Network Proposal for Mr. Khoza's Small Business
1. Network Design:
Based on Mr. Khoza's requirements, I propose the following network design:
- Internet Connection: Upgrade the current 3G dongle connections to a stable and high-speed broadband connection, such as fiber-optic or DSL, to ensure reliable and fast internet connectivity.
- Network Infrastructure: Install a wired ethernet network infrastructure throughout the premises using Cat6 Ethernet cables. This will provide faster and more secure connectivity compared to the current USB dongle connections.
- Network Switches: Install network switches in each office to connect the devices. Use managed switches that support VLANs and QoS features to optimize network performance and prioritize critical traffic.
- Wireless Access Points: Install wireless access points (WAPs) strategically in each office to provide Wi-Fi connectivity for laptops, mobile devices, and visiting customers and suppliers.
- Server Room Setup: Set up the small storeroom as a dedicated server room. Install a rack to house the servers, network switches, and other networking equipment. Ensure proper cooling, power backup, and security measures for the server room.
- File and Print Servers: Install two servers in the server room to act as file and print servers. This will centralize file storage and provide secure and reliable printing capabilities for all users.
- VPN Connectivity: Set up a Virtual Private Network (VPN) to allow remote users, including Mr. Khoza, to securely access the network and work from anywhere. This will enable remote access to shared resources, such as files and printers.
2. Network Security:
To ensure network security, implement the following measures:
- Firewall: Install a firewall between the local network and the internet connection to protect against unauthorized access and external threats. Configure the firewall to allow only necessary traffic.
- Network Segmentation: Implement VLANs to separate different departments or user groups within the network. This will enhance network security and prevent unauthorized access to sensitive information.
- Access Control: Set up user accounts with unique usernames and passwords for all network devices and servers. Implement role-based access control to restrict access based on user roles and responsibilities.
- Anti-malware and Intrusion Detection: Install anti-malware software and configure intrusion detection systems on all devices and servers to detect and prevent malware infections and unauthorized access attempts.
3. Scalability:
To accommodate future growth and the opening of new branches, consider the following:
- Network Capacity: Install network switches with sufficient ports to accommodate the current and future number of devices in each office.
- Network Expansion: Plan the network design and infrastructure to easily add new offices and branches in the future. Use scalable technologies, such as modular switches and expandable server racks.
- Wide Area Network (WAN): Establish a wide area network (WAN) connection between the main office and the new branches in Roodepoort and Pretoria North. This can be achieved through dedicated leased lines or VPN tunnels over the internet, depending on the budget and requirements.
- Network Monitoring: Implement network monitoring tools to track network performance, identify bottlenecks, and proactively address any issues that may arise with increasing network size and complexity.
4. Server Redundancy:
To ensure high availability and minimize downtime, consider implementing server redundancy:
- RAID Configuration: Set up the servers with RAID (Redundant Array of Independent Disks) configuration to provide data redundancy and protection against disk failures. Use RAID 1 or RAID 5 for efficient redundancy.
- Backup and Disaster Recovery: Regularly backup critical data and implement a disaster recovery plan. This can include offsite backups, redundant power supplies, and redundant internet connections to ensure business continuity in case of any server failures or disasters.
- Virtualization: Consider virtualization technology to consolidate server resources, improve scalability, and enable easier backup and recovery processes.
Overall, this network proposal aims to provide Mr. Khoza's small business with a secure, scalable, and cost-effective network infrastructure. By implementing the suggested network design, security measures, and redundancy options, Mr. Khoza's business will have a reliable and efficient network that can support current and future growth.
Mr. Khoza runs a small business in Midrand, Gauteng. His business has been steadily growing since
its inception in February 2019 in spite of the ill-effects of the COVID-19 lockdowns as well as the
ripple effects of the economic issues and financial markets such as rising fuel prices and inflation.
He, Mr. Khoza, has asked you to design a secure network for his small business. Additionally, he
would like you to design and build a cost-effective network for his business.
The current setup is such that every PC and laptop user uses a 3G dongle to connect to the Internet.
When users need to print, they either copy the work that needs to be printed to USB flash drives
or email their work to any one of the five users whose PCs are attached to a printer – all printers
connect via USB cables.
The new network, according to Mr. Khoza, should cater to at least thirty devices, fifteen desktops
(PCs), seven laptops including Mr. Khoza’s laptop, two servers and four BYOD devices. Additionally,
Mr. Khoza wants to allow visitors such as customers and suppliers to connect mobile devices to get
Internet connectivity. All users with PCs and laptops should still be able to print.
The premises where Mr. Khoza runs his business has six offices (rooms). All the rooms are located
on the same floor. Mr. Khoza has an office and does not share office space. There are two open-
plan offices, the first open-plan office houses seven desktops and the remainder of the PCs are
housed in the second open-plan office. Two laptop users share an office while the other three
laptop users share a separate office. A small storeroom has been selected for use as a server room.Mr. Khoza is looking at opening two new offices within twelve months, one in Roodepoort and
the other in Pretoria North. The two branches will be launched at the same time. The
Roodepoort branch is expected to launch with ten computer users. The Pretoria North branch is
expected to kick off with 25 users. With all the work completed in Part 2 and additions to this Part, you are required to write
a network proposal for Mr. Khoza’s network. The network solution for Mr. Khoza must
enable all offices to connect, work remotely, communicate and share information.The solution must clearly indicate the main considerations, including, scalability,
security, server redundancy, etc. are provided.
1 answer
1 answer