Difference between revisions of "Netband Project"
(→Equipment list) |
(→Course description) |
||
| Line 7: | Line 7: | ||
__TOC__ | __TOC__ | ||
| − | ==Course description== | + | == Course description == |
| + | A small company setup is used to illustrate and document the various relevant security features on an network infrastructure. The bussiness case evolves around a small to medium sized company with a centralized HQ and a number of remote branch offices. The project will consist mainly of cisco switches, routers and Asa firewall appliances. In order to support and demonstrate selected features, a small number of linux and windows servers are installed. The servers are just used as support so only basic configuration and security are implemented. | ||
| − | + | <br> | |
| − | |||
| − | |||
| + | [[Image:Valgfag.png|thumb|none|200px|Network diagram]] | ||
| + | <br> | ||
| − | + | <br> | |
| + | |||
| + | Ip Addressing schema<br> | ||
| + | |||
| + | HQ | ||
| + | |||
| + | {| cellspacing="1" cellpadding="1" border="1" style="width: 534px; height: 87px;" | ||
| + | |- | ||
| + | | Vlan name | ||
| + | | Ip address range | ||
| + | | Vlan number | ||
| + | |- | ||
| + | | ServerHQ | ||
| + | | 10.1.1.0/24 | ||
| + | | 3 | ||
| + | |- | ||
| + | | GuestHQ | ||
| + | | 172.16.0.0/24 | ||
| + | | 4 | ||
| + | |- | ||
| + | | ClientHQ | ||
| + | | 10.1.2.0/24 | ||
| + | | 5 | ||
| + | |- | ||
| + | | PhoneHQ | ||
| + | | 10.1.3.0/24 | ||
| + | | 6 | ||
| + | |} | ||
| + | |||
| + | Branch1 | ||
| + | |||
| + | {| cellspacing="1" cellpadding="1" border="1" style="width: 534px; height: 87px;" | ||
| + | |- | ||
| + | | Vlan name | ||
| + | | Ip address range | ||
| + | | Vlan number | ||
| + | |- | ||
| + | | ServerB1 | ||
| + | | 10.2.1.0/24 | ||
| + | | 3 | ||
| + | |- | ||
| + | | GuestB1 | ||
| + | | 172.16.1.0/24 | ||
| + | | 4 | ||
| + | |- | ||
| + | | ClientB1 | ||
| + | | 10.2.2.0/24 | ||
| + | | 5 | ||
| + | |- | ||
| + | | PhoneB1 | ||
| + | | 10.2.3.0/24 | ||
| + | | 6 | ||
| + | |} | ||
== Equipment list == | == Equipment list == | ||
Revision as of 12:55, 7 April 2009
<accesscontrol>NetBand</accesscontrol>
Netband Project
The main goal of this project is to design and implement some of the newest security functionalities in Cisco IOS and the Asa appliance.
Course description
A small company setup is used to illustrate and document the various relevant security features on an network infrastructure. The bussiness case evolves around a small to medium sized company with a centralized HQ and a number of remote branch offices. The project will consist mainly of cisco switches, routers and Asa firewall appliances. In order to support and demonstrate selected features, a small number of linux and windows servers are installed. The servers are just used as support so only basic configuration and security are implemented.
Ip Addressing schema
HQ
| Vlan name | Ip address range | Vlan number |
| ServerHQ | 10.1.1.0/24 | 3 |
| GuestHQ | 172.16.0.0/24 | 4 |
| ClientHQ | 10.1.2.0/24 | 5 |
| PhoneHQ | 10.1.3.0/24 | 6 |
Branch1
| Vlan name | Ip address range | Vlan number |
| ServerB1 | 10.2.1.0/24 | 3 |
| GuestB1 | 172.16.1.0/24 | 4 |
| ClientB1 | 10.2.2.0/24 | 5 |
| PhoneB1 | 10.2.3.0/24 | 6 |
Equipment list
HQ
1 x Asa5505
1 x Wlc2006
1 x Catalyst 3560 PoE
1 x 1221 Lap
1 x 2801
Branch 1
1 x Asa5505
1 x Catalyst 3560 PoE
1 x 1221 Lap
1 x 2801
Cloud
1 x 2801
1 x 3560
Access control
<accesscontrol>NetBand</accesscontrol>
Passwords
Internet NAT router(192.168.138.148): cisco
Internet Switch(192.168.0.5): : cisco
Ubuntu server: ciscodisco
W2k3 Server: ciscodisco