Slide 1

Transcript Slide 1

Mike Meyers’ CompTIA Network+ ® Guide to Managing and Troubleshooting Networks, Third Edition (Exam N10-005 )

Building a SOHO Network

Chapter 19

Mike Meyers’ CompTIA Network+ ® Guide to Managing and Troubleshooting Networks, Third Edition (Exam N10-005 )

Objectives

• • •

Describe the major steps to consider when designing a SOHO network Describe and implement a SOHO network, including solving assorted problems Explain how security comes into play while building a SOHO network

Mike Meyers’ CompTIA Network+ ® Guide to Managing and Troubleshooting Networks, Third Edition (Exam N10-005 )

Overview

Mike Meyers’ CompTIA Network+ ® Guide to Managing and Troubleshooting Networks, Third Edition (Exam N10-005 )

Introduction to SOHO networks

• Small office/home office networks require

careful design consideration

• Design needs to include

structured cabling, wireless, operating systems, Internet connectivity, and network/system security

• Must consider servers, workstations, and

printers as well

Mike Meyers’ CompTIA Network+ ® Guide to Managing and Troubleshooting Networks, Third Edition (Exam N10-005 )

Three parts to Chapter 19

• Designing a SOHO network • Building a network • Security

Mike Meyers’ CompTIA Network+ ® Guide to Managing and Troubleshooting Networks, Third Edition (Exam N10-005 )

Designing a SOHO network

Mike Meyers’ CompTIA Network+ ® Guide to Managing and Troubleshooting Networks, Third Edition (Exam N10-005 )

• Network design methodology

– Steps to design and build a network – List of requirements

: Define the network’s needs. Why are you installing this network? What primary features do you need?

– Network design

: What equipment do you need to make this happen? How should you organize it?

Mike Meyers’ CompTIA Network+ ® Guide to Managing and Troubleshooting Networks, Third Edition (Exam N10-005 )

• Network design methodology (cont.)

– Compatibility issues

: Are you using existing equipment, applications, or cabling that have compatibility issues?

– Internal connections

: What type of structured cabling do you need? Does this network need wireless?

– External connections

: How do you connect to the Internet?

Mike Meyers’ CompTIA Network+ ® Guide to Managing and Troubleshooting Networks, Third Edition (Exam N10-005 )

• Network design methodology (cont.)

– Peripherals

: How will peripherals come into play? Are you connecting any printers, fax machines, or scanners?

– Security

: How do you deal with computer, data, and network security?

Mike Meyers’ CompTIA Network+ ® Guide to Managing and Troubleshooting Networks, Third Edition (Exam N10-005 )

• MHTechED’s new network

– Grown from 2 to 15 hosts and servers – Moved into new offices – Network is a mess! – Your job is to help design a new network © 2012 The McGraw-Hill Companies, Inc. All rights reserved.

Mike Meyers’ CompTIA Network+ ® Guide to Managing and Troubleshooting Networks, Third Edition (Exam N10-005 )

Figure 19.1

MHTechED’s gotten bigger.

Mike Meyers’ CompTIA Network+ ® Guide to Managing and Troubleshooting Networks, Third Edition (Exam N10-005 )

Figure 19.2 Floor plan for the new MHTechEd

Mike Meyers’ CompTIA Network+ ® Guide to Managing and Troubleshooting Networks, Third Edition (Exam N10-005 )

Building the network

Mike Meyers’ CompTIA Network+ ® Guide to Managing and Troubleshooting Networks, Third Edition (Exam N10-005 )

• Building a SOHO network

– Design is usually simple – Usually minimal numbers of switches,

routers, servers, and workstations

– Key is to stick to methodology – the

checklist

Mike Meyers’ CompTIA Network+ ® Guide to Managing and Troubleshooting Networks, Third Edition (Exam N10-005 )

• Define the network needs

– Determine size, location, other physical

factors

– Determine how many servers and what

services are needed

– Determine host and server operating

systems

– Determine software and hardware needs

for unique users

Mike Meyers’ CompTIA Network+ ® Guide to Managing and Troubleshooting Networks, Third Edition (Exam N10-005 )

• Network design

– Quantifies needs for equipment,

operating systems, and network applications

Mike Meyers’ CompTIA Network+ ® Guide to Managing and Troubleshooting Networks, Third Edition (Exam N10-005 )

• Network design (cont.)

– Workstations • One for each employee?

Mike Meyers’ CompTIA Network+ ® Guide to Managing and Troubleshooting Networks, Third Edition (Exam N10-005 )

• Network design (cont.)

Mike Meyers’ CompTIA Network+ ® Guide to Managing and Troubleshooting Networks, Third Edition (Exam N10-005 )

• Network design (cont.)

– Equipment room • Size • Location within facility • Environmental factors (temperature, humidity, etc.) • Physical access control • Power • Cabling to and from room © 2012 The McGraw-Hill Companies, Inc. All rights reserved.

Mike Meyers’ CompTIA Network+ ® Guide to Managing and Troubleshooting Networks, Third Edition (Exam N10-005 )

• Network design (cont.)

– Peripherals • Depend upon size and needs of SOHO network • All-in-One devices (scanner, copier, fax) are common • Networked to allow use by all users (dedicated NICs or shared from computer) © 2012 The McGraw-Hill Companies, Inc. All rights reserved.

Mike Meyers’ CompTIA Network+ ® Guide to Managing and Troubleshooting Networks, Third Edition (Exam N10-005 )

Figure 19.3

MHTechEd’s cool All-in-One machine

Mike Meyers’ CompTIA Network+ ® Guide to Managing and Troubleshooting Networks, Third Edition (Exam N10-005 )

• Compatibility issues

– Compatibility issues include • Different network cabling types, connectors and devices • Backward-compatibility issues • Older vs. newer equipment © 2012 The McGraw-Hill Companies, Inc. All rights reserved.

Mike Meyers’ CompTIA Network+ ® Guide to Managing and Troubleshooting Networks, Third Edition (Exam N10-005 )

• Compatibility issues (cont.)

Mike Meyers’ CompTIA Network+ ® Guide to Managing and Troubleshooting Networks, Third Edition (Exam N10-005 )

Figure 19.4 CAT 5e and CAT 6 drops in the MHTechED office

Mike Meyers’ CompTIA Network+ ® Guide to Managing and Troubleshooting Networks, Third Edition (Exam N10-005 )

• Internal connections

– Considerations include: • Switches • Structured cabling • Electrical and environmental limits • Wireless (WAP placement) • VLANs • IP address scheme © 2012 The McGraw-Hill Companies, Inc. All rights reserved.

Mike Meyers’ CompTIA Network+ ® Guide to Managing and Troubleshooting Networks, Third Edition (Exam N10-005 )

• Internal connections (cont.)

– Switches • Compatibility with network architecture • VLAN and PoE features – Structured cabling • Clearly labeled runs • Length of all runs • CAT ratings on all runs • Floor plan showing all runs © 2012 The McGraw-Hill Companies, Inc. All rights reserved.

Mike Meyers’ CompTIA Network+ ® Guide to Managing and Troubleshooting Networks, Third Edition (Exam N10-005 )

• Internal connections (cont.)

– Electrical and environmental limits • Electrical wiring and load capacity • Humidity • Temperature • Fire detection and protection • Physical security © 2012 The McGraw-Hill Companies, Inc. All rights reserved.

Mike Meyers’ CompTIA Network+ ® Guide to Managing and Troubleshooting Networks, Third Edition (Exam N10-005 )

Figure 19.5 Dedicated circuit

Mike Meyers’ CompTIA Network+ ® Guide to Managing and Troubleshooting Networks, Third Edition (Exam N10-005 )

• Internal connections (cont.)

– Wireless • WAP placement • Signal strength/power • Encryption/authentication – VLANs • Segregate particular users, computers or networks on their own VLAN • Prevent broadcast traffic from spanning networks © 2012 The McGraw-Hill Companies, Inc. All rights reserved.

Mike Meyers’ CompTIA Network+ ® Guide to Managing and Troubleshooting Networks, Third Edition (Exam N10-005 )

Figure 19.6 Placement of WAP in network

Mike Meyers’ CompTIA Network+ ® Guide to Managing and Troubleshooting Networks, Third Edition (Exam N10-005 )

• Internal connections (cont.)

– Network management • Servers on own VLAN • Lights-out management (LOM) – IP address scheme • Private/public IP addresses • NAT • DHCP vs. static © 2012 The McGraw-Hill Companies, Inc. All rights reserved.

Mike Meyers’ CompTIA Network+ ® Guide to Managing and Troubleshooting Networks, Third Edition (Exam N10-005 )

Figure 19.7 Lights-out management

Mike Meyers’ CompTIA Network+ ® Guide to Managing and Troubleshooting Networks, Third Edition (Exam N10-005 )

• External connections

– External connections affected by: • Router or external connection • ISP selection and redundancy – Router selection • Business class router • Available ports • Expandability for add-in connections – Additional Ethernet or fiber © 2012 The McGraw-Hill Companies, Inc. All rights reserved.

Mike Meyers’ CompTIA Network+ ® Guide to Managing and Troubleshooting Networks, Third Edition (Exam N10-005 )

Figure 19.8 Fixed 100BaseT ports on Cisco 2811

Mike Meyers’ CompTIA Network+ ® Guide to Managing and Troubleshooting Networks, Third Edition (Exam N10-005 )

Figure 19.9 Cisco HWIC Ethernet card

Mike Meyers’ CompTIA Network+ ® Guide to Managing and Troubleshooting Networks, Third Edition (Exam N10-005 )

Figure 19.10 NETGEAR SFP

Mike Meyers’ CompTIA Network+ ® Guide to Managing and Troubleshooting Networks, Third Edition (Exam N10-005 )

• External connections (cont.)

– ISP selection includes these

considerations:

• Is there an existing connection into building?

• Which services offered and cost of ISP • Type of connection out • Guaranteed bandwidth/throughput • Service commitment/uptime/reliability • Security © 2012 The McGraw-Hill Companies, Inc. All rights reserved.

Mike Meyers’ CompTIA Network+ ® Guide to Managing and Troubleshooting Networks, Third Edition (Exam N10-005 )

• ISPs and MTUs

– Possible issues with ISPs and MTUs – Maximum Transmission Unit (MTU) for

Ethernet is 1500 bytes

• Some systems set value to less – MTU mismatch: Ethernet connects to a

WAN technology with different size MTU

Mike Meyers’ CompTIA Network+ ® Guide to Managing and Troubleshooting Networks, Third Edition (Exam N10-005 )

Figure 19.11 Adjusting the MTU settings in Dr. TCP

Mike Meyers’ CompTIA Network+ ® Guide to Managing and Troubleshooting Networks, Third Edition (Exam N10-005 )

• ISPs and MTUs (cont.)

– Path MTU Discovery (PMTU) • Newer technology (2007) created to determine best MTU settings and fix mismatches between LANs and ISPs • Adds “Don’t Fragment Flag” to IP packet • Pings another device to test MTU settings and corrects if there is a mismatch • Some devices block ICMP and prevent PMTU – Creates an “ MTU black hole ” © 2012 The McGraw-Hill Companies, Inc. All rights reserved.

Mike Meyers’ CompTIA Network+ ® Guide to Managing and Troubleshooting Networks, Third Edition (Exam N10-005 )

• Peripherals

– Networked with Ethernet card – Shared from computers – All-in-One devices • Printer/copier/fax/scanner – Considerations include: • IP addressing (static or reserved addresses) • Permissions • Capacity/functionality © 2012 The McGraw-Hill Companies, Inc. All rights reserved.

Figure 19.12 HP M9050

Mike Meyers’ CompTIA Network+ ® Guide to Managing and Troubleshooting Networks, Third Edition (Exam N10-005 )

Figure 19.13 Location of fax machine and printer

Mike Meyers’ CompTIA Network+ ® Guide to Managing and Troubleshooting Networks, Third Edition (Exam N10-005 )

Security

Mike Meyers’ CompTIA Network+ ® Guide to Managing and Troubleshooting Networks, Third Edition (Exam N10-005 )

• Security overview

– Not just an additional or final step – Integral part of all other steps – Integrate security into each design step

throughout design and building process

Mike Meyers’ CompTIA Network+ ® Guide to Managing and Troubleshooting Networks, Third Edition (Exam N10-005 )

• Security considerations

– List of requirements: • What are the security needs?

Mike Meyers’ CompTIA Network+ ® Guide to Managing and Troubleshooting Networks, Third Edition (Exam N10-005 )

• Security considerations (cont.)

– Network design: • Ensure equipment satisfies requirements – Microsoft Security Essentials on all systems – Use built-in firewall on Cisco 2811 – Door locks, deadbolts, motion sensors all tied to security monitoring company – WPA Personal Shared Key – Verify that WAPs support isolation © 2012 The McGraw-Hill Companies, Inc. All rights reserved.

Mike Meyers’ CompTIA Network+ ® Guide to Managing and Troubleshooting Networks, Third Edition (Exam N10-005 )

• Security considerations (cont.)

– Compatibility issues: • Will there be security issues with the older equipment? • Can the old WAP support WPA2 PSK?

Mike Meyers’ CompTIA Network+ ® Guide to Managing and Troubleshooting Networks, Third Edition (Exam N10-005 )

• Security considerations (cont.)

– Internal connections: • What do we need to do to protect the internal network from threats and failures?

– Verify anti-malware is installed and updated—install Microsoft Security Essentials and configure for automatic updates – Document the location of all PCs and their associated connections © 2012 The McGraw-Hill Companies, Inc. All rights reserved.

Mike Meyers’ CompTIA Network+ ® Guide to Managing and Troubleshooting Networks, Third Edition (Exam N10-005 )

• Security considerations

– Internal connections (cont.): • What do we need to do to protect the internal network from threats and failures? (cont.) – Configure servers to use RAID 5 – For power failure, use four 5000-joule, rack mounted standby power supplies in the equipment room: three for servers and one for all routers, switches, etc.

Mike Meyers’ CompTIA Network+ ® Guide to Managing and Troubleshooting Networks, Third Edition (Exam N10-005 )

• Security considerations

– Internal connections (cont.): • What do we need to do to protect the internal network from threats and failures? (cont.) – Install removable hard drives for backup – Contract for offsite backup – Configure domain for strict password security © 2012 The McGraw-Hill Companies, Inc. All rights reserved.

Mike Meyers’ CompTIA Network+ ® Guide to Managing and Troubleshooting Networks, Third Edition (Exam N10-005 )

• Security considerations (cont.)

– External connections: • How do we connect to the Internet?

– Network uses 2811 router’s firewall features, but must be kept up to date – What ACLs must be configured?

Slide 1

Transcript Slide 1

Building a SOHO Network

Chapter 19

Objectives

Overview

Introduction to SOHO networks

Three parts to Chapter 19

• Designing a SOHO network • Building a network • Security

Designing a SOHO network

• Network design methodology

• Network design methodology (cont.)

• Network design methodology (cont.)

• MHTechED’s new network

Building the network

• Building a SOHO network

• Define the network needs

• Network design

• Network design (cont.)

• Network design (cont.)

• Network design (cont.)

• Network design (cont.)

• Compatibility issues

• Compatibility issues (cont.)

• Internal connections

• Internal connections (cont.)

• Internal connections (cont.)

• Internal connections (cont.)

• Internal connections (cont.)

• External connections

• External connections (cont.)

• ISPs and MTUs

• ISPs and MTUs (cont.)

• Peripherals

Security

• Security overview

• Security considerations

• Security considerations (cont.)

• Security considerations (cont.)

• Security considerations (cont.)

• Security considerations

• Security considerations

• Security considerations (cont.)

Directory