 156. okay then we are done now i think we have advertised all the eight networks so let's proceed to advertise the other networks too to the other switch also i look up sorry sorry sorry sorry i tried to copy these so that i don't repeat myself copy and paste to all notepad here now what i do is just to remove this one okay the first configuration that you must do is to enable routing ip routing on the layer 3 switch then make the the switch away that's you is using a sphere protocol with the process id of 10 okay now we have to i have to advertise the networks and guys i have to add something i want to add something here let's configure out id route id let this one to be 1.1.1.21 okay all right so i'll move to this switch config t and paste the two there all right so do write exit okay so we have configured router id to this selected switch and we will do this layer 3 switch so these are the networks that you want to advertise on this switch here but remember we have not included these one also so i'll clear i will include these and also there are two of them so i'll come here come to the layer 3 switch and copy this one that has dot 3 and paste twice 1 2 and now modify 3.144 and 3.148 144 only that 148 okay now guys you're done we've configured we've enabled routing on that layer 3 switch then a sphere failure 10 process id i mean ospf with a processor id of 10 then router by d right addition now should be 2 2 two two two okay because uh this one was 1.1.1 okay all right so we'll just try to paste exit come here i copy everything then i come and paste so i can see an incomplete and complete the first one the first one is not complete i don't know why it should be area 0. let me just delete it because it's already hit it's already here okay one okay it's fine it's okay it's okay okay so guys we have advertise how many networks one two one two three four five six seven and eight that's done so what i'll do do right so i move to the routers this router and this router advertise how many networks four networks this one this one this one and this one okay so all right i will do let's say it's three three three three three okay for this router here and we have added advertiser how many the first one is this one the second is this one 152 152 okay this one and this one so the third one is this one android.4 so network that one also copy and i paste here then i copy all of this and i paste here to be dot four okay this one this one this one and this one okay 144 152 dot 0.4 okay so do right exit copy now for for the routers we don't need this first command which is ip routing i copy exit and i paste here all right so it's okay then we move to this router here to check how many times they we need to advertise so this one which is date rotate then the 12 also the 12 and that 148 and 156 and now ideally before 4.4.4.4 copy to this router paste all right so let's move to speed routers this is that is the last thing that i will configure on their speed address because we don't have control over their isp address we're just doing this for demo purpose okay for speed routers they will only advertise how many networks two for example this one will advertise this one and this one so that you further had you let me do that very fast i will move i will remove this one and make this one 5.5.5 5.5.5.5 and this one.0 and that is that eight so let's make this dot zero the two okay move here exit and paste okay then i move to this one so that one will advertise uh four and twelve copy and paste okay so guys we are done configuring spf and i'll just click on the routers to see if there's any ideas in this form so as you can see these routers as far as firmware adjacencies three of them this one is still loading and these switches from romania adjacency is true because it's the it has this one as a neighbor and this one also this switch how many adjacencies it does not form adjacencies so guys we had a problem here as you can remember when we call when we were configuring user id here route id we did that mistakenly right because we we were supposed to do that before advertising the networks so we are being told here to reload and use clear i clear ip spf process for this to take effect so what i'll do i'll just copy this command here all right just do it later let me just reload reload do reload yes yes so let's give it time so that can load and we clear ip spf process so that it can take effect cisco ospf neighbor do show a pspf it is not from running a neighbor sofa let's give it time it's still a booting okay so we'll return there some other times remember the mistake that we did was was this one we advertised the network before we could uh configure without id that was a mistake or can just do this on first i can just copy reset all yes so what i'll do what i'll do go back to our guide here static appear this to server room devices okay all right so let's go to server room devices and configure static ip address to these devices here so for example this they should have this they should take this network here dot 240 or slash 30 slash 28 notation so let's start with our dcp server the sap server will be let it take 30. and this one will be 255 dot 240 okay and the forget will be dot to 129 okay we'll configure default gateway on layer 3 switches when we are configuring interval and routing and now dns server this one we want to make a dns server to our peer desk of that 131 here okay all right that 131 okay let's close that one go to this pcme let it have 132 and appear this summary mass 255 dot 240 default gateway will be 129. dns server 131 then we go to dns server it should be 131 as we have said 255.240 default gate will be 129 to 9 okay and that's just enough i don't need to configure email server now because of time right okay so let's proceed dcp server dhcp server device configuration let's go back to dcp server device configuration to create pools remember to we want to have these devices here were in in these departments to to obtain ipads automatically from this device here okay so i click on the scp server then you come to services then dhcp okay enable here then let's click pull pulse and the network was default gateway should be 172.168.121 okay dns service is uh this one note 131 okay all right okay so this one starter p address should be let's say dot six okay a subnet mask of uh it was 128. okay maximum number of users it should be 120 and add okay since department you can see here we have that one default gate to that one and start allocating ipads from dot six sorry 1.6 1.6 106. yes and subreddit mask should be 128 255 255.128 okay all right so let's move to another pool which is hr hr pull hr pool should be 1.28 128 and if i mean default k2 should be 129 okay because uh just let me just assure you because 128 was a network so proceed okay then start providing from 130 let's say 130 130 130 136 134 okay hr pool then you heard let me check on my shirt pull again if it's correct dna server is correct okay now let's go to finance pool finance pool should be 2.0 this one 2.0 2.0 and start locating from 1.6 okay and this one is just fine and you had then add the mean pool at the mean pool should be 2.129 default gateway then set the locating from 134 okay everything remains the same and sorry sorry sorry so this one should be two add then you come to financier this one should be two save okay all right so let's go to ict department i believe so st department should be ict pool should be 3.0 3.0 and uh 3.1 i mean sorry sorry sorry and there should be three okay and the hard so there's a one place i made hera this one is correct it's correct it's correct finance this one is not correct 2.1 it should be 2.1 this one is correct this one is correct this one is correct now save then i move to admin pool 2.1 that's correct this one is correct it's air pull this one is correct this one is correct and finally sales pool that's correct okay all right so we have done that we have configured the dcp server device now let's do that for let's also do for dns server camp services computing s and enable that service let's say wwe okay and i appear this should be that one and they save sorry sorry sorry sorry sorry add okay okay so that's done we've configured dhcp server we've created how many pulls we've created uh five pools we could not you know server room department we are configuring statically okay all right so let's proceed what's what's next interval and routing on the layer 3 switches plus ipdp helper addresses okay let's do that one very fast we need to configure interval and routing on these two switches this one and this one okay all right so i'll start with this one exit all right how do we configure integration routing remember we have already created valence here on this switch so we just say interval interface vlan 10 okay now shutdown ip address we allocate ip address i appear this to be 172.168.16 i mean dot 1.1 subnet mask of 255.255.255.128. okay then ip l pad address should be i peer this up there dcp server okay which is 130. i copy so that's our address i paste here okay very simple exit then i'll just open notepad again interface vlan 10 no shutdown then i appear this to be 172.1666 second mask of 255.255.255.128. then iplp address i'll just copy this one and fps there okay now that's done we move to vlan 20 now for interface intervals vlan 20 the appearance will be 129 here okay everything remains the same we copy this also paste now this is 30 and this is 40 and for 30 it was 2.21 everything remains the same and for 40 it was 2.129 everything remains the same okay now finally the two vlans vlan 50 and 60 50 which was 3.1 okay and for vlan 60 it was uh 3.129 everything just remains the same here as you can see under copy and you paste to all of all these switches okay do right i go to this switch also and i paste do right so it's very simple interval and routing you just enter the vlan interface interface vlan 1 will antenna i mean ips dot interface then you include ipl per address and the address should be the address of the dhcp server okay all right so let's see the next step that is uh there okay wireless network configuration okay this one is very simple that is very very simple so for the for example this access sales access point let me copy sales access point part one ssd should be that one and password this one let's say the same one two three okay no problem then you come to this laptop here for laptop it doesn't have any wi-fi card now turn off remove the exists the existing card and drag this on and turn it on again then come to desktop pc wireless connect and refresh we need sales ap sales ap this one connect and the password is one two three and connect okay it's done come to this tablet config wireless zero ssd sales ap password is uh csp123 okay so guys i'll do that for the remaining access points very very fast to save time okay guys so as you can see i've connected all the other oxy devices to their respective access points and each each each device is connected to the access point in every apartment okay all right so we have a problem here but i'll sort it out don't worry so that's done okay so let's proceed configure port address translation plus access control lists all right so we need to configure port address translation plus access controllers network address translation not okay okay so what did the statement say in the project let me just read it configure part to use the respective outpound router interface ipv4 address implement the necessary scl okay very simple so we're going to configure nut on these routers here i don't want to configure not on the switches i want to just configure the nut on the routers to use the public appearances right we're going to use the public appearances translate private into public appearances because it's on the routers here that they have public appearances assigned to their interfaces but not on the left three switches okay so we'll start with this router click and okay how do we configure part port address translation or not overload so a peanut inside source access source just a minute let me query source list list one access control is to unless let's just use access control list one then interface interface we're going to use which interfaces serial interfaces this one and this one there are two interfaces so it's cereal zero slash two and zero zero two one okay zero zero two zero and serial zero two one okay interface serial zero two zero then overload okay then another one is serial zero two one overload because we need to use two interfaces redundancy in the network okay in case these links fail this link fails it will use this one for translation okay all right okay so let's create access control list and permit the various uh networks access list one permit we're going to permit all my network six of them this one this one this one this one and this one submit i'll copy this network copy and i paste here permit that one okay hit enter then another one will be 128 access control list permits this network also then another one will be 2.0 another one would be 2.2 128 another one would be 3.0 then three dot 128 then a different subnet mask 128 and the subnet mask will be let me just see here worldcat mask i mean dot 15 15 here now here will be 15 okay all right okay so let's configure interfaces to act as not inside and not outside for example on this router here you know these this interface will be accepting traffic in from these networks either of these networks okay and this interface also so this one and this one will be not inside let me expand this this one and this one will be not inside but this one this one will be not outside so it's interface gig zero zero so interface gig let's say just range gig z gig zero slash zero to 1 i p not i p not inside yes exit and now this one and this one which is serial interface range serial 0 slash 2 zero to one it doesn't work so i'll just do it uh individually i pin that outside i peanut out outside also this one also two dot one two slash one i peanut outside exit and do right so guys we're just done configuring that there and what you need to do is to copy the configuration that is done here to the other to the other router here okay so i'll try to copy this one copy so that you can go very very fast so what i remove is just this one all right and the first one was the first two this one this one okay so i can proceed to the second router and configure the same exit so copy all these copy i peanut overload which interface they will they use on this router this one and this one which is zero zero two zero and zero two one so i copy and paste that on right now let's configure interface not inside and interface not outside so interface range gig zero zero to one i peanut inside exit then interface serial 0 slash 2 0 i p not outside and also two one i p knight outside exit and do that so guys we've configured nut and if i can say do show ip not translations okay we have not we have not uh do that we've not pinged outside the network we've not pinged out the nether network all right so let's see what's next so basically what's remaining just to verify the configuration guys and before we verify the configuration guys i want us to configure the last thing let's say 10.21.1 so here i'm going to configure default static route so for example let's just say this host wants to com to ping a network that is not found on the routing table how will the routers for that traffic so that's the concept of default route so the in the case of default route guys i'll just pay copy i'll just uh i'll just write the command and paste in all the routers i peer out i peed out uh 0.0.0.0 any ip address with any subnet mask okay should be routed through each interface so let's let's use this as primary gig kick it will be gig zero one zero and this one as secondary which is gig this one is gig zero one two so it should be routed through gig one zero one i think that's it yeah one zero one that's the primary and now the secondary should be backup should be in case that interface fails okay redundancy two then let's give it a administrative distance of let's say you want 150 okay so we can use 150 or just uh let me just use 70 150 is too much okay so i'll copy this to the two layer three switches this one and this one exit and i paste do right okay do right as i say do right i go to this switch also okay and now let's configure the fold outs on the two routers so let's use this one as the as the main active one and this one is the backup okay so what i'll do i'll just change this to be serial 0 slash 2 0 and this one will be copy 2 1 okay for the two letters okay very simple guys then we are done paste thank you here paste all right so we are done guys with everything and what's remaining just to verify the configuration so we're going to verify the configuration and test con configuration all right the first thing let's test dcp if it's functioning i'll just do this and come to dcp close this one printer also go to dhcp okay guys so i've enabled dhcp on their devices so i'll just check if they'll pick their p addresses as you can see they'll pick the appearances the peak appear this is specified here and let's check the wireless devices and did the wireless devices pick their appearances for example the pc the comp the laptop as you can see it's fine and now let's come here it's fine and now the tablet is fine it's picked now this one okay and now we have a problem here as you can see this access point i don't know what's wrong with the access point but i'll just fix it out but as you can see it has picked i appear this all right now this one there also the sap is working here and then the what about the laptop here just pick and uh let's go here as you can see it has picked and pc here it has picked all right guys so let's try to ping let's try to ping from this pc to this pc so ict pc is uh the ap address is 3.9 so let me try to ping 3.9 ping 172.1616 i mean not 3.9 let's just give it time see if it's ping okay so that's successful that's good i'll try to test ssh i'll test ssh i'll test ssh on this router let's say this router using which ip address let's use this ip address this one okay so i'll try to access it as a search so ssh iphone l then username was admin and i appeared as this one password cisco as you can see it's called router one and the banner message no authorized and authorized access enabled then cisc also all right so guys i think everything is working fine and for the hair that the the finance department we can exclude the port from the port security remember we were we configured the port to access only one device but you know it's a it's connected to access point so we have to exclude it from port security okay all right so i need to exclude this part f a 0 6 5 so i'll go to f 0 5 and uh actually exclude it and say no switchboard but security okay then no switchbot port security security maximum maximum one then switchbot then no switchboard for security mac address sticky then no switchboard we we're just going to reverse the the initial configuration switchboard port security port security violation shutdown okay so guys what you've done is just to reverse is to reverse the initial configuration okay all right so let's check it it's still not showing up but uh i believe it it will show up do show start so it's this part this one okay so as you can see it doesn't have any switchboard for security configuration on it meaning now it's okay it will become okay what i'll do is just interface again let just just a minute this one shut down okay no shot change status so as you can see it will turn green again okay all right so let's just give it time to turn green okay all right so guys let's try to ping this isp now guys let's try to ping this isp device okay it does appear this let's just take the appearance of any interface this one i'll copy and use which one even this pc to paint ping it's pinging now being that the traffic has passed either of these routers then it must be translated now let's go to these routers and check if not as is working do show ip not trans translation translations transform translation as you can see guys so nut is working nut is working inside local the appearance of that device that we used to ping the router was this one and instant global is the ip address the translated ip address okay outside local is that i appeared as of the the so there is the is there as ps is the appearance of the destination okay all right guys so guys i believe everything is working as expected and what i'll do guys is to make them look beautiful for example this is a sp router what i'll do i'll do this one and include cloud there place it there then also do this cloud and place there so this one say isp1 asp1 main copy isp2 backup okay all right so what's meaning here what's the meaning here actually is nothing and just to use some let me just use something here okay so this one is spf is pf area zero we've used spf here ospf area zero ospf area zero okay all right guys so basically i think uh our project is comp our project is completed and nothing is remaining here so basically guys i think everything is configured and i'll try to check what is remaining ospf is working successfully as the search is working per second per sport security is working part is working recipe is working interval and routing is working and so on and so forth guys this was a long a very long project and it has took us a lot of time and i believe we've learned a lot on this project you've learned how to design a network based on a case study implement that network based on the requirements and to implement several technologies that you've been asked okay all right so that will mark the end of this class suppose you like this project suppose you like this video please like this video subscribe to our channel and drop an encouraging pro comment below thank you so much and let's see you again in enterprise networking project 7 bye guys and see you

Info

Channel: Gurutech Networking Training

Views: 144,259

Rating: undefined out of 5

Keywords:

Id: eqEd84yeRxg

Channel Id: undefined

Length: 121min 29sec (7289 seconds)

Published: Thu Jul 14 2022