Transcript Slide 1
Mike Meyers’ CompTIA Network+® Guide to Managing and Troubleshooting Networks, Third Edition (Exam N10-005) Building a SOHO Network Chapter 19 © 2012 The McGraw-Hill Companies, Inc. All rights reserved. Mike Meyers’ CompTIA Network+® Guide to Managing and Troubleshooting Networks, Third Edition (Exam N10-005) Objectives • Describe the major steps to consider when designing a SOHO network • Describe and implement a SOHO network, including solving assorted problems • Explain how security comes into play while building a SOHO network © 2012 The McGraw-Hill Companies, Inc. All rights reserved. Mike Meyers’ CompTIA Network+® Guide to Managing and Troubleshooting Networks, Third Edition (Exam N10-005) Overview © 2012 The McGraw-Hill Companies, Inc. All rights reserved. Mike Meyers’ CompTIA Network+® Guide to Managing and Troubleshooting Networks, Third Edition (Exam N10-005) Introduction to SOHO networks • Small office/home office networks require careful design consideration • Design needs to include structured cabling, wireless, operating systems, Internet connectivity, and network/system security • Must consider servers, workstations, and printers as well © 2012 The McGraw-Hill Companies, Inc. All rights reserved. Mike Meyers’ CompTIA Network+® Guide to Managing and Troubleshooting Networks, Third Edition (Exam N10-005) Three parts to Chapter 19 • Designing a SOHO network • Building a network • Security © 2012 The McGraw-Hill Companies, Inc. All rights reserved. Mike Meyers’ CompTIA Network+® Guide to Managing and Troubleshooting Networks, Third Edition (Exam N10-005) Designing a SOHO network © 2012 The McGraw-Hill Companies, Inc. All rights reserved. Mike Meyers’ CompTIA Network+® Guide to Managing and Troubleshooting Networks, Third Edition (Exam N10-005) • Network design methodology – Steps to design and build a network – List of requirements: Define the network’s needs. Why are you installing this network? What primary features do you need? – Network design: What equipment do you need to make this happen? How should you organize it? © 2012 The McGraw-Hill Companies, Inc. All rights reserved. Mike Meyers’ CompTIA Network+® Guide to Managing and Troubleshooting Networks, Third Edition (Exam N10-005) • Network design methodology (cont.) – Compatibility issues: Are you using existing equipment, applications, or cabling that have compatibility issues? – Internal connections: What type of structured cabling do you need? Does this network need wireless? – External connections: How do you connect to the Internet? © 2012 The McGraw-Hill Companies, Inc. All rights reserved. Mike Meyers’ CompTIA Network+® Guide to Managing and Troubleshooting Networks, Third Edition (Exam N10-005) • Network design methodology (cont.) – Peripherals: How will peripherals come into play? Are you connecting any printers, fax machines, or scanners? – Security: How do you deal with computer, data, and network security? © 2012 The McGraw-Hill Companies, Inc. All rights reserved. Mike Meyers’ CompTIA Network+® Guide to Managing and Troubleshooting Networks, Third Edition (Exam N10-005) • MHTechED’s new network – Grown from 2 to 15 hosts and servers – Moved into new offices – Network is a mess! – Your job is to help design a new network © 2012 The McGraw-Hill Companies, Inc. All rights reserved. Mike Meyers’ CompTIA Network+® Guide to Managing and Troubleshooting Networks, Third Edition (Exam N10-005) Figure 19.1 MHTechED’s gotten bigger. © 2012 The McGraw-Hill Companies, Inc. All rights reserved. Mike Meyers’ CompTIA Network+® Guide to Managing and Troubleshooting Networks, Third Edition (Exam N10-005) Figure 19.2 Floor plan for the new MHTechEd © 2012 The McGraw-Hill Companies, Inc. All rights reserved. Mike Meyers’ CompTIA Network+® Guide to Managing and Troubleshooting Networks, Third Edition (Exam N10-005) Building the network © 2012 The McGraw-Hill Companies, Inc. All rights reserved. Mike Meyers’ CompTIA Network+® Guide to Managing and Troubleshooting Networks, Third Edition (Exam N10-005) • Building a SOHO network – Design is usually simple – Usually minimal numbers of switches, routers, servers, and workstations – Key is to stick to methodology – the checklist © 2012 The McGraw-Hill Companies, Inc. All rights reserved. Mike Meyers’ CompTIA Network+® Guide to Managing and Troubleshooting Networks, Third Edition (Exam N10-005) • Define the network needs – Determine size, location, other physical factors – Determine how many servers and what services are needed – Determine host and server operating systems – Determine software and hardware needs for unique users © 2012 The McGraw-Hill Companies, Inc. All rights reserved. Mike Meyers’ CompTIA Network+® Guide to Managing and Troubleshooting Networks, Third Edition (Exam N10-005) • Network design – Quantifies needs for equipment, operating systems, and network applications • Workstations • Servers • Equipment room • Peripherals © 2012 The McGraw-Hill Companies, Inc. All rights reserved. Mike Meyers’ CompTIA Network+® Guide to Managing and Troubleshooting Networks, Third Edition (Exam N10-005) • Network design (cont.) – Workstations • One for each employee? • Specific, standardized OS • Variations in OS for unique users (i.e., Mac or Linux) © 2012 The McGraw-Hill Companies, Inc. All rights reserved. Mike Meyers’ CompTIA Network+® Guide to Managing and Troubleshooting Networks, Third Edition (Exam N10-005) • Network design (cont.) – Servers • Purpose and function • Quantity • Operating System • Redundancy (clustering or failover) • Virtualization • Backups © 2012 The McGraw-Hill Companies, Inc. All rights reserved. Mike Meyers’ CompTIA Network+® Guide to Managing and Troubleshooting Networks, Third Edition (Exam N10-005) • Network design (cont.) – Equipment room • Size • Location within facility • Environmental factors (temperature, humidity, etc.) • Physical access control • Power • Cabling to and from room © 2012 The McGraw-Hill Companies, Inc. All rights reserved. Mike Meyers’ CompTIA Network+® Guide to Managing and Troubleshooting Networks, Third Edition (Exam N10-005) • Network design (cont.) – Peripherals • Depend upon size and needs of SOHO network • All-in-One devices (scanner, copier, fax) are common • Networked to allow use by all users (dedicated NICs or shared from computer) © 2012 The McGraw-Hill Companies, Inc. All rights reserved. Mike Meyers’ CompTIA Network+® Guide to Managing and Troubleshooting Networks, Third Edition (Exam N10-005) Figure 19.3 MHTechEd’s cool All-in-One machine © 2012 The McGraw-Hill Companies, Inc. All rights reserved. Mike Meyers’ CompTIA Network+® Guide to Managing and Troubleshooting Networks, Third Edition (Exam N10-005) • Compatibility issues – Compatibility issues include • Different network cabling types, connectors and devices • Backward-compatibility issues • Older vs. newer equipment © 2012 The McGraw-Hill Companies, Inc. All rights reserved. Mike Meyers’ CompTIA Network+® Guide to Managing and Troubleshooting Networks, Third Edition (Exam N10-005) • Compatibility issues (cont.) – Issues affect interoperability of: • Network devices • Computers • Applications • Peripherals • Cabling • Connectors • Other equipment © 2012 The McGraw-Hill Companies, Inc. All rights reserved. Mike Meyers’ CompTIA Network+® Guide to Managing and Troubleshooting Networks, Third Edition (Exam N10-005) Figure 19.4 CAT 5e and CAT 6 drops in the MHTechED office © 2012 The McGraw-Hill Companies, Inc. All rights reserved. Mike Meyers’ CompTIA Network+® Guide to Managing and Troubleshooting Networks, Third Edition (Exam N10-005) • Internal connections – Considerations include: • Switches • Structured cabling • Electrical and environmental limits • Wireless (WAP placement) • VLANs • IP address scheme © 2012 The McGraw-Hill Companies, Inc. All rights reserved. Mike Meyers’ CompTIA Network+® Guide to Managing and Troubleshooting Networks, Third Edition (Exam N10-005) • Internal connections (cont.) – Switches • Compatibility with network architecture • VLAN and PoE features – Structured cabling • Clearly labeled runs • Length of all runs • CAT ratings on all runs • Floor plan showing all runs © 2012 The McGraw-Hill Companies, Inc. All rights reserved. Mike Meyers’ CompTIA Network+® Guide to Managing and Troubleshooting Networks, Third Edition (Exam N10-005) • Internal connections (cont.) – Electrical and environmental limits • Electrical wiring and load capacity • Humidity • Temperature • Fire detection and protection • Physical security © 2012 The McGraw-Hill Companies, Inc. All rights reserved. Mike Meyers’ CompTIA Network+® Guide to Managing and Troubleshooting Networks, Third Edition (Exam N10-005) Figure 19.5 Dedicated circuit © 2012 The McGraw-Hill Companies, Inc. All rights reserved. Mike Meyers’ CompTIA Network+® Guide to Managing and Troubleshooting Networks, Third Edition (Exam N10-005) • Internal connections (cont.) – Wireless • WAP placement • Signal strength/power • Encryption/authentication – VLANs • Segregate particular users, computers or networks on their own VLAN • Prevent broadcast traffic from spanning networks © 2012 The McGraw-Hill Companies, Inc. All rights reserved. Mike Meyers’ CompTIA Network+® Guide to Managing and Troubleshooting Networks, Third Edition (Exam N10-005) Figure 19.6 Placement of WAP in network © 2012 The McGraw-Hill Companies, Inc. All rights reserved. Mike Meyers’ CompTIA Network+® Guide to Managing and Troubleshooting Networks, Third Edition (Exam N10-005) • Internal connections (cont.) – Network management • Servers on own VLAN • Lights-out management (LOM) – IP address scheme • Private/public IP addresses • NAT • DHCP vs. static © 2012 The McGraw-Hill Companies, Inc. All rights reserved. Mike Meyers’ CompTIA Network+® Guide to Managing and Troubleshooting Networks, Third Edition (Exam N10-005) Figure 19.7 Lights-out management © 2012 The McGraw-Hill Companies, Inc. All rights reserved. Mike Meyers’ CompTIA Network+® Guide to Managing and Troubleshooting Networks, Third Edition (Exam N10-005) • External connections – External connections affected by: • Router or external connection • ISP selection and redundancy – Router selection • Business class router • Available ports • Expandability for add-in connections – Additional Ethernet or fiber © 2012 The McGraw-Hill Companies, Inc. All rights reserved. Mike Meyers’ CompTIA Network+® Guide to Managing and Troubleshooting Networks, Third Edition (Exam N10-005) Figure 19.8 Fixed 100BaseT ports on Cisco 2811 © 2012 The McGraw-Hill Companies, Inc. All rights reserved. Mike Meyers’ CompTIA Network+® Guide to Managing and Troubleshooting Networks, Third Edition (Exam N10-005) Figure 19.9 Cisco HWIC Ethernet card © 2012 The McGraw-Hill Companies, Inc. All rights reserved. Mike Meyers’ CompTIA Network+® Guide to Managing and Troubleshooting Networks, Third Edition (Exam N10-005) Figure 19.10 NETGEAR SFP © 2012 The McGraw-Hill Companies, Inc. All rights reserved. Mike Meyers’ CompTIA Network+® Guide to Managing and Troubleshooting Networks, Third Edition (Exam N10-005) • External connections (cont.) – ISP selection includes these considerations: • Is there an existing connection into building? • Which services offered and cost of ISP • Type of connection out • Guaranteed bandwidth/throughput • Service commitment/uptime/reliability • Security © 2012 The McGraw-Hill Companies, Inc. All rights reserved. Mike Meyers’ CompTIA Network+® Guide to Managing and Troubleshooting Networks, Third Edition (Exam N10-005) • ISPs and MTUs – Possible issues with ISPs and MTUs – Maximum Transmission Unit (MTU) for Ethernet is 1500 bytes • Some systems set value to less – MTU mismatch: Ethernet connects to a WAN technology with different size MTU – Requires adjustment on systems to fix © 2012 The McGraw-Hill Companies, Inc. All rights reserved. Mike Meyers’ CompTIA Network+® Guide to Managing and Troubleshooting Networks, Third Edition (Exam N10-005) Figure 19.11 Adjusting the MTU settings in Dr. TCP © 2012 The McGraw-Hill Companies, Inc. All rights reserved. Mike Meyers’ CompTIA Network+® Guide to Managing and Troubleshooting Networks, Third Edition (Exam N10-005) • ISPs and MTUs (cont.) – Path MTU Discovery (PMTU) • Newer technology (2007) created to determine best MTU settings and fix mismatches between LANs and ISPs • Adds “Don’t Fragment Flag” to IP packet • Pings another device to test MTU settings and corrects if there is a mismatch • Some devices block ICMP and prevent PMTU – Creates an “MTU black hole” © 2012 The McGraw-Hill Companies, Inc. All rights reserved. Mike Meyers’ CompTIA Network+® Guide to Managing and Troubleshooting Networks, Third Edition (Exam N10-005) • Peripherals – Networked with Ethernet card – Shared from computers – All-in-One devices • Printer/copier/fax/scanner – Considerations include: • IP addressing (static or reserved addresses) • Permissions • Capacity/functionality © 2012 The McGraw-Hill Companies, Inc. All rights reserved. Mike Meyers’ CompTIA Network+® Guide to Managing and Troubleshooting Networks, Third Edition (Exam N10-005) Figure 19.12 HP M9050 © 2012 The McGraw-Hill Companies, Inc. All rights reserved. Mike Meyers’ CompTIA Network+® Guide to Managing and Troubleshooting Networks, Third Edition (Exam N10-005) Figure 19.13 Location of fax machine and printer © 2012 The McGraw-Hill Companies, Inc. All rights reserved. Mike Meyers’ CompTIA Network+® Guide to Managing and Troubleshooting Networks, Third Edition (Exam N10-005) Security © 2012 The McGraw-Hill Companies, Inc. All rights reserved. Mike Meyers’ CompTIA Network+® Guide to Managing and Troubleshooting Networks, Third Edition (Exam N10-005) • Security overview – Not just an additional or final step – Integral part of all other steps – Integrate security into each design step throughout design and building process © 2012 The McGraw-Hill Companies, Inc. All rights reserved. Mike Meyers’ CompTIA Network+® Guide to Managing and Troubleshooting Networks, Third Edition (Exam N10-005) • Security considerations – List of requirements: • What are the security needs? – Anti-malware on all systems – Firewall w/ACL capacity – Security from equipment theft – Wireless encryption – Wireless network isolation © 2012 The McGraw-Hill Companies, Inc. All rights reserved. Mike Meyers’ CompTIA Network+® Guide to Managing and Troubleshooting Networks, Third Edition (Exam N10-005) • Security considerations (cont.) – Network design: • Ensure equipment satisfies requirements – Microsoft Security Essentials on all systems – Use built-in firewall on Cisco 2811 – Door locks, deadbolts, motion sensors all tied to security monitoring company – WPA Personal Shared Key – Verify that WAPs support isolation © 2012 The McGraw-Hill Companies, Inc. All rights reserved. Mike Meyers’ CompTIA Network+® Guide to Managing and Troubleshooting Networks, Third Edition (Exam N10-005) • Security considerations (cont.) – Compatibility issues: • Will there be security issues with the older equipment? • Can the old WAP support WPA2 PSK? © 2012 The McGraw-Hill Companies, Inc. All rights reserved. Mike Meyers’ CompTIA Network+® Guide to Managing and Troubleshooting Networks, Third Edition (Exam N10-005) • Security considerations (cont.) – Internal connections: • What do we need to do to protect the internal network from threats and failures? – Verify anti-malware is installed and updated—install Microsoft Security Essentials and configure for automatic updates – Document the location of all PCs and their associated connections © 2012 The McGraw-Hill Companies, Inc. All rights reserved. Mike Meyers’ CompTIA Network+® Guide to Managing and Troubleshooting Networks, Third Edition (Exam N10-005) • Security considerations – Internal connections (cont.): • What do we need to do to protect the internal network from threats and failures? (cont.) – Configure servers to use RAID 5 – For power failure, use four 5000-joule, rackmounted standby power supplies in the equipment room: three for servers and one for all routers, switches, etc. © 2012 The McGraw-Hill Companies, Inc. All rights reserved. Mike Meyers’ CompTIA Network+® Guide to Managing and Troubleshooting Networks, Third Edition (Exam N10-005) • Security considerations – Internal connections (cont.): • What do we need to do to protect the internal network from threats and failures? (cont.) – Install removable hard drives for backup – Contract for offsite backup – Configure domain for strict password security © 2012 The McGraw-Hill Companies, Inc. All rights reserved. Mike Meyers’ CompTIA Network+® Guide to Managing and Troubleshooting Networks, Third Edition (Exam N10-005) • Security considerations (cont.) – External connections: • How do we connect to the Internet? – Network uses 2811 router’s firewall features, but must be kept up to date – What ACLs must be configured? – Peripherals: • Not a traditional security issue, but be aware of security configuration issues and risks © 2012 The McGraw-Hill Companies, Inc. All rights reserved.