Scribd
Upload
421 views6 pages

CCNA2 Case Study 2022

The document outlines an 8 phase case study for students to design and configure a complex network for Rockford PLC, a manufacturing company. Key requirements include: 1. Designing the network topology and addressing scheme connecting 3 locations using leased lines and VLANs. 2. Configuring basic settings on routers and switches, including interfaces, passwords, banners and descriptions. 3. Setting up RIP routing between locations and a default route to the internet. 4. Implementing VLANs, trunking and port security on the main switch. 5. Applying access control lists for security between VLANs and management. 6. Configuring DHCP services to automate IP addressing. 7

Uploaded by

Mohammed El-Saadi
Copyright
© © All Rights Reserved
We take content rights seriously. If you suspect this is your content, claim it here.
Available Formats
Download as PDF, TXT or read online on Scribd
421 views6 pages

CCNA2 Case Study 2022

The document outlines an 8 phase case study for students to design and configure a complex network for Rockford PLC, a manufacturing company. Key requirements include: 1. Designing the network topology and addressing scheme connecting 3 locations using leased lines and VLANs. 2. Configuring basic settings on routers and switches, including interfaces, passwords, banners and descriptions. 3. Setting up RIP routing between locations and a default route to the internet. 4. Implementing VLANs, trunking and port security on the main switch. 5. Applying access control lists for security between VLANs and management. 6. Configuring DHCP services to automate IP addressing. 7

Uploaded by

Mohammed El-Saadi
Copyright
© © All Rights Reserved
We take content rights seriously. If you suspect this is your content, claim it here.
Available Formats
Download as PDF, TXT or read online on Scribd
You are on page 1/ 6

‫ طرابلس‬-‫كلية التقنية اﻻلكترونية‬

CCNA2:‫المادة‬ ‫الخامس‬:‫الفصل‬ ‫اﻻتصاﻻت‬:‫القسم‬

Routing and Switching Essentials v6


Case Study
Overview and Objectives
This case study allows students fully Design a complex network using skills gained
throughout the course but build and configure only a prototype as seen in the following
diagram, using Cisco Packet Tracer v 8.1. This case study is not a trivial task. To
complete it as outlined with all required documentation will be a significant
accomplishment.
The case study scenario describes the project in general terms, and will explain why the
network is being built. Following the scenario, the project is broken into a number of
phases, each of which has a detailed list of requirements. It is important to read and
understand each requirement to make sure that the project is completed accurately.

This case study requires the student to accomplish the following tasks:

 Set up the physical layout of the network using the diagram and accompanying
narrative
 Correctly configure Network Devices with a basic configuration
 Correctly configure VLANS
 Correctly configure IEEE 802.1q trunking
 Correctly configure RIP Version 2
 Correctly configure DHCP
 Correctly configure NAT
 Create and apply access control lists (ACL’S) on the appropriate routers and
interfaces
 Troubleshoot and test the connectivity between all devices
 Provide detailed documentation in a prescribed form, as listed in the
deliverables section
Scenario:
Rockford PLC is a large company who specialise in the manufacture of several models
of cars. The company has been actively new employees throughout the year. Rockford
realises that to aggressively compete in its market, the company needs change to its
infrastructure that will support new models of cars and Internet access, allowing them
to increase their productivity and to follow market trends. Rockford wants to use the
internet to gain clients and find new opportunities.
Rockford PLC needs a network to be designed and implemented; the company has
locations in three cities. All of the locations will be connected using leased-line (T1)
serial links. All three locations will use RIP Version 2 routing process. Also, default
static route must be used to access the internet.

One location, Tripoli Centre, has a large and complex LAN. Due to the size and
complexity, the company wants to create VLANs to control broadcasts, enhance

1
security, and logically group users. The company also wants to use private addresses
throughout the Autonomous System, DHCP over most of the LAN segments, Static and
Dynamic NAT implemented for Internet connectivity. The company also wishes to
limit Internet access to Web traffic and email while allowing multiple protocols (not
all) within its own WAN.
Although private addresses (RFC 1918) will be used, the company appreciates
efficiency and address conservation in design. To minimize wasted address space, they
have requested VLSM to be used when appropriate.

You are a junior network engineer and have been requested by a Rockford PLC to
design an appropriate addressing scheme to fit their network requirements.

Phase 1: Addressing the WAN & LANs


Use the following instructions to complete Phase 1:
 Use 10.10.16.0/20 for internal addressing.
 Apply /30 subnets on all serial interfaces, using the last available subnet.
 Assign an appropriately sized subnet for the Tripoli Centre LANs, has about
400 devices:
- VLAN 99: 5 devices (Management VLAN)
- VLAN 2: 240 hosts (Sales)
- VLAN 3: 55 hosts (HR)
- VLAN 4: 100 hosts (Production)

2
 Assign the appropriately sized subnet to the Zawiyah, LAN (90 hosts).
 Assign an appropriately sized subnet for the Tripoli (headquarter), LAN (36
Hosts).
 Document the addressing scheme in tables.
Note: Addresses will be assigned dynamically to hosts; refer to the DHCP section to
this document for details.

Phase 2: Basic Router and Switch Configuration


Use the following instructions to complete Phase 2:
1. Configure each router with the following settings:
 Configure router name
 Console Password: cisco
 Enable secret password: class
 Banner MOTD: # Authorized Access Only#
 encrypt all passwords
 Use SSH for management connections
- vty 0-4
- Configure the domain name to be cisco.com.
- Create an admin user with cisco as the password.
 Configure the interfaces on all routers as documented in Phase 1.
 Assign the first IP address available to routers
 Configure descriptions in point-to-point interfaces:
Link <router1_name> - <router2_name>
 Configure descriptions in LAN interfaces:
LAN <LAN_name>
2. Configure each switch with the following settings:
 Configure Switch name
 Console password: cisco
 Enable secret password: class
 encrypt all passwords
 Banner MOTD: # Authorized Access Only#
 Configure a switch to remotely manage.
 Use SSH for management connections
- vty 0-4
- Configure the domain name to be cisco.com.
- Create an admin user with cisco as the password.
 Configure interfaces descriptions only that connected with routers:
LAN <Router_name>
3. Use chart to document the final addressing scheme.

3
Phase 3: Configuring Default Routes & RIP Version 2
Routing
Use the following instructions to complete Phase 3:
 Configure RIP Version 2 on all Routers
 Configure a Default Route (pointing to the ISP) on Tripoli and redistribute the
route into the RIP Version 2 network.

Phase 4: Configure VLANs, Trunks & Port Security


Use the following instructions to complete Phase 4:
Configure the Tripoli Centre Local Area Network switch as follows:
 Create and name three Data and one Management VLAN, for a total of 4
VLANs.
- VLAN 99: Management (Native)
- VLAN 2: Sales
- VLAN 3: HR
- VLAN 4: Production.
- VLAN 5: Garbage VLAN
 Assign ports:
- Ports G0/1 to trunk mode (802.1Q)
- Ports fa0/1 to VLAN 99
- Ports fa0/2-7 to VLAN 2
- Ports fa0/8-10 to VLAN 3
- Ports fa0/11-18 to VLAN 4
- Disable all unused ports and put them in Garbage VLAN
 Connect G0/0 on the Tripoli Centre router to the switch port G0/1
 Connect one PC per VLAN (for testing purposes).
 Configure port (1) in VLAN 99 with port-security, set the maximum MAC
addresses to 1 and the violation action to shutdown.
 Configure ports (2-7) in VLAN 2 with port-security, set the maximum MAC
addresses to 1 and the violation action to Protect.

Phase 5: Configuring ACLs


Use the following instructions to complete Phase 5:
1. Configure a Standard ACL to filter traffic.
The ACL should:
 Deny only the Zawiyah LANs access to VLAN 3 (Sales), permit all others
2. Configure a Named Standard ACL to filter traffic.
The ACL should:
 Permit the HR (VLAN 2) users to access the Production (VLAN4), deny all
others.

4
3. Use a Standard ACL to control SSH access to all routers.
The ACL should:
 Allow SSH session to all routers from the Management VLAN (VLAN 99) only;
SSH sessions from all other networks should be denied.
4. This will serve as the deliverable item for Phase 5.

Phase 6: Configuring DHCP


DHCP Services
1. DHCP should provide services to the following LANs hosts:
 Tripoli’s LANs
 Zawiyah’s LANs
 Tripoli centre’s VLAN 2, VLAN 3 and VLAN 4.
2. DHCP should pass the following parameters to the hosts:
– IP address and Subnet Mask
– Default Gateway
– DNS address (209.1.1.2)
 The Tripoli router will perform DHCP services. Configure the Tripoli using the
DHCP pools documented in Phase 1.
3. Configure DHCP services on the Tripoli router as follows:
– Exclude the first 10 IP addresses from each pool (to be used for printers,
servers, and so on)
– Connect one PC per VLAN/LAN (for testing purposes) and Configure PCs
to obtain its IP address automatically.
– Verify the operation of DHCP
 This documentation will serve as the deliverable item for Phase 6

Phase 7: NAT
1. The Tripoli’s (2) routers will perform NAT. Configure the routers as follows:
 Define the NAT pool. The pool consists of public network address
200.10.10.64/26. Exclude first 10 addresses from this pool (to be use for servers,
when required).
 Define an access control list, which will translate for all internal (10.10.16.0/20)
addresses, and deny all other traffic.
 Establish dynamic source translation, specifying the NAT pool and the ACL
defined in the previous steps.
 Specify the inside and the outside NAT interfaces.
2. Connect a Server to the ISP’s G0/0 port to simulate an ISP server.
 Configure this Server as follows:
– Configure the IP address and subnet mask as 209.1.1.2/30.
– Configure the default gateway to be 209.1.1.1.

5
3. Configure the server to act as a web server. Enable a simple web page (www.
rockford.com) that will tell users that they have reached the ISP.
4. Document NAT configuration in a chart; it will serve as the deliverable item for
Phase 7.

Phase 8: Verification and Testing


Verify communication between various hosts in the network. Troubleshoot and fix any
problems in the network until it works properly.

Hand in arrangement:
 The deadline for submission of this Case Study is 11.59 pm on 24 Mar 2022.
 How to submit Case Study to email address ( [email protected]):
o Email Subject
 Subject: CCNA2 Case Study – Department - your Name
 Attached Files:
– CCNA2 Case Study – Department - your Name.pkt

You might also like