CPT Project Report DN

TELE 5330 – DATA NETWORKING LABORATORY
PROJECT 2 – DESIGN OF NETWORK FOR CORPORATE ORGANIZATION USING CISCO PACKET

TRACER
- Naveen Rajendran
(NUID: 001304569)
PROJECT DESIGN:
An inter-geographical network connecting offices from five different locations (Boston, Mumbai,
Beijing, London, New York). Head-quarters of organization will be based at Boston and Mumbai.
HIGH-LEVEL DIAGRAM DIAGRAM
NETWORK DETAILS:
 Boston & Mumbai office will be having technical, finance & HR department, whereas other
locations will be having technical & HR departments respectively
 Each office will be having 250 hosts (85% redundancy for their addresses)
 Address for each host will be assigned dynamically by DHCP servers based at technical
department of head-quarter locations (Boston & Mumbai)
 Dedicated VLAN is created for each department
 Offices at different geographical locations will be connected via internet service provider(ISP)
 Security feature is deployed for restricting the access to the finance department
 Router redundancy is implemented at head-quarter locations & switch redundancy is done
at New York & Beijing location
 OSPF network protocol is implemented for communication between different locations
 MAC flooding & port security is activated for machines at HQ locations
 BPDU, Port fast enabled in all machines connected to the network
 Rapid spanning tree protocol is activated between redundant switches at New York & London
location
 Multilayer switch at Beijing & LACP at New York are the additional features
Address allocation to offices
Department Address Range Subnet Mask Number of hosts

BOSTON
Technical 192.168.69.5 – 255.255.255.0 249
192.168.69.254
Finance 192.168.70.5 – 255.255.255.128 107
192.168.70.127
HR 192.168.71.5 – 255.255.255.128 107
192.168.71.127
DHCP 192.168.72.2 255.255.255.0 1
MUMBAI
Technical 192.168.72.5 – 255.255.255.0 249
192.168.72.254
Finance 192.168.73.5 – 255.255.255.128 107
192.168.73.127
HR 192.168.74.5 – 255.255.255.128 107
192.168.74.127
DHCP 192.168.72.2 255.255.255.0 1
BEIJING
Technical 192.168.75.2 – 255.255.255.0 253
192.168.75.254
HR 192.168.76.2 – 255.255.255.0 107
192.168.76.254
LONDON
Technical 192.168.77.2 – 255.255.255.0 253
192.168.77.254
HR 192.168.78.2 – 255.255.255.0 253
192.168.78.254
NEWYORK
Technical 192.168.79.2 – 255.255.255.0 253
192.168.79.254
HR 192.168.80.2 – 255.255.255.0 253
192.168.80.254
Total Cost of the project:
S.no Name of the network component Quantity Price/Quantity Total price
1 Cisco 2960 switch 8 $ 150 $1200
2 Multilayer Switch 1 $ 200 $ 200
3 DHCP Server 2 $ 2000 $ 4000
4 Cisco Router 2811 9 $ 700 $ 6300
5 Copper straight cable In ft $ 1.5 / feet 1.5 * distance
6 Serial DCE In ft $ 3 / feet 3 * distance
Total Price $11700
Cost optimization:
 VLAN’S for each department is configured on a single switch making the system cost
efficient
 Limited utilization of DHCP servers (installed only at head quarter locations). HQ DHCP
server used for assigning IP’s to host at branch offices at London, Beijing & New York
 Multilayer switch erection leading to reduction in consumption of one additional router
Dynamic Host Allocation using Dynamic Host Configuration Protocol
DCHP SERVER AT BOSTON:
 Server at Boston location will assigning dynamic IP addresses to technical, finance & HR
departments of Boston & Mumbai office’s
DCHP SERVER AT MUMBAI:

 Server at Mumbai will assign dynamic IP addresses to technical & HR departments of
London, Beijing & New York office’s
WAN Configuration
 All area borders are designated in area 0 as backbone network, whereas other routers used
within location premises are given the following numbers
o Area 1 - Boston
o Area 2 - Mumbai
o Area 3 - Beijing
o Area 4 - London
o Area 5 - New York
 Frame relay helps to connect inter networks improving data quality
 Cloud 1 acting as ISP

VLAN:
 Different VLAN pools are created for each departments at all locations in following manner
Boston & Mumbai:

 VLAN - 10 - Technical Department
 VLAN - 20 - Finance Department
 VLAN - 30 - HR Department
Beijing, London & New York

 VLAN - 10 - Technical Department
 VLAN - 20 - HR Department
VLAN Test plan:
Dialog box shows, the VLAN’s

enabled in the above
mentioned ports
SUCCESSFUL DHCP ALLOCATION WHEN CONNECTED TO VLAN ALLOCATED SWITCH PORT
Machine is connected
to a port which has
VLAN access 30
UNSUCCESSFUL DHCP ALLOCATION WHEN CONNECTED TO DIFFERENT SWITCH PORT
Incorrect port
connected, rather than
its VLAN allocated port
OSPF:
In order to communicate between PC’S on two different networks there must be a network
protocol. Hence OSPF protocol is used here for this purpose. The following show the
utilization of OSPF in project
“OSPF” mentioned while
carrying out simulation
between inter - network
Access-list (Security):
To provide access control or security for the organization, we used access control list to
restrict access to finance department from HR & Technical department. Restriction to finance
department is applicable to both Boston’s & Mumbai’s finance departments
Access list codes:
BOSTON
access-list 100 permit ip host 192.168.69.2 any
access-list 100 permit icmp any 192.168.70.0 0.0.0.127 echo-reply
access-list 100 deny ip 193.168.69.0 0.0.0.255 192.168.70.0 0.0.0.127
access-list 100 permit ip any any
MUMBAI
BEIJING
LONDON
NEWYORK
Security Test Plan:
 Unable to ping finance department of Mumbai from Boston’s technical department due
to ACL restriction
When a technical department
host is trying to access finance
department host, it is blocked at
router using ACL’s
 The finance hosts are able to ping each other, since they were not restricted in access list
Redundancy Test plan:
For routers:
Hot standby routing protocol is executed at Boston & London location, so if the main router
goes down standby gets activated. For testing, we are going to disable main routers at both
the areas.
At Boston,
Secondary
router takes
charge after
main router off
goes o
At Mumbai
Switch redundancy test plan:
When a trunk port is turned off, path A is blocked. Right now a redundant path which was at
standby came into action instantly. Though the path is dropped, the VLAN’s & network works
fine due to redundant switch topology which is clearly adopted here.
BEFORE AFTER
Add-on testing:
Multilayer switch
A multilayer switch is capable of doing layer 3 roles, therefore it has the capability of doing
inter VLAN routing. In this project, a multilayer switch was implemented at Beijing location
which performs inter vlan routing.
 When pinging HR department from technical department
When a ping request between two

vlan’s technical & hr department is
initiated, the routing is done by
multilayer switch, which acts as layer 3
network device
LaCP
Link aggregation & control protocol was implemented at New York office for increasing the
speed of communication between channels. Two separate channels were created for this
purpose.
Channel - 1 through ports – fa0/1-2-3 & Channel -2 through ports – fa0/4-5-6
It can be seen LaCP enable in

two different channels
configured in New York location
Takeaway Questions
 OSPF is always better. It is better resourceful than RIP protocol which uses lot of memory
& complications. Moreover OSPF is best suitable for larger networks due to its better
convergence rate than RIP
 Area concept in OSPF is used by the routers to know which location they belong to. They
are utilized to segment larger networks into smaller chunks in which router is assigned a
area number & connected to backbone area ‘0’
 If there is no common area ‘0’, it would be difficult for routers to communicate between
each other. It should use a dedicated path for ex: 1-5,2-3,4-1 etc. This causes more
confusion & congestion in designing the network. Hence backbone area ‘0’ is used here
 There are 7 types of LSA’s
1.) Router LSA
Router LAS is used to send the packets within the same area and won't leave the area
2.) Network LSA
Network LSA is used to flood the neighboring routers within the same area.
3.) Summary LSA
Summary LSA is used to flood the packets between routers in different areas and provide
OSPF with a summary
4.) Summary ASBR LSA
ASBR Summary LSA gets the packet from one area and injects it into the area 0
5.) External LSA
ASBR external LSA packets are generated by to advertise external redistributed routes
6.) Multicast OSPF LSA
Multicast LSA is used to multicast routing through OSPF.
7.) Not so stubby area LSA (External)

This LSA allows limited amount of external routes to the stubby area
 Security plan is defined as the strategy for restricting the access between different hosts
& redundancy plan is to place standby devices to avoid single point or device failure
leading to shutdown of entire network
 If 2 switches are connected without STP, then the switches will infinitely duplicate the
initial broadcast packet because nothing at the layer 2 to stop. Whereas, the STP helps in
avoiding the loopback.
 STP gives a loop-free tree inconsistent topology of switches. It enables users to set the
preferred location of root and determines the cost.
 PSTP is the Cisco proprietary protocol which is almost like STP, but the only difference is
that PSTP allows each VLAN to run their own STP.
 RSTP provides a fast convergence rate when compared to the previous versions
Concepts learned during this project:
 Various network terminologies
 CLI Commands
 IP addressing & Sub netting
 Configuring switches & routers
 DHCP Configuration
 Network protocols (OSPF)
 Redundancy topologies
 Spanning tree & Rapid spanning tree protocols
 Frame relay implementation
 MAC flooding
BOSTON SWITCH CONFIGURATION
!
Switch> interface FastEthernet0/4
Switch> switchport access vlan 20
Switch>en switchport mode access
Switch#show run switchport port-security maximum 5
Switch#show running-config switchport port-security mac-address sticky
Building configuration... spanning-tree portfast
spanning-tree bpduguard enable
Current configuration : 2621 bytes !
! interface FastEthernet0/5
version 12.2 switchport access vlan 20
no service timestamps log datetime msec switchport mode access
no service timestamps debug datetime msec switchport port-security maximum 5
no service password-encryption switchport port-security mac-address sticky
! spanning-tree portfast
hostname Switch spanning-tree bpduguard enable
! !
! switchport access vlan 30
! switchport mode access
! switchport port-security maximum 5
spanning-tree mode pvst switchport port-security mac-address sticky
spanning-tree extend system-id spanning-tree portfast
! spanning-tree bpduguard enable
interface FastEthernet0/1 !
switchport access vlan 10 interface FastEthernet0/7
switchport mode access switchport access vlan 30
spanning-tree portfast switchport mode access
spanning-tree bpduguard enable switchport port-security maximum 5
! switchport port-security mac-address sticky
interface FastEthernet0/2 spanning-tree portfast
switchport access vlan 10 spanning-tree bpduguard enable
switchport mode access !
switchport port-security maximum 5 interface FastEthernet0/8
switchport port-security mac-address sticky switchport trunk native vlan 30
spanning-tree portfast switchport trunk allowed vlan 2-1001
spanning-tree bpduguard enable switchport mode trunk
! !
interface FastEthernet0/3 interface FastEthernet0/9
switchport access vlan 10 switchport trunk native vlan 30
switchport mode access switchport trunk allowed vlan 2-1001
switchport port-security maximum 5 switchport mode trunk
switchport port-security mac-address sticky !
spanning-tree portfast interface FastEthernet0/10
spanning-tree bpduguard enable !
interface FastEthernet0/11 interface GigabitEthernet0/1
! !
! !
interface FastEthernet0/13 interface Vlan1
! no ip address
! interface Vlan10
interface FastEthernet0/15 mac-address 0090.0c2b.b501
! no ip address
! interface Vlan20
interface FastEthernet0/17 mac-address 0090.0c2b.b502
! no ip address
! !
! !
interface FastEthernet0/20 line con 0
! !
interface FastEthernet0/21 line vty 0 4
! login
interface FastEthernet0/22 line vty 5 15
! login
! !
! !
end
MUMABI SWITCH CONFIGURATION
Switch> hostname Switch

Switch> !
Switch>EN !
Switch#SHOW RUN !
Switch#SHOW RUNning-config !
Building configuration... !
spanning-tree mode pvst
Current configuration : 2555 bytes spanning-tree extend system-id
! !
version 12.2 interface FastEthernet0/1
no service timestamps log datetime msec switchport access vlan 10
no service timestamps debug datetime msec switchport mode access
no service password-encryption spanning-tree portfast
interface FastEthernet0/2 spanning-tree bpduguard enable
switchport access vlan 10 !
switchport mode access interface FastEthernet0/8
switchport port-security maximum 5 switchport trunk native vlan 30
switchport port-security mac-address sticky switchport mode trunk
spanning-tree portfast !
spanning-tree bpduguard enable interface FastEthernet0/9
! switchport trunk native vlan 30
interface FastEthernet0/3 switchport mode trunk
switchport port-security maximum 5 !
switchport port-security mac-address sticky interface FastEthernet0/11
! !
! !
! !
! !
switchport mode access interface GigabitEthernet0/2
switchport port-security mac-address sticky interface Vlan1
no ip address !
shutdown line con 0
! !
interface Vlan10 line vty 0 4
mac-address 00d0.d31e.ec01 login
no ip address line vty 5 15
! login
interface Vlan20 !
mac-address 00d0.d31e.ec02 !
no ip address !
! !
! end
!
BEIJING SWITCH CONFIGURATION !

!
Switch> !
Switch> !
Switch>EN !
Switch#SHOW RUN !
Switch#SHOW RUNning-config spanning-tree mode pvst
!
! !
version 12.2(37)SE1 !
no service timestamps log datetime msec !
no service timestamps debug datetime msec interface FastEthernet0/1
no service password-encryption switchport trunk native vlan 20
! switchport trunk encapsulation dot1q
hostname Switch switchport mode trunk
! !
! !
ip routing !
! !
! !
! !
interface FastEthernet0/7 no ip address
! shutdown
! interface Vlan10
interface FastEthernet0/9 mac-address 0001.63a1.5d01
! ip address 192.168.75.1 255.255.255.0
interface FastEthernet0/10 ip helper-address 192.168.72.2
! !
! mac-address 0001.63a1.5d02
interface FastEthernet0/12 ip address 192.168.76.1 255.255.255.0
! ip helper-address 192.168.72.2
! router ospf 1
interface FastEthernet0/14 log-adjacency-changes
! network 192.168.75.0 0.0.0.255 area 3
interface FastEthernet0/15 network 192.168.76.0 0.0.0.255 area 3
! !
interface FastEthernet0/16 ip classless
! !
interface FastEthernet0/17 ip flow-export version 9
! !
! !
! !
! !
! line con 0
! line aux 0
! line vty 0 4
interface FastEthernet0/24 login
! !
interface GigabitEthernet0/1 !
! !
interface GigabitEthernet0/2 !
! end
interface Vlan1
Switch#show running-config !
Building configuration... interface FastEthernet0/11
switchport access vlan 10
Current configuration : 1772 bytes switchport mode access
! !
version 12.2 interface FastEthernet0/12
no service timestamps log datetime msec switchport access vlan 10
no service timestamps debug datetime msec switchport mode access
no service password-encryption !
hostname Switch switchport access vlan 20
! switchport mode access
! !
spanning-tree mode rapid-pvst switchport access vlan 20
spanning-tree extend system-id switchport mode access
interface FastEthernet0/1 spanning-tree bpduguard enable
switchport trunk native vlan 20 !
switchport mode trunk interface FastEthernet0/15
! !
switchport trunk native vlan 20 !
switchport mode trunk interface FastEthernet0/17
spanning-tree link-type point-to-point !
switchport trunk native vlan 20 interface FastEthernet0/19
switchport mode trunk !
spanning-tree link-type point-to-point interface FastEthernet0/20
! !
! !
! !
! !
! !
! !
! !
no ip address !
shutdown !
! line con 0
interface Vlan10 !
mac-address 00d0.d323.6601 line vty 0 4
no ip address login
! line vty 5 15
interface Vlan20 login
mac-address 00d0.d323.6602 !
no ip address !
! !
! !
end
BOSTON ROUTER CONFIGURATION !

!
Router#show run !
Router#show running-config !
spanning-tree mode pvst
! !
version 12.4 !
no service timestamps debug datetime msec !
no service password-encryption !
hostname Router no ip address
! duplex auto
! speed auto
! !
! interface FastEthernet0/0.1
! encapsulation dot1Q 10
! ip address 192.168.69.4 255.255.255.0
! ip access-group 100 in
ip cef standby 1 ip 192.168.69.1
no ipv6 cef standby 1 priority 105
! standby 1 preempt
! standby preempt
! standby 0 timers 2 6
! !
! interface FastEthernet0/0.2
! encapsulation dot1Q 20
! ip address 192.168.70.4 255.255.255.128
ip helper-address 192.168.69.2 network 192.168.69.0 0.0.0.255 area 1
ip access-group 100 in network 192.168.70.0 0.0.0.127 area 1
standby 1 ip 192.168.70.1 network 192.168.71.0 0.0.0.127 area 1
standby 1 priority 105 network 15.0.0.0 0.0.0.255 area 0
standby 1 preempt !
standby preempt ip classless
standby 0 timers 2 6 !
! ip flow-export version 9
interface FastEthernet0/0.3 !
encapsulation dot1Q 30 native !
ip address 192.168.71.4 255.255.255.128 access-list 100 permit ip host 192.168.69.2
ip helper-address 192.168.69.2 any
ip access-group 100 in access-list 100 permit icmp any
standby 1 ip 192.168.71.1 192.168.70.0 0.0.0.127 echo-reply
standby 1 priority 105 access-list 100 permit icmp any
standby 1 preempt 192.168.73.0 0.0.0.127 echo-reply
standby preempt access-list 100 deny ip 192.168.69.0
standby 0 timers 2 6 0.0.0.255 192.168.70.0 0.0.0.127
! access-list 100 deny ip 192.168.71.0
interface FastEthernet0/1 0.0.0.127 192.168.70.0 0.0.0.127
ip address 15.0.0.2 255.255.255.0 access-list 100 deny ip 192.168.69.0
duplex auto 0.0.0.255 192.168.73.0 0.0.0.127
speed auto access-list 100 deny ip 192.168.71.0
! 0.0.0.127 192.168.73.0 0.0.0.127
interface Serial0/2/0 access-list 100 permit ip any any
no ip address
clock rate 2000000 line con 0
shutdown !
! line aux 0
interface Serial0/3/0 !
no ip address line vty 0 4
clock rate 2000000 login
! !
interface Vlan1 !
no ip address !
shutdown end
!
router ospf 1
log-adjacency-changes
BOSTON AREA BORDER ROUTER CONFIGURATION
Router> interface FastEthernet0/0

Router>EN ip address 15.0.0.1 255.255.255.0
Router#sho run duplex auto
Router#sho running-config speed auto
interface FastEthernet0/1
Current configuration : 2028 bytes ip address 16.0.0.1 255.255.255.0
! duplex auto
version 12.4 speed auto
no service timestamps debug datetime msec interface Ethernet0/2/0
no service password-encryption no ip address
! duplex auto
hostname Router speed auto
! shutdown
! !
! interface Ethernet0/3/0
! no ip address
! duplex auto
! speed auto
! shutdown
! !
no ip cef interface Serial1/0
no ipv6 cef no ip address
! encapsulation frame-relay
! !
! interface Serial1/0.102 point-to-point
! bandwidth 64
! ip address 10.0.0.1 255.255.255.0
! frame-relay interface-dlci 102
! clock rate 2000000
! !
! bandwidth 64
! ip address 10.0.1.1 255.255.255.0
spanning-tree mode pvst clock rate 2000000
! !
! bandwidth 64
! ip address 10.0.2.1 255.255.255.0
! !
interface Serial1/0.105 point-to-point interface Vlan1
bandwidth 64 no ip address
ip address 10.0.3.1 255.255.255.0 shutdown
frame-relay interface-dlci 105 !
clock rate 2000000 router ospf 1
! log-adjacency-changes
interface Serial1/1 network 10.0.0.0 0.0.0.255 area 0
no ip address network 10.0.1.0 0.0.0.255 area 0
clock rate 2000000 network 10.0.2.0 0.0.0.255 area 0
shutdown network 10.0.3.0 0.0.0.255 area 0
! network 15.0.0.0 0.0.0.255 area 0
interface Serial1/2 network 16.0.0.0 0.0.0.255 area 0
no ip address !
clock rate 2000000 ip classless
shutdown !
! ip flow-export version 9
interface Serial1/3 !
no ip address !
clock rate 2000000 !
! !
no ip address !
! !
interface Serial1/5 line con 0
no ip address !
clock rate 2000000 line aux 0
! !
interface Serial1/6 line vty 0 4
no ip address login
! !
no ip address end
clock rate 2000000
.
MUMBAI ABR CONFIGURATION
Router> ip address 17.0.0.1 255.255.255.0

Router>en duplex auto
Router#show run speed auto
Router#show running-config !
Building configuration... interface FastEthernet0/1
ip address 18.0.0.1 255.255.255.0
Current configuration : 1570 bytes duplex auto
! speed auto
version 12.4 !
no service timestamps log datetime msec interface Serial0/0/0
no service timestamps debug datetime msec bandwidth 64
no service password-encryption no ip address
hostname Router clock rate 2000000
! !
! interface Serial0/0/0.201 point-to-point
! bandwidth 64
! ip address 10.0.0.2 255.255.255.0
! !
no ip cef bandwidth 64
no ipv6 cef ip address 11.0.0.1 255.255.255.0
! !
! bandwidth 64
! ip address 11.0.1.1 255.255.255.0
! !
! bandwidth 64
! ip address 11.0.2.1 255.255.255.0
spanning-tree mode pvst frame-relay interface-dlci 205
! !
! interface Serial0/0/1
! no ip address
! shutdown
interface Vlan1
no ip address
shutdown
!
router ospf 1
log-adjacency-changes
network 10.0.0.0 0.0.0.255 area 0
network 11.0.0.0 0.0.0.255 area 0
network 11.0.1.0 0.0.0.255 area 0
network 11.0.2.0 0.0.0.255 area 0
network 17.0.0.0 0.0.0.255 area 0
network 18.0.0.0 0.0.0.255 area 0
! Router>
Router>EN
MUMBAI AREA ROUTER CONF Router#sho
Router#show run
Router#show running-config
Router> Building configuration...
Router>en
Router#copy Current configuration : 1975 bytes
Router#copy run !
Router#copy running-config version 12.4
% Incomplete command. no service timestamps log datetime msec
Router#copy running-config sta no service timestamps debug datetime msec
Router#copy running-config startup-config no service password-encryption
Destination filename [startup-config]? !
Building configuration... hostname Router
[OK] !
Router# !
!
!
!
!
!
!
ip cef
no ipv6 cef
Router con0 is now available !
!
!
!
!
!
!
Press RETURN to get started. !
!
! ip address 17.0.0.2 255.255.255.0
! duplex auto
spanning-tree mode pvst speed auto
! !
! interface Vlan1
! no ip address
! shutdown
! !
! router ospf 1
interface FastEthernet0/0 log-adjacency-changes
duplex auto network 192.168.73.0 0.0.0.127 area 2
speed auto network 192.168.74.0 0.0.0.127 area 2
! network 17.0.0.0 0.0.0.255 area 0
encapsulation dot1Q 10 ip classless
ip address 192.168.72.4 255.255.255.0 !
ip helper-address 192.168.69.2 ip flow-export version 9
ip access-group 100 in !
standby 1 ip 192.168.72.1 !
standby 1 priority 115 access-list 100 permit ip host 192.168.72.2
standby 1 preempt any
standby preempt access-list 100 permit icmp any
standby 0 timers 2 6 192.168.70.0 0.0.0.127 echo-reply
! access-list 100 permit icmp any
interface FastEthernet0/0.2 192.168.73.0 0.0.0.127 echo-reply
encapsulation dot1Q 20 access-list 100 deny ip 192.168.72.0
ip address 192.168.73.4 255.255.255.0 0.0.0.255 192.168.70.0 0.0.0.127
ip helper-address 192.168.69.2 access-list 100 deny ip 192.168.74.0
ip access-group 100 in 0.0.0.127 192.168.70.0 0.0.0.127
standby 1 ip 192.168.73.1 access-list 100 deny ip 192.168.72.0
standby 1 priority 115 0.0.0.255 192.168.73.0 0.0.0.127
standby 1 preempt access-list 100 deny ip 192.168.74.0
standby preempt 0.0.0.127 192.168.73.0 0.0.0.127
! access-list 100 permit ip any any
encapsulation dot1Q 30 native !
ip address 192.168.74.4 255.255.255.0 !
ip helper-address 192.168.69.2 !
ip access-group 100 in !
standby 1 ip 192.168.74.1 !
standby 1 priority 115 line con 0
standby 1 preempt !
standby preempt line aux 0
! !
line vty 0 4 !
login !
! !
! !
! !
end !
interface GigabitEthernet0/0
no ip address
BEIJING ROUTER CONF ip helper-address 192.168.72.2
duplex auto
Current configuration : 2032 bytes speed auto
! !
version 15.1 interface GigabitEthernet0/0.1
no service timestamps log datetime msec encapsulation dot1Q 10
no service timestamps debug datetime msec ip address 192.168.75.1 255.255.255.0
no service password-encryption ip helper-address 192.168.72.2
! !
hostname Router interface GigabitEthernet0/0.2
! encapsulation dot1Q 20 native
! ip address 192.168.76.1 255.255.255.0
! !
! interface GigabitEthernet0/1
! no ip address
! duplex auto
! speed auto
no ip cef !
no ipv6 cef interface GigabitEthernet0/2
! no ip address
! duplex auto
! speed auto
! !
license udi pid CISCO2911/K9 sn interface GigabitEthernet0/0/0
FTX15243294- no ip address
! shutdown
! !
! bandwidth 64
! no ip address
! !
! bandwidth 64
! ip address 10.0.1.2 255.255.255.0
spanning-tree mode pvst frame-relay interface-dlci 301
! !
interface Serial0/1/0.302 point-to-point !
bandwidth 64 !
ip address 11.0.0.2 255.255.255.0 !
frame-relay interface-dlci 302 line con 0
! line aux 0
interface Serial0/1/0.304 point-to-point !
bandwidth 64 line vty 0 4
ip address 12.0.0.1 255.255.255.0 login
frame-relay interface-dlci 304 !
! !
interface Serial0/1/0.305 point-to-point end
bandwidth 64
ip address 12.0.1.1 255.255.255.0 LONDON ROUTER CONFIGURATION
frame-relay interface-dlci 305 Router>
clock rate 2000000 Router>
! Router>EN
interface Serial0/1/1 Router#SHOW RUN
no ip address Router#SHOW RUNning-config
clock rate 2000000 Building configuration...
shutdown
! Current configuration : 2481 bytes
interface Vlan1 !
no ip address version 15.1
shutdown no service timestamps log datetime msec
! no service timestamps debug datetime msec
router ospf 1 no service password-encryption
log-adjacency-changes !
network 10.0.1.0 0.0.0.255 area 0 hostname Router
network 11.0.0.0 0.0.0.255 area 0 !
network 12.0.0.0 0.0.0.255 area 0 !
network 12.0.1.0 0.0.0.255 area 0 !
network 192.168.75.0 0.0.0.255 area 3 !
network 192.168.76.0 0.0.0.255 area 3 !
! !
ip classless !
! !
ip flow-export version 9 no ip cef
! no ipv6 cef
! !
! !
no cdp run !
! !
license udi pid CISCO2911/K9 sn shutdown
FTX152435AI- !
! bandwidth 64
! no ip address
! !
! bandwidth 64
! ip address 10.0.2.2 255.255.255.0
spanning-tree mode pvst !
! bandwidth 64
! ip address 11.0.1.2 255.255.255.0
! !
interface GigabitEthernet0/0 interface Serial0/0/0.403 point-to-point
no ip address bandwidth 64
duplex auto ip address 12.0.0.2 255.255.255.0
speed auto frame-relay interface-dlci 403
interface GigabitEthernet0/0.1 !
encapsulation dot1Q 10 interface Serial0/0/0.405 point-to-point
ip address 192.168.77.1 255.255.255.0 bandwidth 64
ip helper-address 192.168.72.2 ip address 13.0.0.1 255.255.255.0
ip access-group 100 in frame-relay interface-dlci 405
interface GigabitEthernet0/0.2 !
encapsulation dot1Q 20 native interface Serial0/0/1
ip address 192.168.78.1 255.255.255.0 no ip address
ip helper-address 192.168.72.2 clock rate 2000000
ip access-group 100 in shutdown
! !
interface GigabitEthernet0/1 interface Vlan1
no ip address no ip address
duplex auto shutdown
speed auto !
! router ospf 1
interface GigabitEthernet0/2 log-adjacency-changes
duplex auto network 192.168.78.0 0.0.0.255 area 4
speed auto network 13.0.0.0 0.0.0.255 area 0
network 10.0.2.0 0.0.0.255 area 0 line vty 0 4
network 11.0.1.0 0.0.0.255 area 0 login
network 12.0.0.0 0.0.0.255 area 0 !
! !
ip classless !
! end
ip flow-export version 9
!
!
access-list 100 permit ip host 192.168.72.2
any
access-list 100 permit icmp any
192.168.70.0 0.0.0.127 echo-reply
access-list 100 permit icmp any
192.168.73.0 0.0.0.127 echo-reply
access-list 100 deny ip 192.168.77.0
0.0.0.255 192.168.70.0 0.0.0.127
0.0.0.255 192.168.70.0 0.0.0.127
0.0.0.255 192.168.73.0 0.0.0.127
0.0.0.255 192.168.73.0 0.0.0.127
!
!
!
!
!
!
line con 0
!
line aux 0
!
Conclusion
Thus an enterprise network was built successfully with cisco packet tracer implementing various
network protocols and output was tested successfully
References:
 https://www.youtube.com/user/danscourses
 https://www.youtube.com/watch?v=-H20S65OB3E&list=PLERv4HBOV-
pX966N8_sxtTXsV8MoEjosR&index=2
 https://www.youtube.com/watch?v=lLnilT_WOmI
 https://www.cisco.com/c/en/us/support/docs/ip/open-shortest-path-first-ospf/6208-
nssa.html
 https://community.cisco.com/t5/switching/ospf-backbone-area-rule/td-p/2002048
 https://www.cisco.com/c/en/us/td/docs/switches/lan/catalyst3560/software/release/1
2-2_52_se/configuration/guide/3560scg/swhsrp.html
 https://networkengineering.stackexchange.com/questions/57209/how-can-i-simulate-
mac-flooding-attack-in-cisco-packet-tracer-on-windows
 https://learningnetwork.cisco.com/blogs/vip-perspectives/2016/03/10/advanced-stp-
features-portfast-bpdu-guard-and-bpdu-filter

CPT Project Report DN

Uploaded by

CPT Project Report DN

Uploaded by

TELE 5330 – DATA NETWORKING LABORATORY

PROJECT 2 – DESIGN OF NETWORK FOR CORPORATE ORGANIZATION USING CISCO PACKET

Address allocation to offices

Department Address Range Subnet Mask Number of hosts

S.no Name of the network component Quantity Price/Quantity Total price

1 Cisco 2960 switch 8 $ 150 $1200

2 Multilayer Switch 1 $ 200 $ 200

3 DHCP Server 2 $ 2000 $ 4000

4 Cisco Router 2811 9 $ 700 $ 6300

5 Copper straight cable In ft $ 1.5 / feet 1.5 * distance

6 Serial DCE In ft $ 3 / feet 3 * distance

Total Price $11700

DCHP SERVER AT MUMBAI:

 Cloud 1 acting as ISP

Boston & Mumbai:

Beijing, London & New York

VLAN Test plan:

Dialog box shows, the VLAN’s

UNSUCCESSFUL DHCP ALLOCATION WHEN CONNECTED TO DIFFERENT SWITCH PORT

Access list codes:

Security Test Plan:

 When pinging HR department from technical department

When a ping request between two

Channel - 1 through ports – fa0/1-2-3 & Channel -2 through ports – fa0/4-5-6

It can be seen LaCP enable in

 There are 7 types of LSA’s

1.) Router LSA

2.) Network LSA

3.) Summary LSA

4.) Summary ASBR LSA

5.) External LSA

6.) Multicast OSPF LSA

Multicast LSA is used to multicast routing through OSPF.

7.) Not so stubby area LSA (External)

Concepts learned during this project:

 Various network terminologies

 IP addressing & Sub netting

 Configuring switches & routers

 Network protocols (OSPF)

 Spanning tree & Rapid spanning tree protocols

 Frame relay implementation

MUMABI SWITCH CONFIGURATION

Switch> hostname Switch

BEIJING SWITCH CONFIGURATION !

BOSTON ROUTER CONFIGURATION !

Router> interface FastEthernet0/0

Router> ip address 17.0.0.1 255.255.255.0

You might also like