Running head: PHYSICAL DESIGN 1PHYSICAL DESIGNHal HagoodU02a1PHYSICAL DESIGN 2Analyzing the networ and LAN in!ra"tr#$t#re i" an e""ential %art o! de"igning the $orre$t to%ology& Networ in!ra"tr#$t#re re!er" to the hardware and "o!tware re"o#r$e" o! an entire networ that ena'le networ $onne$ti(ity) $o**#ni$ation) o%eration" and *anage*ent o! an enter%ri"e networ& Networ in!ra"tr#$t#re %ro(ide" the $o**#ni$ation %ath and "er(i$e" 'etween #"er") %ro$e""e") a%%li$ation") "er(i$e" and e+ternal networ" and the Internet&In thi" %arti$#lar in"tan$e the de"ign i" !or E(erGreen ,inan$ial& E(erGreen i" a "*aller $o*%any with a%%ro+i*ately 20-.0 e*%loyee" "%e$ializing in !inan$ial %rod#$t" and "er(i$e" and need" a 'a"i$ Ci"$o networ '#ilt !or the lo$al o!!i$e& E(erGreen ha" %#r$ha"ed Ci"$o de(i$e" "#$h a" Ci"$o 2/00 "wit$he") a 2111 ro#ter) and a wirele"" LAN $ontroller& 2he"e need to 'e "et #%) along with a 2,2P "er(er& 2he $o*%any3" internet $onne$ti(ity ha" 'een la$ing with e*ail tran"a$tion delay" and download %ro'le*" with (ario#" *edia on the internet&In order to i*%le*ent thi" networ a de"ign o! the %hy"i$al to%ology and in!ra"tr#$t#re will 'e %re"ented& Al"o di"$#""ed i" ro#ter !ra*e tran"*i""ion and !low o! an in!ra"tr#$t#re along with an a%%ro%riate networ "eg*entation and "wit$hing "trategy to "#%%ort a "e$#re in!ra"tr#$t#re& A di"$#""ion o! the Ci"$o 2hree-Layer Hierar$hi$al 4odel and a%%ro%riate de(i$e and in!ra"tr#$t#re $on!ig#ration a$ti(itie"& ,inally de(i$e $on!ig#ration tro#'le"hooting a$ti(itie" and the role that the"e a$ti(itie" %layed in de(elo%ing a %hy"i$al de"ign are di"$#""ed&5o#ter !ra*e tran"*i""ion in today6" LAN" and $o*%#ting e7#i%*ent ha(e the %otential to r#n at *#$h higher "%eed" and tran"!er (ery large 7#antitie" o! data& 8ith the di(er"ity and $o*%le+ity o! today6" networ") *anage*ent $an 'e a *a**oth ta" i! yo# don6t ha(e the %ro%er tool"& Ea$h en(iron*ent i" a #ni7#e $o*'ination o! e7#i%*ent !ro* di!!erent (endor"& ,ra*e 5elay) whi$h i" a relati(ely new wide area networing *ethod) i" gaining %o%#larity& Lie 9&2:) it #"e" a %a$et-"wit$hing te$hnology) '#t it6" *ore e!!i$ient than 9&2:& A" a re"#lt) it $an *ae yo#r networing 7#i$er) "i*%ler) andle"" $o"tly&;$%rte$h) 201B?&Networ "eg*entation in networ "e$#rity and %er!or*an$e and "e$#rity *#"t al"o 'e addre""ed&Networ "eg*entation i" a $riti$al %art o! an e!!e$ti(e "e$#rity "trategy to red#$e the ri"" and i*%a$t o! atta$" within a networ) and to red#$e the "$o%e o! $o*%lian$e&;Networ" ha(e 'e$o*e *ore (#lnera'le 'e$a#"e o! !#nda*ental "hi!t" in the $o*%le+ity and %roli!eration o! %er"onal and '#"ine"" a%%li$ation") #"er a$$e"" and 'eha(ior) and the new threat land"$a%e) leading organization" to rethin their "e$#rity "trategy& Networ "eg*entation i" a $riti$al %art o! an e!!e$ti(e "e$#rity "trategy to red#$e the ri"" and i*%a$t o! atta$" to the networ& Howe(er) traditional *ethod" lie (irt#al LAN" >CLAN"?) "wit$h a$$e"" $ontrol li"t" >ACL"? and %ort and %roto$ol-'a"ed !irewall" do not %ro(ide the a%%li$ation (i"i'ility and #"er a$$e"" $ontrol" to e!!e$ti(ely "e$#re a networ "eg*ent& Drganization" re7#ire a networ "e$#rity %lat!or* $a%a'le o! $reating rele(ant "e$#rity %oli$ie" 'y a%%li$ation) #"er and $ontent !or e(ery networ "eg*entA >%aloaltonetwor") 201B?&2he "ol#tion to thi" are !irewall" !or de"ignated "e$#rity zone") along with !le+i'le de%loy*ent *ode" at Layer 1) Layer 2) or Layer . to "eg*ent the networ& Se$#rity %oli$ie" will tae ad(antage o! tightly integrated te$hnologie" and #"er ID3"& Networ "eg*entation hel%" organization" red#$e their "$o%e !or $o*%lian$e and red#$e e+%o"#re to atta$& Networed "y"te*" need to 'e %rote$ted !ro* (#lnera'ilitie" and e+%loit") and red#$e the ri"" and $o*%ro*i"e !ro* "e$#rity 'rea$he"&PHYSICAL DESIGN 4Analyzing the LAN in!ra"tr#$t#re or in thi" $a"e theCi"$o 2hree-Layer Hierar$hi$al *odel a" #"ed in thi" ill#"tration i" e""ential& Unlie the DSI *odel and the 2CP@IP *odel) the Ci"$o 2hree-Layer Hierar$hi$al *odel doe" not de"$ri'e how $o**#ni$ation" tae %la$e& 5ather) it !o$#"e" on how 'e"t to de"ign a networ) e"%e$ially a relati(ely large networ or one that i" e+%e$ted to grow& In the %a"t) networ" ha(e 'een !lat !or the *o"t %art that i") a" the networ grew) ad*ini"trator" wo#ld "i*%ly add de(i$e" "#$h a" ro#ter" and "wit$he" in a lateral and ad ho$ !a"hion& 2he %ro$e"" %ro(ided !or no "tr#$t#re or $o*%art*entalization o! !#n$tion"& A" a re"#lt) a" networ" 'e$a*e *ore $o*%le+ and a%%li$ation" "#$h a" Coi$e-D(er-IP) Cideo-D(er-IP) and we' a%%li$ation" de*anded *ore 'andwidth) the li*itation" o! thi" !lat de"ign 'e$a*e *ore o'(io#"&;Ci"$o3" 2hree-Layer Hierar$hi$al *odel wa" the re"%on"e to thi" need !or 'etter !#n$tionality thro#gh de"ign& Ea$h layer o! the *odel i" in(ol(ed in "%e$i!i$ !#n$tion" and i" ty%i$ally de!ined 'y a %arti$#lar ty%e o! de(i$e& 2he three layer" o! the *odel !ro* 'otto* #% are A$$e"") Di"tri'#tion) and Core&2he"e layer" are e+%lained in the !ollowing "e$tion" and ill#"trated2he A$$e"" layer i" the layer $lo"e"t to the #"er") where they atta$h to the networ& 2he A$$e"" layer de(i$e $o#ld 'e a ro#ter i! the networ i" (ery "*all) '#t it i" ty%i$ally a h#' or layer 2 "wit$h& 2he A$$e"" layer i" "o*eti*e" $alled the de"to% layer 'e$a#"e it deal" with $onne$ting wor"tation" to the networ& ,ra*e" are deli(ered to the #"er" at thi" layer&2he Di"tri'#tion layer "e%arate" the A$$e"" layer !ro* the Core layer) i*%le*ent" networ %oli$ie") and %ro(ide" *any networing "er(i$e" "#$h a" Networ Addre"" 2ran"lation >NA2?) !irewall %rote$tion) and 7#ality o! "er(i$e >EoS?& IP addre""ing hierar$hy i" *anaged at thi" layer thro#gh ro#ting %oli$ie") 'road$a"t and *#lti$a"t do*ain") and CLAN"& >IP addre""ing i" the %ro$e"" o! a""igning #ni7#e IP addre""e" to de(i$e" on the networ&? 2hi" layer ty%i$ally in(ol(e" ro#ter" and in$l#de" all o! the ro#ter!#n$tion"& It %ro(ide" al*o"t all o! the $onne$ti(ity ta"" re7#ired 'y the #"er") in$l#ding Internet a$$e""&2he Core layer i" at the to% o! the *odel and i" re"%on"i'le !or "wit$hing large a*o#nt" o! data 7#i$ly and e!!i$iently& 2o %re(ent "lowing down the "wit$hing %ro$e"") thi" layer "ho#ld not 'e '#rdened with "e$#rity or tra!!i$ $ontrol *ea"#re" or any #nne$e""ary additional e7#i%*ent& 2he %ri*ary de(i$e at PHYSICAL DESIGN 5thi" layer i" a high-end layer . "wit$h& 2hi" de(i$e i" e""entially the 'a$'one o! the networ and ty%i$ally $onne$t" the #"er" to $or%orate re"o#r$e") "er(er") gateway") and the InternetA >CCNA) 201B?De(i$e $on!ig#ration and the %hy"i$al LAN in!ra"tr#$t#re "ho#ld al"o 'e addre""ed& ;Ci"$o Pri*e In!ra"tr#$t#re ar$hi(e" de(i$e $on!ig#ration" and %ro(ide" in!or*ation "#$h a" the date o! la"t $on!ig#ration $hange) "tat#" o! the $on!ig#ration Fo'") and allow" yo# to $o*%are $#rrent and %re(io#" $on!ig#ration"& Pri*e In!ra"tr#$t#re al"o allow" yo# to roll 'a$ to a %re(io#"ly "a(ed $on!ig#ration in the ar$hi(e i! a $on!ig#ration de%loy*ent !ail"A >Ci"$o) 201B?&>Ci"$o) 201B?PHYSICAL DESIGN 6,inally de(i$e tro#'le"hooting a$ti(itie" are addre""ed) there are a wide (ariety o! tool" a(aila'le to a""i"t yo# in tro#'le"hooting yo#r internetwor& 2hi" in$l#de" in!or*ation on #"ing ro#ter diagno"ti$ $o**and"&U"ing 5o#ter Diagno"ti$ Co**and"Ci"$o ro#ter" %ro(ide n#*ero#" integrated $o**and" to a""i"t yo# in *onitoring and tro#'le"hooting yo#r internetwor& 2he !ollowing "e$tion" de"$ri'e the 'a"i$ #"e o! the"e $o**and"=G2he "how $o**and" hel% *onitor in"tallation 'eha(ior and nor*al networ 'eha(ior) a" well a" i"olate %ro'le* area"&G2he de'#g $o**and" a""i"t in the i"olation o! %roto$ol and $on!ig#ration %ro'le*"&G2he %ing $o**and" hel% deter*ine $onne$ti(ity 'etween de(i$e" on yo#r networ&G2he tra$e $o**and" %ro(ide a *ethod o! deter*ining the ro#te 'y whi$h %a$et" rea$h their de"tination!ro* one de(i$e to another&U"ing "how Co**and"2he "how $o**and" are %ower!#l *onitoring and tro#'le"hooting tool"& Yo# $an #"e the "how $o**and" to %er!or* a (ariety o! !#n$tion"=G4onitor ro#ter 'eha(ior d#ring initial in"tallationG4onitor nor*al networ o%erationGI"olate %ro'le* inter!a$e") node") *edia) or a%%li$ation"GDeter*ine when a networ i" $onge"tedGDeter*ine the "tat#" o! "er(er") $lient") or other neigh'or"2he !ollowing are "o*e o! the *o"t $o**only #"ed "how $o**and"=G"how (er"ionHDi"%lay" the $on!ig#ration o! the "y"te* hardware) the "o!tware (er"ion) the na*e" and "o#r$e" o! $on!ig#ration !ile") and the 'oot i*age"&PHYSICAL DESIGN 7G"how r#nning-$on!igHDi"%lay" the ro#ter $on!ig#ration $#rrently r#nning&G"how "tart#%-$on!igHDi"%lay" the ro#ter $on!ig#ration "tored in non(olatile 5A4 >NC5A4?&G"how inter!a$e"HDi"%lay" "tati"ti$" !or all inter!a$e" $on!ig#red on the ro#ter or a$$e"" "er(er& 2he re"#lting o#t%#t (arie") de%ending on the networ !or whi$h an inter!a$e ha" 'een $on!ig#red&G"how $ontroller"HDi"%lay" "tati"ti$" !or inter!a$e $ard $ontroller"&G"how !la"hHDi"%lay" the layo#t and $ontent" o! ,la"h *e*ory&G"how '#!!er"HDi"%lay" "tati"ti$" !or the '#!!er %ool" on the ro#ter&G"how *e*ory "#**aryHDi"%lay" *e*ory %ool "tati"ti$" and "#**ary in!or*ation a'o#t the a$ti(itie" o! the "y"te* *e*ory allo$ator) and gi(e" a 'lo$-'y-'lo$ li"ting o! *e*ory #"e&G"how %ro$e"" $%#HDi"%lay" in!or*ation a'o#t the a$ti(e %ro$e""e" on the ro#ter&G"how "ta$"HDi"%lay" in!or*ation a'o#t the "ta$ #tilization o! %ro$e""e" and interr#%t ro#tine") a" wella" the rea"on !or the la"t "y"te* re'oot&G"how $d% neigh'or"HPro(ide" a degree o! rea$ha'ility in!or*ation o! dire$tly $onne$ted Ci"$o de(i$e"& 2hi" i" an e+tre*ely #"e!#l tool to deter*ine the o%erational "tat#" o! the %hy"i$al and data lin layer& Ci"$o Di"$o(ery Proto$ol >CDP? i" a %ro%rietary data lin layer %roto$ol&G"how de'#ggingHDi"%lay" in!or*ation a'o#t the ty%e o! de'#gging that i" ena'led !or yo#r ro#ter&Yo# $an alway" #"e the I at $o**and line !or a li"t o! "#'$o**and"&>Ci"$o) 201B?Lie the de'#g $o**and") "o*e o! the "how $o**and" li"ted %re(io#"ly are a$$e""i'le only at the ro#ter6" %ri(ileged e+e$ *ode >ena'le *ode?& 2hi" will 'e e+%lained !#rther in the JU"ing de'#g $o**and"J "e$tion& H#ndred" o! other "how $o**and" are a(aila'le& ,or detail" on #"ing and inter%reting the o#t%#t o! "%e$i!i$ "how $o**and") re!er to the Ci"$o Internetwor D%erating Sy"te* >IDS? $o**and re!eren$e"&PHYSICAL DESIGN 8Pro%o"ed Ci"$o 2hree-Layer Hierar$hi$al 4odel !or E(ergreen ,inan$ialPHYSICAL DESIGN 5e!eren$e"CCNA) >201B? 5etrie(ed A%ril 10) 201B !ro* htt%=@@www&net1.0&$o*@$$na@$$na@Sy'e+K20K20CCNAK20B&0K20St#dyK20G#ide&%d!5e!eren$e"Ci"$o) >201B?& 5etrie(ed A%ril 10) 201B !ro* htt%=@@www&$i"$o&$o*@$@en@#"@td@do$"@netL*g*t@%ri*e@in!ra"tr#$t#re@2- 0@#"er@g#ide@%ri*eLin!raL#g@$hgde($on!ig&ht*lCi"$o) >201?& 5etrie(ed A%ril 10) 201B !ro* htt%=@@www&$i"$o&$o*@en@US@do$"@internetworing@tro#'le"hooting@g#ide@tr1/02&ht*l htt%=@@www&$%$"te$h&$o*@!ra*e-relay-in!or*ation&ht*Paloalonetwor") >201B?& 5etrie(ed A%ril 10) 201B !ro* PHYSICAL DESIGN 1! htt%"=@@www&%aloaltonetwor"&$o*@$ontent@da*@%aloaltonetwor"-$o*@enLUS@a""et"@%d!@te$h- 'rie!"@networ-"eg*entation-"ol#tion-'rie!&%d!