ACME NETWORK DESIGN 1 ACME NETWORK DESIGN 1
Running head: ACME NETWORK DESIGN Running head: ACME NETWORK DESIGN
Acme Network Design Acme Network Design
Bryan Callahan, David "Toby" Meyers & Ellis Thomas Bryan Callahan, David "Toby" Meyers & Ellis Thomas
NTC/242 - Intro to WAN Technologies NTC/242 - Intro to WAN Technologies
Amr Elchouemi Amr Elchouemi University of Phoenix University of Phoenix February 26, 2011 February 26, 2011
Acme Network Design Acme Network Design
Acme Manufacturing requested a comprehensive plan for implementing VLAN Acme Manufacturing requested a comprehensive plan for implementing VLAN technology and wireless connectivity to there multiple company locations in
technology and wireless connectivity to there multiple company locations in an effort to improvean effort to improve network performance for its executive office suite and
network performance for its executive office suite and the various company departments. Thethe various company departments. The proposal will cover recommendations for the overall network design to address their expanding proposal will cover recommendations for the overall network design to address their expanding
operations with the acquisition of a plant in
operations with the acquisition of a plant in China as well as several other offices throughout China as well as several other offices throughout thethe United States. The report will also cover network topology, the
United States. The report will also cover network topology, the hardware and software needed tohardware and software needed to complete the project while segmenting the
complete the project while segmenting the network for network efficiency and enacting securitynetwork for network efficiency and enacting security policies and procedures to ensure data integrity
policies and procedures to ensure data integrity
The Virtual Local Area Network (VLAN) will connect six different geographical The Virtual Local Area Network (VLAN) will connect six different geographical locations: New York, Chicago, Atlanta, Phoenix and
locations: New York, Chicago, Atlanta, Phoenix and China. For four different purposes:China. For four different purposes: Management, Sales, Creation and Manufacturing. With weekly
Management, Sales, Creation and Manufacturing. With weekly telecommutes withtelecommutes with
representatives from each office. Provide lifecycle recommendations for the management
representatives from each office. Provide lifecycle recommendations for the management of theof the WAN.
WAN.
Scope Scope The following network design for Acme
The following network design for Acme Manufacturing includes the recommendedManufacturing includes the recommended
technologies to provide data, voice and video connectivity between remote offices. The scope of technologies to provide data, voice and video connectivity between remote offices. The scope of the design includes recommended WAN technologies, network services, network components, the design includes recommended WAN technologies, network services, network components, logical topology, security and finally lifecycle recommendations.
logical topology, security and finally lifecycle recommendations. Requirements
Requirements
The Acme Manufacturing WAN requires connectivity to six
The Acme Manufacturing WAN requires connectivity to six different offices located indifferent offices located in five different cities around the world. The WAN must
locations including database queries, e-mail and file sharing. Telecommunication services locations including database queries, e-mail and file sharing. Telecommunication services recommendations such as voice and video must be included within the network design. recommendations such as voice and video must be included within the network design.
The network design must support an
The network design must support an estimated 1000 network users between all officesestimated 1000 network users between all offices and be flexible for future growth in n
and be flexible for future growth in network users and locations. As of today, the etwork users and locations. As of today, the approximateapproximate number of users by location is as follows: Atlanta, Georgia Headq
number of users by location is as follows: Atlanta, Georgia Headq uarters: 300 network users,uarters: 300 network users, Atlanta, Georgia
Atlanta, Georgia Engineering: 300 network users, DiEngineering: 300 network users, Distribution Facilitistribution Facilities: 300 network userses: 300 network users combined, China: 100 network users combined.
combined, China: 100 network users combined.
Network Overview Network Overview
The logical arrangement is to create a VLAN segmented according to the different The logical arrangement is to create a VLAN segmented according to the different departments. Each segment can have its own group permissions and privileges. Multilayer departments. Each segment can have its own group permissions and privileges. Multilayer switches, client devices, servers and wireless routers will drive the recommended
switches, client devices, servers and wireless routers will drive the recommended network network design. Routers placed on the backbones, between floors and between LAN and frame relay design. Routers placed on the backbones, between floors and between LAN and frame relay network provider. Recommended also is application and storage servers for each department, one network provider. Recommended also is application and storage servers for each department, one e-mail and one VIP server for each
e-mail and one VIP server for each location.location. The physical media that connects the
The physical media that connects the locations to the public switched network for locations to the public switched network for
domestic operations is a leased fiber optic line and for China a satellite connection. Components domestic operations is a leased fiber optic line and for China a satellite connection. Components for the network system require
for the network system require switches, servers, client systems and switches, servers, client systems and wireless routers.wireless routers. Components required for video conferencing: Videoconferencing Codec Unit, Camera, Components required for video conferencing: Videoconferencing Codec Unit, Camera, Microphones, Video Displays and Conference Room Lighting
Microphones, Video Displays and Conference Room Lighting of diffused directional lightingof diffused directional lighting and integrated into the construction of
and integrated into the construction of the building.the building.
VPN connects wireless users to their departments’ network privileges and resources. VPN connects wireless users to their departments’ network privileges and resources. Firewalls between servers and the rest of network, firewalls and antivirus on
firewall of course between VLAN segments and the
firewall of course between VLAN segments and the public switched network. Devices accessingpublic switched network. Devices accessing the WLAN will be connected an
the WLAN will be connected and granted access to their respective depd granted access to their respective department’s VLAN.artment’s VLAN.
The recommended IP address scheme eases network management and increases network The recommended IP address scheme eases network management and increases network security since the IP addresses on the network are g
security since the IP addresses on the network are grouped by device type, department, rouped by device type, department, andand building. In addition, configurations for firewalls, global rules for access predicate u
building. In addition, configurations for firewalls, global rules for access predicate u ponpon department. For example, firewall IP filtering rules using wildcards to allow or restrict entire department. For example, firewall IP filtering rules using wildcards to allow or restrict entire buildings.
buildings.
WAN Technology WAN Technology The recommended Wide Area
The recommended Wide Area Network (WAN) design will primarily rely on a publicNetwork (WAN) design will primarily rely on a public switched network to provide connectivity between
switched network to provide connectivity between all remote branch offices. The benefit to uall remote branch offices. The benefit to usingsing a service provider for WAN connectivity is that it allows scalability to add locations, adjust
a service provider for WAN connectivity is that it allows scalability to add locations, adjust bandwidth, and eliminates the high co
bandwidth, and eliminates the high cost of purchasing and maintaining private lines, (AT&T,st of purchasing and maintaining private lines, (AT&T, 2011). Refer to figure one for a
2011). Refer to figure one for a visual overview of the WAN topology.visual overview of the WAN topology. Fiber Optic T3 leased circuits provided by local ex
Fiber Optic T3 leased circuits provided by local ex change carriers will provide last milechange carriers will provide last mile connectivity from all domestic locations to the public switched network
connectivity from all domestic locations to the public switched network provider’s (PSN) pointprovider’s (PSN) point of presence (POP). T3 leased circuits are scalable from 12
of presence (POP). T3 leased circuits are scalable from 12 to 45 Mbps allowing plenty of roomto 45 Mbps allowing plenty of room for future technology demands on the
for future technology demands on the WAN.WAN.
The public switched network provider will provide office connectivity using The public switched network provider will provide office connectivity using
multiprotocol label switching (MPLS). MPLS provides network subscribers advanced value multiprotocol label switching (MPLS). MPLS provides network subscribers advanced value added services including Layer 2 and
added services including Layer 2 and 3 VPNs, QoS over existing infrastructures such as IP,3 VPNs, QoS over existing infrastructures such as IP, Frame Relay, and Ethernet, (Cisco, 2011)
Frame Relay, and Ethernet, (Cisco, 2011)
We will use a Satellite technology to link China
We will use a Satellite technology to link China to the United States public switchedto the United States public switched network and our domestic VLAN.
The Atlanta, Georgia offices will have an additional connection between each other The Atlanta, Georgia offices will have an additional connection between each other using two Cisco Aironet 1550 outdoor wireless access p
using two Cisco Aironet 1550 outdoor wireless access p oints used in bridge mode to make oints used in bridge mode to make aa 54Mbps wireless point-to-point connection. The Cisco Aironet uses the latest
54Mbps wireless point-to-point connection. The Cisco Aironet uses the latest 802.11n standards802.11n standards with additional quality of service and VLAN features. The
with additional quality of service and VLAN features. The wireless building-to-buildingwireless building-to-building connection will establish a single virtual LAN between
connection will establish a single virtual LAN between the Atlanta based headquarters andthe Atlanta based headquarters and engineering offices. The benefits to this additional link include
engineering offices. The benefits to this additional link include eliminating the cost of one leasedeliminating the cost of one leased line to the PSNs POP. In addition, the two offices will be ab
and storage servers. and storage servers.
Figure one Acme WAN Topology Figure one Acme WAN Topology
Network Services Network Services
Videoconferencing systems shall provide for conferencing and
Videoconferencing systems shall provide for conferencing and joint meetings of joint meetings of geographically diverse issues.
geographically diverse issues.
Acme requests wireless connectivity for an indeterminate amount of clients for Acme requests wireless connectivity for an indeterminate amount of clients for
connectivity to onsite LANs and connection to corporate VLAN. Once connectivity established connectivity to onsite LANs and connection to corporate VLAN. Once connectivity established between test device, routers and internal wired network, routers programmed with MAC filtering between test device, routers and internal wired network, routers programmed with MAC filtering
with MAC addresses disclosed by the department. WEP programmed with randomly generated with MAC addresses disclosed by the department. WEP programmed with randomly generated keys of maximum length and shared
time to the network and as devices approved and MAC addresses are given and randomly time to the network and as devices approved and MAC addresses are given and randomly generated keys for WEP protocol.
generated keys for WEP protocol.
I.P. Address Scheme I.P. Address Scheme
Our IP Address Scheme Calls for a Class A Private network where
Our IP Address Scheme Calls for a Class A Private network where each department ineach department in each building will have their own subnet based on the following: the second octet predicated on each building will have their own subnet based on the following: the second octet predicated on physical location, and the third octet identifies the department.
physical location, and the third octet identifies the department.
L
Looccaattiioonn LLoocc ID ID
D
Deeppaarrttmmeenntt VVLLAA N N ID ID Network Network Address Address DHCP Host DHCP Host Range Range Broadcast Broadcast Address Address Atlanta, Atlanta, Georgia (HQ) Georgia (HQ) 1 100 CCoorrppoorraattee Operations Operations 1 1 1010..1100..11..00//2244 1100..1100..11..440 0--10.10.1.239 10.10.1.239 10.10.1.255 10.10.1.255 M Maarrkkeettiinngg 22 1100..1100..22..00//2244 1100..1100..22..440 0--10.10.2.239 10.10.2.239 10.10.2.255 10.10.2.255 A Addmmiinniissttrraattiioon n 33 1100..1100..33..00//2244 1100..1100..33..440 0--10.10.3.239 10.10.3.239 10.10.3.255 10.10.3.255 A Accccoouunnttiinngg 44 1100..1100..44..00//2244 1100..1100..44..440 0--10.10.4.239 10.10.4.239 10.10.4.255 10.10.4.255 Atlanta, Atlanta, Georgia (Eng) Georgia (Eng) 2 200 SSaalleess 55 1100..2200..55..00//2244 1100..2200..55..440 0--10.20.5.239 10.20.5.239 10.20.5.255 10.20.5.255 E Ennggiinneeeerriinngg 66 1100..2200..66..00//2244 1100..2200..66..440 0--10.20.6.239 10.20.6.239 10.20.6.255 10.20.6.255 C Chhiiccaaggoo 3300 SSaalleess 55 1100..3300..55..00//2244 1100..3300..55..440 0--10.30.5.239 10.30.5.239 10.30.5.255 10.30.5.255 A Addmmiinniissttrraattiioonn 33 1100..3300..33..00//2244 1100..3300..33..440 0--10.30.3.239 10.30.3.239 10.30.3.255 10.30.3.255 P
Phhooeenniixx 4400 SSaalleess 55 1100..4400..55..00//2244 1100..4400..55..440 0--10.40.5.239 10.40.5.239 10.40.5.255 10.40.5.255 A Addmmiinniissttrraattiioonn 33 1100..4400..33..00//2244 1100..4400..33..440 0--10.40.3.239 10.40.3.239 10.40.3.255 10.40.3.255 N
Neew w YYoorrkk 5500 SSaalleess 55 1100..5500..55..00//2244 1100..5500..55..440 0--10.50.5.239 10.50.5.239 10.50.5.255 10.50.5.255 A Addmmiinniissttrraattiioonn 33 1100..5500..33..00//2244 1100..5500..33..440 0--10.50.3.239 10.50.3.239 10.50.3.255 10.50.3.255 C
Chhiinnaa 6600 PPrroodduuccttiioonn 77 1010..6600..77..00//2244 1100..6600..77..440 0--10.60.7.239 10.60.7.239 10.60.7.255 10.60.7.255 A Addmmiinniissttrraattiioonn 33 1100..6600..33..00//2244 1100..6600..33..4400-- 1100..6600..33..225555
10.60.3.239 10.60.3.239
Table one, IP Address Scheme –
Table one, IP Address Scheme – WorkstationsWorkstations
The following table lists the recommended address scheme
The following table lists the recommended address scheme for all network devices.for all network devices.
H
Hoosst t IIDD DDeevviiccee
..11 GGaatteewwaay y RRoouutteer r ..55 AApppplliiccaattiioon n SSeerrvveer r ..66 SSttoorraagge e SSeerrvveer r ..1155 SSuubbnneet t SSwwiittcchh .20 t
.20 to.30o.30 LayLayer 3 Ser 3 Switwitchechess .225
.225 Network attached storage Network attached storage drivers. drivers. .240 - . .240 - . 249 249
Network attached printers. Network attached printers.
.40 - . .40 - . 239 239
DHCP pool for workstations DHCP pool for workstations
Table two, Address Scheme for network devices Table two, Address Scheme for network devices
Virtual Local Area Network Virtual Local Area Network
The logical arrangement is to create a VLAN with seven segments according to the four The logical arrangement is to create a VLAN with seven segments according to the four different purposes: one segment for Management, Sales, Creation and Manufacturing. Each different purposes: one segment for Management, Sales, Creation and Manufacturing. Each segment can have its own group permissions and privileges. Wireless access points will belong segment can have its own group permissions and privileges. Wireless access points will belong to a separate VLAN behind
to a separate VLAN behind a firewall with no access to network resources other a firewall with no access to network resources other than through athan through a VPN client.
Figure two, Acme VLAN Topology Figure two, Acme VLAN Topology
VLAN membership by MAC address shall be the protocol of the Network. VLAN VLAN membership by MAC address shall be the protocol of the Network. VLAN membership by MAC address allows workstations on the network easily moved aroun
membership by MAC address allows workstations on the network easily moved aroun d to anyd to any network segment since MAC addresses are hard-wired into the
network segment since MAC addresses are hard-wired into the NICs of all componentsNICs of all components (Passmore & Freeman, 1996).
(Passmore & Freeman, 1996).
The virtual trunking protocol (VTP) mode used to
The virtual trunking protocol (VTP) mode used to configure the switches is transparent.configure the switches is transparent. Once Transparent schemes are configured, they
Once Transparent schemes are configured, they will not attempt to reconfigure and do nwill not attempt to reconfigure and do notot broadcast their configuration (Cisco, 2009). This means that a
broadcast their configuration (Cisco, 2009). This means that a tech will reprogram every switchtech will reprogram every switch when it expands. Simple identification by IP address and
spoofed, the switches and routers will not be
spoofed, the switches and routers will not be able to tell the difference. To improve able to tell the difference. To improve security ansecurity an open source encryption system with a proprietary set of keys. Encryption systems configured to open source encryption system with a proprietary set of keys. Encryption systems configured to give only certain keys to certain network segments information.
give only certain keys to certain network segments information. Network Components Network Components
All new networking equipment including multilayer switches, gateway routers, client All new networking equipment including multilayer switches, gateway routers, client devices, servers and wireless routers strategically placed within the local area networks
devices, servers and wireless routers strategically placed within the local area networks to handleto handle wired and wireless data, voice and video services for 1000 network users.
wired and wireless data, voice and video services for 1000 network users. In order to gain the most ou
In order to gain the most out of implementing a VLAN, a private t of implementing a VLAN, a private port switching physicalport switching physical topology be implemented. A private port switching topology
topology be implemented. A private port switching topology not only increases the bandwidthnot only increases the bandwidth per segment but also increases network security since the
per segment but also increases network security since the only traffic found on a particular only traffic found on a particular segment is for the one device
segment is for the one device connected to that segment (Passmore, 1996). Private port connected to that segment (Passmore, 1996). Private port switchingswitching requires each device to own
requires each device to own a port on the local workgroup a port on the local workgroup switch. To save cost, a simple layer switch. To save cost, a simple layer two twenty-port switches to attach end user devices.
two twenty-port switches to attach end user devices.
Layer 3 multilayer switches to connect the workgroups to the backbone. Layer 3 switches Layer 3 multilayer switches to connect the workgroups to the backbone. Layer 3 switches will provide inter-VLAN routing without the need for routers. One Layer 3 multilayer backbone will provide inter-VLAN routing without the need for routers. One Layer 3 multilayer backbone switches per 5 workgroup switches or 100 devices. Refer to figure three for a simplified
switches per 5 workgroup switches or 100 devices. Refer to figure three for a simplified overview. Packets destined for another device
overview. Packets destined for another device on the same physical workgroup of the on the same physical workgroup of the samesame VLAN assignment would only need to traverse the
VLAN assignment would only need to traverse the L2 workgroup switch; a packet L2 workgroup switch; a packet destined for destined for another physical workgroup or another VLAN, the packets routed through the L3 switch.
Figure three, simplified private port physical topology. Figure three, simplified private port physical topology.
Routers are on the backbone to route packets between each floor of each building and one Routers are on the backbone to route packets between each floor of each building and one additional router will be required at each
additional router will be required at each location to serve as gateway to the location to serve as gateway to the WAN link. EachWAN link. Each gateway will also be equipped with firewall hardware.
gateway will also be equipped with firewall hardware.
In order to support 1000 network users, it is recommended that one application and one In order to support 1000 network users, it is recommended that one application and one storage server be placed at each location for each department with the exception of Atlanta, storage server be placed at each location for each department with the exception of Atlanta, Georgia who will share server resources over a
Georgia who will share server resources over a wireless WAN link. Additionally, one e-mail andwireless WAN link. Additionally, one e-mail and one VOIP based PBX server is required at each
one VOIP based PBX server is required at each location.location. A dedicated VOIP based PBX server at ea
A dedicated VOIP based PBX server at each location running Cisco Unifiedch location running Cisco Unified Communications Manager software will fulfill Acme Manufacturing voice and video Communications Manager software will fulfill Acme Manufacturing voice and video
requirements. Cisco Unified Communications Manager supports the latest VOIP technology requirements. Cisco Unified Communications Manager supports the latest VOIP technology
including SSL VPN on IP phones, video
including SSL VPN on IP phones, video conferencing, four-digit extension dialing even betweenconferencing, four-digit extension dialing even between locations, and call forwarding (Cisco, 2011).
locations, and call forwarding (Cisco, 2011).
Hardware needed for Wireless connectivity at locations with wireless connectivity will be Hardware needed for Wireless connectivity at locations with wireless connectivity will be 1000ft Enhanced Category 6 Network Cable for every 75000 square feet, D-LINK WNDR3800 1000ft Enhanced Category 6 Network Cable for every 75000 square feet, D-LINK WNDR3800 N600 Wireless Dual Band Wireless routers and a
N600 Wireless Dual Band Wireless routers and a D-Link DGS-1005G 5-Port Gigabit Switch for D-Link DGS-1005G 5-Port Gigabit Switch for every 4 routers. Mounting racks and wireless routers placed e
every 4 routers. Mounting racks and wireless routers placed e very 75 ft and above very 75 ft and above reachablereachable height to serve in locations with high
height to serve in locations with high concentrations of workers.concentrations of workers. Network Security
Network Security
VPN connects wireless users to their departments’ network privileges and resources. A VPN connects wireless users to their departments’ network privileges and resources. A VPN policy conforms wireless use to network security protocols. Firewalls between servers and VPN policy conforms wireless use to network security protocols. Firewalls between servers and the rest of network, firewalls and antivirus on each computer, firewall of course between VLAN the rest of network, firewalls and antivirus on each computer, firewall of course between VLAN segments and the public switched network.
segments and the public switched network. User access from wireless device to VLANUser access from wireless device to VLAN authorized in their department. Network management
authorized in their department. Network management and security group the IP addresses on theand security group the IP addresses on the network by device type, department and building. Configurations for firewalls, global rules for network by device type, department and building. Configurations for firewalls, global rules for access predicate upon department. In
access predicate upon department. In example, it only allows the wildcard access to example, it only allows the wildcard access to wildcard andwildcard and only department devices can access the
only department devices can access the sales department server.sales department server.
The communication backbones provided by the incumbent local exchange carrier (ILEC) The communication backbones provided by the incumbent local exchange carrier (ILEC) to connect the multiple company sites implements there own
to connect the multiple company sites implements there own network security features in annetwork security features in an attempt to secure network connections from the
attempt to secure network connections from the time the information transmitted, to the time, ittime the information transmitted, to the time, it is received, as well as open
is received, as well as open system authentication with a service set identifier (SSID) beaconing.system authentication with a service set identifier (SSID) beaconing. Open System Authentication is a process by which a
Open System Authentication is a process by which a computer can gain access to computer can gain access to a wirelessa wireless network that uses the Wired Equivalent Privacy (WEP) protocol. Attackers determine SSID, network that uses the Wired Equivalent Privacy (WEP) protocol. Attackers determine SSID, Beaconing, passive scanning, the
the wireless access point. A well-secured network using WPA or, ev
the wireless access point. A well-secured network using WPA or, ev en better, WPA2, and a non-en better, WPA2, and a non-trivial password, will take care of those people, as
trivial password, will take care of those people, as well as more capable hackerswell as more capable hackers
Lifecycle Recommendations Lifecycle Recommendations We suggest scheduling a maintenance
We suggest scheduling a maintenance inspection every two years including: Updates,inspection every two years including: Updates, attenuation of signaling equipment, broadcast media and all static equipment replace damaged or attenuation of signaling equipment, broadcast media and all static equipment replace damaged or aged equipment. We suggest that
aged equipment. We suggest that encryption algorithms, user passwords and access expire andencryption algorithms, user passwords and access expire and terminate upon employee departure. That penetration tests scheduled to check and improve the terminate upon employee departure. That penetration tests scheduled to check and improve the security of the network. Backing up
security of the network. Backing up the vlan.dat file of the switches to save the vlan.dat file of the switches to save the configuration of the configuration of each network in case of
each network in case of switch failure reconfiguration only takes as long as replacement or switch failure reconfiguration only takes as long as replacement or itit takes to reboot the switch or the
takes to reboot the switch or the rest of the network. Network administrators are required torest of the network. Network administrators are required to update firmware on all devices monthly and virus definitions daily on all machines in the update firmware on all devices monthly and virus definitions daily on all machines in the network.
References References AT&T (2011). Enterprise Business Frame Relay. AT&T (2011). Enterprise Business Frame Relay.
Retrieved on August 14, 2011, from: AT&T, Retrieved on August 14, 2011, from: AT&T,
http://www.business.att.com/enterprise/Family/network-services/frame-relay-atm. http://www.business.att.com/enterprise/Family/network-services/frame-relay-atm. Cisco (2009). Understanding VLAN Trunk Protocol (VTP).
Cisco (2009). Understanding VLAN Trunk Protocol (VTP). Retrieved on February 28, 2011, from: Cisco,
Retrieved on February 28, 2011, from: Cisco,
http://www.cisco.com/en/US/tech/tk389/tk689/technologies_tech_note09186a0080094c5 http://www.cisco.com/en/US/tech/tk389/tk689/technologies_tech_note09186a0080094c5 2.shtml#vtp_modes.
2.shtml#vtp_modes.
Cisco (2011). Cisco Aironet 1550 Series. Cisco (2011). Cisco Aironet 1550 Series.
Retrieved on August 14, 2011 from: Cisco, Retrieved on August 14, 2011 from: Cisco,
http://www.cisco.com/en/US/products/ps11451/index.html. http://www.cisco.com/en/US/products/ps11451/index.html. Cisco (2011). Cisco Unified Communications Manager Express. Cisco (2011). Cisco Unified Communications Manager Express.
Retrieved on August 14, 2011 from: Cisco, Retrieved on August 14, 2011 from: Cisco,
http://www.cisco.com/cisco/web/solutions/small_business/products/voice_conferencing/u http://www.cisco.com/cisco/web/solutions/small_business/products/voice_conferencing/u c_manager_express/index.html.
c_manager_express/index.html. Cisco (2011). Multiprotocol Label
Cisco (2011). Multiprotocol Label Switching (MPLS).Switching (MPLS). Retrieved on August 14, 2011 from: Cisco, Retrieved on August 14, 2011 from: Cisco,
http://www.cisco.com/en/US/products/ps6557/products_ios_technology_home.html. http://www.cisco.com/en/US/products/ps6557/products_ios_technology_home.html. Passmore & Freeman (1996). The virtual LAN technology report.
Passmore & Freeman (1996). The virtual LAN technology report. Retrieved on August 14, 2011 from: 3COM,
Retrieved on August 14, 2011 from: 3COM,
http://www.3com.com/other/pdfs/solutions/en_US/20037401.pdf. http://www.3com.com/other/pdfs/solutions/en_US/20037401.pdf. Welcher (2004). Clever Addressing Schemes.
Welcher (2004). Clever Addressing Schemes.
Section Case Study #2: Controlling College Students Section Case Study #2: Controlling College Students
Retrieved on February 28, 2011, from: netcraftsmen.net, Retrieved on February 28, 2011, from: netcraftsmen.net,
http://www.netcraftsmen.net/resources/archived-articles/506.html http://www.netcraftsmen.net/resources/archived-articles/506.html..
