Final Assessment

Week 15
This document outlines the network diagram that we have
created as the final for this class. It also contains the script
that we created to program the switches on the network.
Daniel Howell Joshua Ybarra
12/18/2015

Table of Contents
Section 1: Overview ...................................................................................................................................... 2
Section 2: Network Design ............................................................................................................................ 2
Figure 1: Remote Work ......................................................................................................................... 2
Figure 2: Data Center ............................................................................................................................ 3
2-A: Network Areas ................................................................................................................................... 3
Figure 3: vlans ....................................................................................................................................... 4
2-B: Network Security ............................................................................................................................... 5
Figure 3: Checkpoint Firewall ................................................................................................................ 6
2-C: Addressing ......................................................................................................................................... 6
2-D: The Script........................................................................................................................................... 7
Figure 4: Script ...................................................................................................................................... 7

Section 1: Overview
For this assessment we were hired to create a network for a company that could support 50 servers and
300 employees. The employee would work mostly on laptops remotely. The servers would be housed in
a small data center. We also had to create a script that could be used to help set up all of the switches.

Section 2: Network Design

This section covers the details about the network that we have created. This includes the addressing
layout and the script for switch configuration. Figure 1 shows the remote networks of the company.
Figure 2 shows the physical network at the data center.
Figure 1: Remote Work

Figure 2: Data Center

2-A: Network Areas

The network is designed to handle a primarily remote work force. To accomplish this we broke the
network up into remote vlans. While the users can work from anywhere when they log into the network
through the VPN client they are restricted on the network in a manner similar to a vlan set up on an
average network. Figure 3 shows the different work groups and there respected vlans.

Figure 3: vlans

2-B: Network Security

To insure security while the users are work they are required to use a VPN client to secure the
connection. We have chosen to use the Checkpoint VPN client for this. We also have a checkpoint fire
wall system in place at the router getting into our data center. This mean we have to two paths each
with a fire in place. The firewalls are in monitored so if one goes down the second one takes over the
traffic flow. Figure 3 shows the checkpoint firewall system.

Figure 3: Checkpoint Firewall

2-C: Addressing
The addressing for the network was a little tricky since most of it is remote. To work with this once they
sign into the VPN they are assigned an IPv4 address for the network. The subnets are:

Physical Office
192.168.1.1/25

Remote Office
192.168.2.1/26

Operations
192.168.3.1/25

Executive
192.168.4.1/27

Engineering
192.168.5.1/25

Inter/Other
192.168.6.1/26

The physical office subnet has a number of extra addresses for those who have to come into the office
to work instead of connecting remotely as they usually would. The office cannot support all 300
employees coming in.

2-D: The Script

We tried to come up with a script that would help to set up the switches on the network. The script we
came up with helps to set a password and username. It also enables a secret password. After that is
checks to see if it can establish an ssh connection for the network. It checks to see if the username and
password that are entered match the ones that are saved. Final we tried to get a script that could help
with address assigning. We found a script for addressing and modified it to try and work. Since we could
not test it in Cisco Packet Tracer we cannot confirm that it works.
Figure 4: Script
#!/usr/bin/expect

set timeout 5
set hostname [enter device]

set username "username"

set password "password"
set enablepassword "password"

spawn ssh $hostname

expect "username:" {
send "$username\n"
expect "password:"
send "$password\n"

expect ">" {

send "en\n"
expect "password:"
send "$enablepassword\n"
}

set Directory/home/Desktop/logs
log_file -a $Directory/session_$IPaddress.log
send_log "###/STARt-SSH-SESSION/IPaddress@[exec date]###\r"

#test web connection

INTERVAL=5
NUMP=3
OLD=""
WOL=/usr/sbin/
TARGET=192.168.x.x
MAC=xxxxxxxxxx
LOGFILE="/tmp/file/name"

@echo off
echo Choose:
echo [A] Set Static IP
echo [B] Set DHCP
echo.

:choice
SET /P C=[A,B]?
for %%? in (A) do if /I "%C%"=="%%?" goto A
for %%? in (B) do if /I "%C%"=="%%?" goto B
goto choice
:A
@echo off
echo "Please enter Static IP Address Information"
echo "Static IP Address:"
set /p IP_Addr=

echo "Default Gateway:"

set /p D_Gate=

echo "Subnet Mask:"

set /p Sub_Mask=

echo "Setting Static IP Information"

netsh interface ip set address "LAN" static %IP_Addr% %Sub_Mask% %D_Gate% 1
netsh int ip show config
pause
goto end

:B

@ECHO OFF
ECHO Resetting IP Address and Subnet Mask For DHCP
netsh int ip set address name = "LAN" source = dhcp

ipconfig /renew

ECHO Here are the new settings for %computername%:

netsh int ip show config