Final Project – Enterprise Network Design Assignment
ABC is a fast-growing company with many branches and customers. As a network administrator you have been asked to configure the ABC company network. All devices in all the departments are required to communicate with each other and with the Internet. The company has 3 departments: you need VLANs for data and VLANs for voice)
- HR & Finance (28 users) • Sales & Marketing (50 users)
- Development and IT Support (60 users) including the Server Room (DHCP, DNS, Web, Mail and an Internet Server that is connected to the cloud and has a public IP address such as 209.165.200.246/29_You can use any Public IP address) _ (VLAN #)
Solution Using Cisco Packet Tracer:
Basic Switch Configuration
Each departmental switch (HR, IT, Sales) is configured with:
– Hostname (e.g., Switch-HR)
– VLANs for segmentation
– Access ports assigned to user VLANs
– Trunk ports connected to routers or other switches
Example:
Switch> enable
Switch# configure terminal
Switch(config)# hostname Switch-HR
Switch-HR(config)# vlan 10
Switch-HR(config-vlan)# name HR
Switch-HR(config)# interface range fa0/1 – 10
Switch-HR(config-if-range)# switchport mode access
Switch-HR(config-if-range)# switchport access vlan 10
Switch-HR(config)# interface g0/1
Switch-HR(config-if)# switchport mode trunk
HR
IT
Sales
Basic Router Configuration (e.g., FIN-Router)
Set hostname
Configure interface IPs
Enable interfaces
Example:
Router> enable
Router# configure terminal
Router(config)# hostname FIN-Router
Router(config)# interface g0/0
Router(config-if)# ip address 192.168.100.1 255.255.255.224
Router(config-if)# no shutdown
Fin Router
HR Router
IT Router
Sales Router
SSH Configuration on Routers
Enable SSH for secure remote access
Example:
Router(config)# ip domain-name company.local
Router(config)# crypto key generate rsa
Router(config)# username admin password cisco123
Router(config)# line vty 0 4
Router(config-line)# login local
Router(config-line)# transport input ssh
Sales
Finance
HR
IT
VLAN and IP Addressing
Base Network: 192.168.100.0/24
| Department | Subnet Address | Host Range | Broadcast Address |
| Finance | 192.168.100.0/27 | 192.168.100.1 – 30 | 192.168.100.31 |
| HR | 192.168.100.32/27 | 192.168.100.33 – 62 | 192.168.100.63 |
| Sales | 192.168.100.64/27 | 192.168.100.65 – 94 | 192.168.100.95 |
| IT | 192.168.100.96/27 | 192.168.100.97 – 126 | 192.168.100.127 |
| ServerSide | 192.168.100.128/29 | 192.168.100.129 – 134 | 192.168.100.135 |
IP Phones (Voice Network)
Base Network: 172.16.100.0/24
| Department | Subnet Address | Host Range | Broadcast Address |
| Finance | 172.16.100.0/27 | 172.16.100.1 – 30 | 172.16.100.31 |
| HR | 172.16.100.32/27 | 172.16.100.33 – 62 | 172.16.100.63 |
| Sales | 172.16.100.64/27 | 172.16.100.65 – 94 | 172.16.100.95 |
| IT | 172.16.100.96/27 | 172.16.100.97 – 126 | 172.16.100.127 |
Point-to-Point Router Links
Using /30 subnets for router interconnections:
| Link | Network Address |
| Finance to HR | 10.10.10.0/30 |
| Finance to IT | 10.10.10.4/30 |
| Sales to HR | 10.10.10.8/30 |
| Sales to IT | 10.10.10.12/30 |
DHCP Configuration
- DHCP pools for data and voice VLANs
Example (HR Data):
ip dhcp pool HR
network 192.168.100.32 255.255.255.224
default-router 192.168.100.33
dns-server 8.8.8.8
Voice DHCP:
ip dhcp pool Voice-HR
network 172.16.100.32 255.255.255.224
default-router 172.16.100.33
option 150 ip 192.168.100.129
Inter-VLAN Routing + DHCP Relay
Router-on-a-stick configuration:
interface g0/0.10
encapsulation dot1Q 10
ip address 192.168.100.1 255.255.255.224
ip helper-address 192.168.100.129
Vlan configuration
Finance
HR
IT
Sales
SVR
AS all the VLANs assignment plus all access and trunk ports on the switches has been done. Now let’s start assignment of Subnetting and IP addressing.
• Configure static IPs for servers and use DHCP for all other hosts
Finance
HR
Sales
IT
• Static Server IP Addressing
Configure DHCP pools
Finance Router
HR Router
Sales Router
IT Router
Inter-VLAN routing on routers plus DHCP helper address
Finance Router
HR Router
Sales Router
SVR
IT Router
Routing: RIP v2
All routers use RIP version 2:
router rip
version 2
no auto-summary
network 192.168.100.0
network 10.10.10.0 network 172.16.100.0
IP Phone
NAT (Network Address Translation)
- Purpose: Allows internal private IP addresses to access the public internet by translating them into a single public IP address.
- Usage Scenario: Server or PCs in the private network need internet access.
Configuration Example:
access-list 1 permit 192.168.100.0 0.0.0.255
ip nat inside source list 1 interface g0/1 overload
interface g0/0
ip nat inside
interface g0/1 ip nat outside
- Explanation:
- The access-list defines the range of internal addresses to be translated.
- The overload keyword allows many devices to share one public IP.
- ip nat inside and ip nat outside are set on internal and external interfaces respectively.
This report summarizes the full configuration setup for switches, routers, VLANs, DHCP, NAT, IP addressing, and routing protocols for a structured departmental network.