Scribd
Upload
8 views19 pages

Assignment 1 - Course Final Project Part I, II, & III

The document outlines the tasks for a junior network administrator to set up a corporate network for a new bank branch, including designing an IP address scheme, implementing VLANs, and configuring security settings. It details subnetting for the network, VLAN configurations, IP address assignments, and security measures for network devices. The document also includes commands for configuring OSPF, securing remote access, and testing connectivity.

Uploaded by

ouma alphonce
Copyright
© © All Rights Reserved
We take content rights seriously. If you suspect this is your content, claim it here.
Available Formats
Download as DOCX, PDF, TXT or read online on Scribd
8 views19 pages

Assignment 1 - Course Final Project Part I, II, & III

The document outlines the tasks for a junior network administrator to set up a corporate network for a new bank branch, including designing an IP address scheme, implementing VLANs, and configuring security settings. It details subnetting for the network, VLAN configurations, IP address assignments, and security measures for network devices. The document also includes commands for configuring OSPF, securing remote access, and testing connectivity.

Uploaded by

ouma alphonce
Copyright
© © All Rights Reserved
We take content rights seriously. If you suspect this is your content, claim it here.
Available Formats
Download as DOCX, PDF, TXT or read online on Scribd

Assignment 1 - Course Final Project Part I, II, & III

Rakesh Thadem

Avila University

CY 611 Network Security

Clifton L. Krahenbill

Monday, January 26, 2026


Scenario

As a junior network administrator, you and your team were tasked with planning and configuring

a corporate network for a new bank branch in Miami. It is your duty to set up the network

correctly and implement basic security settings on all systems.

Note: The correct hostnames are already set on all devices.

Part 1 - Examine the Topology

Physical Topology
Part 2 - Design IP Address Scheme

Subnetting for [Link]/24 → 8 subnets

Subnet Network Address Usable Host Range Broadcast Address

1 [Link] /27 [Link] – [Link] [Link]

2 [Link] /27 [Link] – [Link] [Link]


3 [Link] /27 [Link] – [Link] [Link]

4 [Link] /27 [Link] – [Link] [Link]

5 [Link] /27 [Link] – [Link]

[Link]

6 [Link] /27 [Link] – [Link]

[Link]

7 [Link] /27 [Link] – [Link]

[Link]

8 [Link] /27 [Link] – [Link]

[Link]

2) New subnet mask = /27 → dotted decimal [Link]

3) Usable hosts per subnet:

Calculate: total addresses per subnet = 2(32 − 27) = 25 = 32.

Usable = 32 − 2 (network + broadcast) = 30 usable hosts.

Lab Task 2: Implement VLANs and Trunk

Lab Task 2: Implement VLANs and Trunk

Configure VLANs and set trunks on the appropriate network and its associated

devices.

Note: Perform steps 1–4 on S1-Office1 and S2-Office1.

1 Create and name VLANs as follows:

 VLAN 10: Management


 VLAN 20: Marketing

 VLAN 30: Accounting

 VLAN 100: Native

2 On S1-Office1 and S2Office1, configure the interfaces as access mode

and assign VLANs as follows:

 VLAN 10: FastEthernet0/1-10

 VLAN 20: FastEthernet0/11-20

 VLAN 30: FastEthernet0/21-24

3 Configure the S1-Office1 to S2-Office1 interconnecting link as

trunk on both.

Note: To simplify the identification of the ports, click Options…, click

Preferences…, and select Always Show Port Labels in Logical Workspace.


4 Verify the VLAN and trunk configurations using the appropriate show

commands and save the configuration.


Lab Task 3: IP Address Assignment

Task # Description IP Address Assignment

1 R3 interface to Office3 [Link] /27

(Subnet 1)

2 R3 interface to Office2 [Link] /27

(Subnet 2)

3 R1 <-> R2 WAN link R1: [Link] /27, R2:

(Subnet 3) [Link] /27

4 R1 <-> R3 WAN link R1: [Link] /27, R3:

(Subnet 4) [Link] /27

5 R2 <-> R3 WAN link R2: [Link] /27, R3:

(Subnet 5) [Link] /27

6 VLAN 10 (Office1 - Gateway: [Link]

Management) /27, Hosts:

[Link] /27

7 VLAN 20 (Office1 - Gateway: [Link]

Marketing) /27, Hosts:

[Link] /27

8 VLAN 30 (Office1 - Gateway: [Link]

Accounting) /27, Hosts:

[Link] /27

9 Office 2 & Office 3 Office2: [Link] /27,

Endpoints Office3: [Link] /27

Lab Task 4: Configure R1 for Inter-VLAN Routing


Lab 5: Secure Switch Physical Ports
Lab Task 6: Configure OSPF

Lab Task 7: Initial and Security Settings for Network Devices

(Listed commands were executed on all routers and switches)

1. en conf t

username Admin password ACDC1973

2. line console 0 login local exit

3. enable password beatles1960

4. service password-encryption

5. banner motd #Access to this device is for authorized personnel only!#

ex wr ex
Lab Task 8: Secure Remote Access
(Listed commands were executed on R1, R2, and R3)
1. ip domain-name [Link]

2. crypto key
generate rsa 2048

3. ip ssh version 2

4. line vty
0 4
login
local
motd-
banner
transport input
ssh exit

5. ex
sho ip
ssh sho
run
wr
Lab Task 9: Full Connectivity Test
Lab Task 10: Extended ACL
(The below commands were executed on R3.)
1. en
con
f t
access-list 100 deny ip host [Link] host
[Link] access-list 100 permit ip any any
int gi0/1
ip access-group
100 in ex

2. ex
sho access-
lists sho run
wr

From the Guest PC, I was able to ping the email server but was not able to ping the NTP server.

You might also like