Welcome to Campus Area Network System Design!

Welcome to Campus Area Network System Project! We're thrilled to have you here.

this is a replication of a Campus LAN network of my collage RGUKT RK Valley. Did to test my CCNA Knowledge

The main idea of my project is Replicate my campus LAN design with appropriate Features Like. Main Web server, Email server and DNS server and NTP server and Many more Features included in that design.

Before getting into the details of this project. Lets talk about some common LAN design principles and best practices i followed.

1. Identifying the Needs and Goals

Before staring the design of our LAN. we need to ask ourself some questions about our Project and find the Answers to them. Here are the Questions and my Answers to them as per this Project.

I. What are the Main functions and applications of our LAN?

The main idea of my project is Replicate my campus LAN design with appropriate Features Like. Main Web server, Email server and DNS server and NTP server and Many more Features included in that design

.

II. How many Users and devices will access your the Network?

There are more than 6000 students and 300+ faculty and many more users are there. Network must be available to users as Wired or Wireless.

III. What are the expected traffic patterns and bandwidth requirements?

In our project we have two traffic patterns thats is faculty traffic and students traffic. The students must not access the faculty devices. The bandwidth requirements will the intra area communications (between the routers) must be fast.

IV. How will we ensure security and privacy of your data?

All the outside intiating connections must be stopped and incoming traffic must be checked.

These questions will help you determine the scope, size, and structure of your LAN, as well as the hardware and software components you will need.

2. Choose the Right Topology and Architecture

The topology and architecture of our LAN refer to the physical and logical Layout of your network devices and connections. Here comes my Campus geographical View.

By seeing this we can map the Physical Locations or regions of Networks. That are:-

Main Campus

1. Facdtty Quaters (6 Quaters)

2. Library (2 Floors)

3. Lab Complex

4. Academic Block - 1 (4 Floors)

5. Academic Block - 2 (4 Floors)

6. Boys Hostel - 1 (4 Floors)

7. Girls Hostel - 1 (4 Floors)

8. Girls Hostel - 2 (4 Floors)

9. Boys Hostel - 2 (4 Floors)

10. Guest House

11. C.S.E Department

12. E.C.E Department

13. M.M.E Department

14. CIVIL Department

15. MECH Department

16. E.E.E Department

Old Campus

1. PI Class Rooms

2. MU Class Rooms

3. KAPPA Class Rooms

4. LAMBDA Class Rooms

5. Girls Hostels RKV (Alpha/Beta)

6. Girls Hostels ONG (Gamma/Delta)

7. Boys Hostels RKV (Rho)

8. Boys Hostels ONG (Teta)

9. S.A.C Building

Based on the Physical Locations Create a Img that ressembles this LAN Network.

3. Select the appropriate devices and Technologies

We successfully design a Map of Network and now we need to choose the appropriate devices that will be a better suit for all network Sections (Physical Locations).

We start from Faculty Quaters, Hostels(Boys and Girls) and Guest House. we use wireless technologies(WiFi), Because These places are residance locations in the Campus where setting up a WiFi would be appropriate choice.

Then Next one are Students Classrooms(Academic Block 1 & 2, PI, MU, Kappa, Lamdba). Each one have more than 20 classes(each Academic Blocks has 100 classe rooms), but the students presence would be fixed(less than or equal to 100) so Wired Network would be appropriate.

Next is a some Special Sections Where we need to use Both Wired and Wireless Technolgies. Wired Network to connect to the Departments inside the network sections and Wireless for students, Although students presence is not fixed. They are Library, Lab Complex, CSE Dept, ECE Dept, EEE Dept, Civil Dept, Mech Dept, MME Dept.

As we finished up the decision of technologies being used we fill up the topology with approriate devices in packet tracer.
that would look like this......
I think you have to zoom it for better clarity.......

4. Implement Network segmentation and Addressing

Network segmentation and addressing are techniques that can help us organize and manage our LAN more effectively. Network segmentation is the process of dividing our LAN into smaller subnetworks, or subnets, based on logical criteria, such as function, location, or department. As per RFC 1918 i use 10.0.0.0/8 subnet because i need to connect alot of devices this will provide me that Host address space and i will be using the Subnet Mask of 255.255.255.0 Which means i will be using 2^16 subnets and 2^8 hosts space. That would be lot more enough.

Here comes the Address Scheme of This Network.

Address Space	Device	Interface
10.0.0.33	External Router	G0/0
10.0.0.5	External Router	G1/0
10.0.0.9	External Router	G2/0
10.0.0.17	External Router	G3/0
10.0.2.18	External Router	G4/0
10.0.2.10	External Router	G5/0
10.0.2.6	External Router	G6/0
10.0.1.6	External Router	G7/0
10.0.1.10	External Router	G8/0
10.0.1.18	External Router	G9/0
10.0.1.5	New Router	G5/0
10.0.1.9	New Router	G6/0
10.1.1.5	New Router	G7/0
10.1.1.9	New Router	G8/0
10.0.1.17	New Router	G9/0
10.1.1.41	Main Router 1	G0/0
10.1.1.37	Main Router 1	G1/0
10.1.1.33	Main Router 1	G2/0
10.1.1.21	Main Router 1	G3/0
10.1.1.29	Main Router 1	G4/0
10.1.1.25	Main Router 1	G5/0
10.1.1.17	Main Router 1	G6/0
10.1.1.6	Main Router 1	G7/0
10.1.1.10	Main Router 1	G8/0
10.1.1.13	Main Router 1	G9/0
10.1.1.42	Quaters SW	G0/1
10.70.1.1	Quaters SW	Vlan 11
10.70.2.1	Quaters SW	Vlan 12
10.70.3.1	Quaters SW	Vlan 13
10.70.4.1	Quaters SW	Vlan 14
10.70.5.1	Quaters SW	Vlan 15
10.70.6.1	Quaters SW	Vlan 16
10.70.100.1	Quaters SW	Vlan 100
10.1.1.38	Library Router	G0/1/0
10.24.1.1	Library Router	Vlan 1
10.57.1.1	Library Router	Vlan 10
10.57.2.1	Library Router	Vlan 20
10.57.100.1	Library Router	Vlan 100
10.1.1.34	Lab Router	G0/1/0
10.23.1.1	Lab Router	Vlan 1
10.58.1.1	Lab Router	Vlan 10
10.58.100.1	Lab Router	Vlan 100
10.1.2.5	AB1 Router 1	G3/0
10.1.2.9	AB1 Router 1	G4/0
10.1.2.21	AB1 Router 1	G5/0
10.1.2.25	AB1 Router 1	G6/0
10.1.1.14	AB1 Router 1	G7/0
10.1.2.13	AB1 Router 1	G8/0
10.1.2.17	AB1 Router 1	G9/0
10.1.2.29	AB1 Router 2	G3/0
10.1.2.33	AB1 Router 2	G4/0
10.1.2.45	AB1 Router 2	G5/0
10.1.2.49	AB1 Router 2	G6/0
10.1.1.18	AB1 Router 2	G7/0
10.1.2.37	AB1 Router 2	G8/0
10.1.2.41	AB1 Router 2	G9/0
10.1.2.53	AB2 Router 1	G3/0
10.1.2.57	AB2 Router 1	G4/0
10.1.2.69	AB2 Router 1	G5/0
10.1.2.73	AB2 Router 1	G6/0
10.1.1.26	AB2 Router 1	G7/0
10.1.2.61	AB2 Router 1	G8/0
10.1.2.65	AB2 Router 1	G9/0
10.1.2.77	AB2 Router 2	G3/0
10.1.2.81	AB2 Router 2	G4/0
10.1.2.93	AB2 Router 2	G5/0
10.1.2.97	AB2 Router 2	G6/0
10.1.1.30	AB2 Router 2	G7/0
10.1.2.85	AB2 Router 2	G8/0
10.1.2.89	AB2 Router 2	G9/0
10.1.2.6	G1	G0/1
10.101.1.1	G1	Vlan 1
10.1.2.10	G2	G0/1
10.101.2.1	G2	Vlan 1
10.1.2.54	G3	G0/1
10.102.1.1	G3	Vlan 1
10.1.2.58	G4	G0/1
10.102.2.1	G4	Vlan 1
10.1.2.26	F1	G0/1
10.101.51.1	F1	Vlan 1
10.1.2.22	F2	G0/1
10.101.52.1	F2	Vlan 1
10.1.2.74	F3	G0/1
10.102.51.1	F3	Vlan 1
10.1.2.70	F4	G0/1
10.102.52.1	F4	Vlan 1
10.1.2.30	S1	G0/1
10.101.101.1	S1	Vlan 1
10.1.2.34	S2	G0/1
10.101.102.1	S2	Vlan 1
10.1.2.78	S3	G0/1
10.102.101.1	S3	Vlan 1
10.1.2.82	S4	G0/1
10.102.102.1	S4	Vlan 1
10.1.2.50	T1	G0/1
10.101.151.1	T1	Vlan 1
10.1.2.6	T2	G0/1
10.101.152.1	T2	Vlan 1
10.1.2.98	T3	G0/1
10.102.151.1	T3	Vlan 1
10.1.2.94	T3	G0/1
10.102.152.1	T3	Vlan 1
10.1.2.14	FO Router	G0/0/0
10.1.2.101	FO Router	G0/1/0
10.5.1.1	FO Router	Vlan 1
10.1.2.102	Dir Router	G0/1/0
10.3.1.1	Dir Router	Vlan 1
10.1.2.105	Tel Router	G0/1/0
10.1.2.18	Tel Router	G0/2/0
10.11.1.1	Tel Router	Vlan 1
10.1.2.106	SO Router	G0/1/0
10.7.1.1	SO Router	Vlan 1
10.1.2.38	Srv1 Router	G0/1/0
10.9.10.1	Srv1 Router	Vlan 1
10.1.2.42	Phy Router	G0/1/0
10.1.2.109	Phy Router	G0/3/0
10.13.1.1	Phy Router	Vlan 1
10.1.2.110	Chem Router	G0/1/0
10.15.1.1	Chem Router	Vlan 1
10.1.2.62	EC Router	G0/1/0
10.1.2.113	EC Router	G0/3/0
10.6.1.1	EC Router	Vlan 1
10.1.2.114	Dean Router	G0/3/0
10.4.1.1	Dean Router	Vlan 1
10.1.2.66	Eng Router	G0/1/0
10.1.2.117	Eng Router	G0/3/0
10.12.1.1	Eng Router	Vlan 1
10.1.2.118	WO Router	G0/3/0
10.8.1.1	WO Router	Vlan 1
10.1.2.86	Srv2 Router	G0/3/0
10.10.10.1	Srv2 Router	Vlan 1
10.1.2.121	Math Router	G0/0/0
10.1.2.90	Math Router	G0/2/0
10.14.1.1	Math Router	Vlan 1
10.1.2.122	Bio Router	G0/1/0
10.16.1.1	Bio Router	Vlan 1
10.1.3.57	Main Router 2	G3/0
10.1.3.61	Main Router 2	G4/0
10.1.3.53	Main Router 2	G5/0
10.1.3.45	Main Router 2	G6/0
10.1.3.14	Main Router 2	G8/0
10.1.1.22	Main Router 2	G9/0
10.1.3.46	Bh1 SW	G0/2
10.60.0.1	Bh1 SW	Vlan 10
10.60.1.1	Bh1 SW	Vlan 11
10.60.2.1	Bh1 SW	Vlan 12
10.60.3.1	Bh1 SW	Vlan 13
10.60.100.1	Bh1 SW	Vlan 100
10.1.3.54	Gh1 SW	G0/2
10.62.0.1	Gh1 SW	Vlan 10
10.62.1.1	Gh1 SW	Vlan 11
10.62.2.1	Gh1 SW	Vlan 12
10.62.3.1	Gh1 SW	Vlan 13
10.62.100.1	Gh1 SW	Vlan 100
10.1.3.58	Gh2 SW	G0/2
10.63.0.1	Gh2 SW	Vlan 10
10.63.1.1	Gh2 SW	Vlan 11
10.63.2.1	Gh2 SW	Vlan 12
10.63.3.1	Gh2 SW	Vlan 13
10.63.100.1	Gh2 SW	Vlan 100
10.1.3.62	Bh2 SW	G0/2
10.61.0.1	Bh2 SW	Vlan 10
10.61.1.1	Bh2 SW	Vlan 11
10.61.2.1	Bh2 SW	Vlan 12
10.61.3.1	Bh2 SW	Vlan 13
10.61.100.1	Bh2 SW	Vlan 100
10.1.3.6	GuestH SW	G0/2
10.71.0.1	GuestH SW	Vlan 10
10.71.100.1	GuestH SW	Vlan 99
10.1.3.22	CSE Router	G0/1/0
10.17.1.1	CSE Router	Vlan 1
10.51.1.1	CSE Router	Vlan 10
10.51.100.1	CSE Router	Vlan 100
10.1.3.26	CIVIL Router	G0/1/0
10.22.1.1	CIVIL Router	Vlan 1
10.56.1.1	CIVIL Router	Vlan 10
10.56.100.1	CIVIL Router	Vlan 100
10.1.3.30	ECE Router	G0/1/0
10.18.1.1	ECE Router	Vlan 1
10.52.1.1	ECE Router	Vlan 10
10.52.100.1	ECE Router	Vlan 100
10.1.3.34	Mech Router	G0/1/0
10.21.1.1	Mech Router	Vlan 1
10.55.1.1	Mech Router	Vlan 10
10.55.100.1	Mech Router	Vlan 100
10.1.3.38	Mme Router	G0/1/0
10.19.1.1	Mme Router	Vlan 1
10.53.1.1	Mme Router	Vlan 10
10.53.100.1	Mme Router	Vlan 100
10.1.3.42	EEE Router	G0/1/0
10.20.1.1	EEE Router	Vlan 1
10.54.1.1	EEE Router	Vlan 10
10.54.100.1	EEE Router	Vlan 100
10.1.3.5	Dept Router 1	G0/0
10.1.3.55	Dept Router 1	G7/0
10.1.3.21	Dept Router 1	G8/0
10.1.3.9	Dept Router 1	G9/0
10.1.3.34	Dept Router 2	G5/0
10.1.3.29	Dept Router 2	G6/0
10.1.3.10	Dept Router 2	G7/0
10.1.3.17	Dept Router 2	G8/0
10.1.3.13	Dept Router 2	G9/0
10.1.3.18	Dept Router 3	G7/0
10.1.3.37	Dept Router 3	G8/0
10.1.3.41	Dept Router 3	G9/0
10.2.1.5	Old Router	G0/0
10.2.1.9	Old Router	G1/0
10.0.2.17	Old Router	G7/0
10.0.2.5	Old Router	G8/0
10.0.2.9	Old Router	G9/0
10.2.1.33	Main Router 3	G1/0
10.2.1.29	Main Router 3	G2/0
10.2.1.61	Main Router 3	G3/0
10.2.1.25	Main Router 3	G4/0
10.2.1.10	Main Router 3	G5/0
10.2.1.21	Main Router 3	G6/0
10.2.1.17	Main Router 3	G7/0
10.2.1.13	Main Router 3	G8/0
10.2.1.6	Main Router 3	G9/0
10.2.2.9	M Router	G0/0
10.2.1.22	M Router	G0/3/0
10.2.2.17	P Router	G0/0
10.2.1.14	P Router	G0/3/0
10.2.2.25	K Router	G0/0
10.2.1.18	K Router	G0/3/0
10.2.2.33	L Router	G0/0
10.2.1.26	L Router	G0/3/0
10.2.2.13	M SW	Vlan 1
10.2.2.21	P SW	Vlan 1
10.2.2.29	K SW	Vlan 1
10.2.2.37	L SW	Vlan 1
10.103.1.1	P1	Vlan 1
10.2.2.20	P1	G0/1
10.103.2.1	P2	Vlan 1
10.2.2.19	P2	G0/1
10.103.3.1	P3	Vlan 1
10.2.2.18	P3	G0/1
10.103.51.1	K1	Vlan 1
10.2.2.26	K1	G0/1
10.103.52.1	K2	Vlan 1
10.2.2.27	K2	G0/1
10.103.53.1	K3	Vlan 1
10.2.2.28	K3	G0/1
10.103.101.1	M1	Vlan 1
10.2.2.10	M1	G0/1
10.103.102.1	M2	Vlan 1
10.2.2.11	M2	G0/1
10.103.103.1	M3	Vlan 1
10.2.2.12	M3	G0/1
10.103.151.1	L1	Vlan 1
10.2.2.34	L1	G0/1
10.103.152.1	L2	Vlan 1
10.2.2.35	L2	G0/1
10.103.153.1	L3	Vlan 1
10.2.2.36	L3	G0/1
10.2.1.53	Sac Router	G0/0
10.2.1.62	Sac Router	G0/3/0
10.2.1.54	Sac SW	G0/2
10.75.1.1	Sac SW	Vlan 11
10.75.100.1	Sac SW	Vlan 100
10.2.1.45	GH Router	G0/0
10.2.1.49	GH Router	G0/1
10.2.1.30	GH Router	G0/3/0
10.2.1.46	GHR SW	G0/1
10.74.1.1	GHR SW	Vlan 11
10.74.2.1	GHR SW	Vlan 12
10.74.100.1	GHR SW	Vlan 100
10.2.1.50	GHO SW	G0/1
10.73.1.1	GHO SW	Vlan 11
10.73.2.1	GHO SW	Vlan 12
10.73.100.1	GHO SW	Vlan 100
10.2.1.57	Bh Router	G0/0
10.2.1.41	Bh Router	G0/1
10.2.1.34	Bh Router	G0/3/0
10.2.1.58	BhR SW	G0/1
10.76.1.1	BhR SW	Vlan 11
10.76.2.1	BhR SW	Vlan 12
10.76.100.1	BhR SW	Vlan 100
10.2.1.42	BhO SW	G0/1
10.77.1.1	BhO SW	Vlan 11
10.77.2.1	BhO SW	Vlan 12
10.77.100.1	BhO SW	Vlan 100
----------------------------------------	----------------------------------------	----------------------------------------

5. Monitor and Maintain LAN

Follow network standards and protocols, that are rules and conventions that govern how network devices communicate and interact with each other. Once we have designed and implemented our LAN, we need to monitor and maintain it regularly to ensure its optimal performance, security, and reliability.

The Features included .........

Used 10.0.0.0/8 subnet of private address as per RFC1918.

Used Network Address Translation(NAT) for the internet usage in LAN.

Used subnet mask of 255.255.255.0(/24) for endhosts, 255.255.255.252(/30) for point to point connections and 255.255.255.248(/29) for point to multipoint connections.

Each Network Device is Configured with appropriate Hostname and Domain name of RGUKT.

In this LAN, It has DNS Server 10.10.10.10 to resolve the local domain names and use Google DNS(8.8.8.8) for recursive DNS search.

In this LAN, It has WebServer 10.9.10.9(rgukt.com) with the official Collage Website(quite functional).

In this LAN, It has Syslog Server, where all the log msgs from Network Devices will be stored at one place.

In this LAN, It has Email Server with the @rguktrkv.ac.in domain and preconfigured with more than 70 different email address and passwords configured in most of all devices in LAN.

In Switchs for security we have enabled Port-Security, Arp Inspection, DHCP snooping and Portfast for Immediate transition to Forwarding state.

In Switchs all the unused ports are shutdown and moved to Unused VLAN.

In Multilayer Switches enabled routing and Configured appropriate Routed Ports.

Used Open Shortest Path First(OSPF) for Routing protocol with default Route.

Each Department in LAN has its own Ip Phone(fully functional we can call any IP phone in LAN)(Telephone-service & Dial-peerings).

Each Device has login Credentials(either console or vty) that is Username is "admin" password is "deepak".

and the enable password with md5 encryption (default) is "passwd".

Each Device can be remotely login by using only SSH But the access is limited to only Server Room devices(either SRV1 or SRV2) by applying AccessLists.

Each wired and wirelss endhost may get its appropriate address from their DHCP server(configured in nearby routers).

For Wireless Users configured a LightWeight Aps model with Wlc (username:-"admin" password:-"Wifi@123") in FlexConnect mode.

We can connect To any wireless AP by providing SSID and Password(rgukt123) (WPA2+PSK).

Used VLANs in MultiLayer Switchs to providing multiple SSIDs from same Switch and interfaces are Configured as trunk.

Thank you for checking out my project! If you encounter any errors, bugs, or have any ideas on how to make this project better, I'd love to hear from you. Your feedback is incredibly valuable and helps improve the overall quality of the project.

Please feel free to open an issue here on GitHub or reach out to me directly via Contact Details given below with any suggestions, questions, or concerns you may have.

Let's work together to make this project even more awesome!

Your Friend
Karumuri Lakshmi Deepak

Let's Connect..!