case study 1: kcit - wordpress.com networking : case study - 1 ... dell server: vmware esxi server...

Case Study 1: KCIT

Scott Martin KINGSCLIFF INSTITUTE TAFE

Diploma Networking : Case Study - 1

Created on 28/06/16 Last saved by Scott Martin on 12/07/16

CaseStudy1_2016S2_KC_V1.docx Page 1 of 11

Project ‘KCIT Inc.’ Synopsis: You have been employed by a Consulting Company that specializes in the design and implementation of networks and systems for medium to large sized business. As part of one of their projects you have been asked to design and implement a solution for a Registered Training Organisation (RTO) to build a Virtualised solution for the RTO’s lab environment. This build will utilise virtualisation technology, and will be used as a prototype to test the feasibility of using this technology in other labs for student project work.

The Business:

Your client, called Kingscliff Information Technology (KCIT) provides first and second level support for the Kingscliff campus for their RTO. They have a number of clients to which they would like to offer support to. These include;

The Information Technology faculty (IT),

The Creative Industry faculty (CI), and

The Health, Aged Care and Nursing faculty (HACaN).

This Client is a very important customer because it is envisaged that this business is going to grow significantly. Indeed this client site has over 19 faculties at the Kingscliff campus and it is KCIT goal is to provide the help desk support for all 19 of the sections.

Obviously, Top Quality Customer Support is the Key Goal of your role in the development of the Help Desk.

The KCIT campus encompasses about 10 hectares with 10 TAFE buildings and one building belonging to Kingscliff High School. The buildings are identified by letters starting at “A” through to “O” and are referred to “Blocks”. A block is the main “Administration” Block and “D – Block” is where the IT Faculty is located.

The Information Technology faculty has a similar structure to the rest of the faculty’s within TAFE NSW, where the teachers report to the Head Teacher and the Head Teacher report to their respective Director. It is important to note that the IT and Creative Industries sections are combined under the one Head Teacher and collectively known as the ITCI (itchy) faculty.

You will be reporting to the teachers of the IT Faculty identified below;

Scott Martin [email protected]

Az deSilva [email protected]

The Diagrams on the next pages shows the locations of each block and the organisational structure for your reference.

mailto:[email protected]

[email protected]




Kingscliff TAFE Campus Map:




TAFE ORGANISATIONAL CHART:




This project will focus on the Information Technology faculty (IT) and particularly the IT faculty’s Computer Labs. KIT currently uses 2 computer ‘Labs’ which are located in D-Block in Rooms DG11 and DG29. These ‘Labs’ are isolated from the rest of the corporate network for security reasons. In addition to the two labs, KCITinc also maintains a single computer room, located in a converted storage room (DG23) that is used to manage the two labs, as well as host their Web server. The web server is currently running on a small generic ‘appliance server’, and will ideally be replaced with a virtualized linux based web server.

KCITinc currently have an agreement in place with Microsoft and VMware which gives the RTO and their student’s free access to the company’s products. It is expected that these agreements will be an ongoing agreement for the foreseeable future.

In addition to hosting their own Web Server, KCITinc also run from their server room a number of other systems/services as identified below;

KCITinc Infrastructure Servers

System Service/Function

Dell Server: VMware ESXi Server - Virtualised Windows Server 2008r2 DNS

DHCP

DHCP – Multiple Networks (5 in total)

Virtualised “Vyatta” Router Router Firewall Web Caching Proxy

IBM Workststion : PFsence Logging server

Webserver [Applance] – To be replaced with a Virtualised Windows File Sharing solution

Web Server – [with welcome page only]

HP/Compaq ML150 : VMware ESXi Server For Student Projects

KCITinc use the following Non-Routable IP Address Ranges.

KCITinc IP Ranges

Range Function

192.168.100.0/24 DG29 Lab

192.168.101.0/24 DG29 Testing/ Workspace

192.168.104.0/24 DG11 Lab

192.168.105.0/24 DG11 Testing/Workspace

192.168.96.0/24 DG23 Server Network

192.168.3.0/24 DMZ

You will need to select an appropriate address range to use for your project. The address range/s selected will need to be included in your documentation and approved before the Development phase begins.




KCIT Strategic Plan: OUR AMBITION TAFE NSW Higher Education will continue to:

Enhance and expand opportunities for students from all communities to attain higher education qualifications;

Encourage the exploration and development of inquiry, applied skills and knowledge within a vocational and industry based learning environment.

OUR INTENTIONS It is intended that through this strategic plan, TAFE NSW Higher Education will:

1. Extend the range of quality higher education programs through increased services and meeting industry needs. 2. Build market share and respect for the value and difference of TAFE NSW Higher Education. 3. Expand opportunities for staff to develop their academic capability. 4. Build and extend the capabilities of TAFE NSW Higher Education to support the consolidation and growth phase of higher education at TAFE NSW.

OUR COMMITMENTS TAFE NSW Higher Education knows that our future strength rests on our values – supporting our customers and our people in all we do. TAFE NSW Higher Education will be:

PASSIONATE We love what we do and the difference we make.

CONNECTED We share our ideas and learning across our networks and with our partners.

CREATIVE We make things possible and say yes to opportunities and ideas to work smarter.

PRACTICAL We have the know-how and experience to get the best results.

TRUSTED People can count on us and our longstanding reputation of service as a public education provider. QUALITY TEACHING AND LEARNING TAFE NSW has been delivering training in NSW for over 120 years and has established a strong reputation for quality teaching and learning and responsiveness to industry needs. Through its network of ten TAFE NSW Institutes and 130 colleges, TAFE NSW delivers training to over half a million people each year. TAFE NSW now adds degrees to its range of courses. When you enroll in a TAFE NSW degree, you will receive a quality education delivered by industry qualified teachers in state-of-the-art facilities. PRACTICAL AND CAREER FOCUSED DEGREES TAFE NSW Higher Education degrees are designed to give you the academic knowledge and technical skills needed to excel in your chosen career. Our degrees offer a practical, career oriented focus to prepare you for professional practice. As well as developing practical and technical skills, you will also develop skills and knowledge required in all professional contexts such as:

how to communicate effectively,

skills in critical thinking and analysis,

applying teamwork and leadership skills, and

working collaboratively to solve problems and effect change.

DYNAMIC LEARNING ENVIRONMENTS




From classrooms to studios to internships, you will learn through a range of individual and group-based tasks in environments that simulate real world industry practices.

KCITinc Business Need: Kingscliff Information Technology provides training for IT Students and as their ‘Strategic Plan’ states, aims to give student practical and career focused education. In that light, KCIT would like to redesign their lab environments to support greater functionality. This greater functionality is brought about by a number of factors:

KCIT considers its self a good corporate citizen, and as such would like to investigate the use of virtualization in this project both as a way of

simplifying their tasks of maintain the labs for their classes but also in terms of finding a more sustainable solution.

Desire to build a help desk environment, to allow student to participate (and gain work experience) in a realistic business environment and

Provide a means for KCIT to generate an income by providing support to other faculties on campus.

Desire to provide a more realistic business focused network for students to gain experience in.

At this point in time KCIT would like to setup a network that would allow two networks (labs) to communicate with each other as well as the servers located on a 3rd network (Computer Room). The functionality of the networks must replicate that functions of the existing networks and systems, but must include an Active Directory domain for security. KCIT will also need a phone system to allow the creation of a help-desk environment. It is envisaged this phone system would be implemented using one of the many open-source IP phone systems in the open-source market. It is envisaged that an appropriate ‘soft phone’ will be used initially so you will be required to select one and implement.

KCIT is willing to add a bonus if an open source Help-Desk management System could be implemented. This would be used to setup the Help-Desk functions within the new network.. KCITinc, have identified one of their current Systems Administrator’s as your point of contact, for any further questions that you might have. The company has stressed the importance to document any further questions asked (and responses) to ensure continuity in the documentation of the project. Correspondingly, all requests for further information should be made Via E-mail. Your Contact will be able to provide you with any relevant passwords as required. Your Contacts will be: Scott Martin. E-Mail: [email protected] Az de Silva. E-Mail: [email protected] In addition to the above, the company has provided the following Network Diagrams to assist with your planning.






DG23192.168.96.0/24

Lab- DG11192.168.104.0/24192.168.105.0/2421 Workstations

Lab- DG29192.168.100.0/24192.168.101.0/2420 Workstations

Dell PowerConnect 6248

Switch

192.168.100.12

PowerEdge R710

Endian Firewall

ADSL Router146.26.112.253

Linux File ServerFOG

Deployment Boot Server192.168.104.223

NAS 192.168.100.11

Web Server- DMZ192.168.3.1


Switch

Cat 6 Backbone

Cat 6 Backbone

Cat 6 Backbone

Cat 6 Backbone

Dell PowerConnect 6224 Core Switch

KCIT LabsBasic Network Layout Internet

21x PCs

19 x PCs

DMZ

PE-VM#1PE-VM#1

HP Proliant ML150

HP-VM#1HP-VM#1

Kingscliff TAFE IT Facility - Network Documentation : Lab Network Overview

Page : 1 of 4Last Updated : 11-October-2012 Author : Scott Martin

TAFE Corporate LANMicrosoft KMS License Server Filtered Link




PowerEdge R710Server- ESXi-

Server 2008- DNS- DHCP192.168.96.8

Endian Firewall192.168.96.2

ADSL Router146.26.112.253

192.168.3.254/24

Web Server- DMZ192.168.3.1

192.168.96.2/24

Dell PowerConnect 6224 Core Switch

Sw0.noc.kcit.local

DMZ

PowerEdge R710

Server- ESXi- Server 2008- DNS- DHCP

PowerEdge R710

Server- ESXi- Server 2008- DNS- DHCP

PowerEdge R710Esx1.kcit.local – ESXi Hypervisor v5.0RAM:21452 mbCPU: 15477 Mhz

R710 Virtual Machine #1Server- r710 (Svr 2008, DHCP, DNS for all Vlans)IP: 192.168.96.8

R710 Virtual Machine #2Server- r710 IP: 192.168.0.3 Pfsence (Log Server)

ADSL RouterExternal IP : 146.26.112.253Internal IP : 192.168.3.254

HP Proliant ML150 [Student Project Server]Esx2.kcit.local – ESXi Hypervisor v5.0RAM: 7821 mb CPU: 6922 Mhz

Dell PowerConnect 6224Core Switch Sw0.noc.kcit.local

Endian Firewall192.168.96.2

Web Server [DMZ] More Info Required

Configuration and Settings for DG23: Configuration and Settings for DG23:192.168.96.0/24

Kingscliff TAFE IT Facility - Network Documentation : DG23


1 3 5 7 9 11 13 15 17 19 21 23

2 4 6 8 10 12 14 16 18 20 22 24

Port Usage:Port 1: R710Port 2: R710Port 3:Port 4:Port 5: KCD0139 – DET LinkPort 6:Port 7: ML150Port 8: Red – IBM LowerPort 9:Port 10: - WebServerPort 11:Port 12: ADSL rtr

Port Usage:Port 13:Port 14:Port 15:Port 16:Port 17: R710 – Left RearPort 18:Port 19:Port 20:Port 21: DG29 Port BPort 22: Port 23: DG11 Port APort 24: DG11 Port B

Port Usage: Port Usage: Port Usage:

SW0.NOC.KCIT.LOCAL - Layer 3 Switch

21 22 23 24

SFP SFP SFP SFP




Dell PowerConnect 6248 Switch192.168.97.12

DG29NAS [NAS Device] 192.168.100.11

19 x IBM ThinkCentre i3 PCsUsername : administratorPassword : su

HP LaserJet P2055dn192.168.100.12/24


192.168.100.12

NAS 192.168.100.11


Switch

19 x PCs



1 3 5 7 9 11 13 15 17 19 21 23

2 4 6 8 10 12 14 16 18 20 22 24

25 27 29 31 33 35 37 39 41 43 45 47

26 28 30 32 34 36 38 40 42 44 46 48

Port Usage:Port 1: WS01Port 2: WS02Port 3: WS03Port 4: WS04Port 5: WS05Port 6: WS06Port 7: WS07Port 8: WS08Port 9: WS09Port 10: WS10Port 11: WS11Port 12: WS12

Port Usage:Port 13: WS13Port 14: WS14Port 15: WS15Port 16: WS16Port 17: WS17Port 18: WS18Port 19: SVR1Port 20: Teacher SparePort 21: DG29NASPort 22: Teacher PCPort 23: Spare (WiFi)Port 24: SPARE

Port Usage:Port 25: PrinterPort 26: Port 27:Port 28:Port 29:Port 30: New NASPort 31:Port 32:Port 33:Port 34:Port 35:Port 36:

Port Usage:Port 37:Port 38:Port 39:Port 40:Port 41:Port 42:Port 43:Port 44:Port 45:Port 46:Port 47: DG23 Port APort 48: DG23 Port B

Port Usage:


45 46 47 48

SFP SFP SFP SFP




Dell PowerConnect 6248 Switch 192.168.97.11

DG11NAS [NAS Device] – To be replaced192.168.104.11

21 x IBM ThinkCentre PCs

HP LaserJet P2055dn192.168.104.12/24 ??

FOG Deployment Boot Svr/Linux File Server192.168.104.223


192.168.104.12

NAS [To be updated]


Switch

21 x PCs

Linux File ServerFOG

Deployment Boot Server

192.168.104.223



1 3 5 7 9 11 13 15 17 19 21 23

2 4 6 8 10 12 14 16 18 20 22 24

Port Usage:Port 1:Port 2:Port 3:Port 4:Port 5:Port 6:Port 7:Port 8:Port 9:Port 10:Port 11:Port 12:




Port Usage:


25 27 29 31 33 35 37 39 41 43 45 47

26 28 30 32 34 36 38 40 42 44 46 48

45 46 47 48

SFP SFP SFP SFP




Summary:

Below is a summarized version of the project but it should be stressed, this summary should not replace the detailed deliverables identified within the “Project” document and is only included to give you an overview of what is required.

Determine due dates for Project Milestones

Develop an understanding of the business, the context that it conducts its business activities, and the context of the business needs.

Determine the business problem and its requirements.

Evaluate the business threats and risks to the ICT systems.

Document disaster recovery plan and submit to appropriate person for review and sign-off

Investigate advantages and disadvantages of current and proposed ICT systems

Design and build a sustainable test network and systems to develop your project on. o For your design, your network design should include all equipment necessary to implement the project.

Design and build one virtualised Windows Server that must reproduce the functionality of the existing network server.

Design and build two (2) student PCs to allow the system to be booted into one of two virtualised desktop environments. (eg. 1xWindows 8 and 1xWindows 7) for each of the labs.

The choice of the virtualisation software/host is up to you, but you will be required to briefly discuss what virtualisation software you considered, and why you selected/recommended your chosen solution.

You will then have to replicate all the functionality of the existing networks including (but not limited to); o A server that provides a Microsoft Active Directory Domain environment, DNS and DHCP for all networks o The server must host a file server with two shared folders. One that allows ONLY Teachers to access, and One that allows Students to access

as well as teachers o Configure two Teacher Accounts o Configure 6 Student Accounts o A minimum of 2 PCs per network (these will be used for testing as well as representing the Lab PCs for student use.) o An internal web server (intranet) – [with a welcome page only] o Install software and configure and test voice over internet protocol (VoIP) and videoconferencing services o Configure an appropriate automated antivirus solution o Complete a comprehensive test phase for your final project. o Undertake ongoing monitoring of the viability and reliability of network security

Fully Document the project in a professional report.

------------------------------------------------------------------------------------- E N D o f D O C U M E N T ----------------------------------------------------------------------------------

case study 1: kcit - wordpress.com networking : case study - 1 ... dell server: vmware esxi server...

Documents