wireless networking case study: wireless network services using wi
TRANSCRIPT
Mehran UET, Jamshoro Pakistan
Wireless Networking Case Study:Wireless Network Services using WI-FI at the
Mehran UET, Jamshoro. Pakistan
Presented by:
Mehboob Khatani
Saira Saleem
Email:
Background
• Pakistan Educational & Research Network
• Core Network & Network Design
• Project Introduction
• Overall Objective of Projects Implementing Wi-Fi link in Mehran UET.
• Geographical Location and Optical Fiber Link
• Mehran ISP
• Planning and Development
• Questions
ROADMAP
Pakistan Educational & Research Network
NUSTRawalpindi
UET Peshawar
UNIVERSITY
GIKI Topi
LUMS Lahore
BZ UniversityMultan
Baluchistan UniversityQuetta
Mehran UETJamshoro
Islamia UniversityBahawalpur
NED KarachiAJKU Mirpur
Internet
CORE NETWORK
Three core locations including Islamabad, Lahore and Karachi
These nodal points are interconnected at 2 Mbps using existingoptical fiber network in the country
Upgradeable to 155 Mb/s
Initially 4 Mbps of international connectivity shall be provided atnodal locations for Internet facility
Network design
LAN Switch
KarachiCore Router
RawalpindiCore Router
LahoreCore Router
2x2 Mbps 2x2Mbps
2x2 Mbps
22 universities r connectedincluding MUET
Sir Syed UET
Aga Khan Univ.
Clifton
Gulshan-e-IqbalNED University
Karachi University
2048 Kbps
6144 Kbps ( 4 KM )
6144 Kbps ( 2.5 KM )
IBA school
2048 Kbps
West Wharf
Azizabad
North Karachi
Nazimabad
Gulshan-e-Mayamar
Landhi
Nazimabad-I
Pak. Naval Academy
2048 Kbps
Baqai Medical College1024 Kbps
Hamdard University
2048 Kbps
Jinnah Women Univ.256 Kbps
KIIT1024 Kbps
FAST1024 Kbps
Zia Mohi-ud-Din Medical University1024 Kbps
Indus Valley
SZABIST
512 Kbps
1024 Kbps1536 Kbps
16384 Kbps
Quetta Central
Univ. of Balochistan
UET Balochistan
2048 Kbps ( 3 KM )
Central-III
Command&Staff College
256 Kbps
Pak Capital2048 Kbps ( 3 KM )
26.368 Mbps
1024 Kbps 3.328 Mbps
10.240 Mbps
DXX
DRS
OF
VSAT
Jam
sho r
o
20 4 8 Kb
ps ( 0. 5
KM
)
Mehran UET QA Eng.Sc&T
4096 K
bp
s ( 1.5
KM
)
1024Kbps
Naw
abs h
ah
Sukk
ur
Shah Abdul LatifUniv.
Cen
tral
Hyde
rab a
d
1024Kbps
Sind Univ. Sind Agri.Univ.
1 024 Kb
ps ( 3.5
KM
)
Sind & BaluchistanLegend
Project Objectives
Project Introduction
• The Mehran UET wants to operate a wireless network servicearound its campus across the Jamshoro.
• Based on the 802.11g Wi Fi standard, and will use VPN(Virtual Private Network).
• The service will be available to all bona fide members of theUniversity, and gives access to all standard network services.
Overall Objectives of the Project
University can provide a Wireless service that will:
be deployed on two campuses
be integrated into our network infrastructure
have appropriate levels of resilience
have a support service, built around a self-service website.
Implementation & Planning
Mehran UET Main Building
-Civil Dept-Electrical-Mechanical-Basic Science-Administration-TeacherRoomConnected byOF
Faculty of IIT
IncludesComputer systemsSoftware engineering
Electronics
Telecommunication
Biomedical
Connected to OF for mainbuilding ISP
And form this second main link
Other departments rconnected
Superhighway
??
??
Architecture
CRP
Mehran UET Network Architecture
Target ????
Internet
AccessPoint (AP)
OF
AccessPoint (AP)
AccessPoint (AP)
Super high way
12km
15km
13 km
Planning and Development
A small project team comprising Applications and Networkstaff was established
For Security we decided to keep the access pointsunsecured, but restrict the network to which they are allconnected. This will be achieved using a combination ofVLAN (Virtual Local Area Network) and VPN.
All bona fide members of the University will have IT accountswithin our Microsoft® Active Directory®. The VPN serverstherefore use the Microsoft® IAS (Internet AuthenticationService) to authenticate the VPN login against the ActiveDirectory.
Contd.
The sequence of events for a connection is asfollows:
1. Client will discover and connects to an accesspoint.
2. The client will be issued with an IP addressby a DHCP (Dynamic Host ConfigurationProtocol) server.
contd.
3. Permissions within the restricted VLAN will onlyallow a client to connect to DHCP servers andthe Linux/Windows 2000 professional ® VPNservers – see Figure 1
4. An encrypted connection will be establishedwith the VPN servers.
5. The VPN server will authenticates usernameand password against the Active Directory via aWindows® server running the IAS, using CHAP(Challenge Handshake Authentication Protocol).The Radius server will be running on theLinux/Window 2000 Professional ® VPN willonly use to hand-off/receive the authenticationrequest to/from the IAS Service.
Contd.
6. The VPN server will issue a PPTP(Point-to-Point Tunneling Protocol) IPaddress. This is associated with a newVLAN whose permissions allow clientsfull standard network access – seeFigure 2
7. For Internet access, this new VLAN’spermissions require that the University’sproxy servers are used with relevantclient software applications.
Contd.
User Access & Support
All access points will be provided by central ITServices conforms to the above infrastructure.
Any ’rogue‘ access points will routinely trackeddown and will either disable, or will requireconforming to the same infrastructure. In thisway, all users can expect a standard servicewherever they will locate on our campuses.
If users will expect to set up VPN access ontheir client devices, configure their web browseretc. then it will absolutely essential thatComprehensive web-based self-help materialswill available.
Contd.
Consequently, a full range of step-by-stepguides for Windows® 98, Windows® Me(Millennium Edition), Windows® 2000,Windows® XP, and Linux® operating systemswill be created, together with troubleshootingand FAQ pages. The support site will beavailable to bona fide members of the MehranUET.
Future Extension
Up to 2006-7 we will connect withother affiliated universities/institutes Dawood UET
AgaTaj Institute
Hiast
Questions & Comments