An enterprise network design and implementation project on Cisco pkt.
The company deploys a DMZ, 2 Cisco ASA firewall and has access to a cloud platform.
Technology Implemented:
• 3 tiers network architect
• IP subnetting
• VLAN
• Inter-vlan trunking (distribution switch SVI)
• Link aggregation (LACP)
• Redundancy (HSRP on distribution switches)
• Single-point failure prevention
• VoIP (telephony)
• Wireless LAN controller & lightweight access points
• OSPF single area (routing between ISP, FW and distribution switches)
• Static default route
• DHCP server (DMZ)
• NAT overload (PAT on ASA firewall)
• Zone-based policies (inside, outside, DMZ on ASA firewall)
• Standard and extended access control list (ACL)
• SSH (allow only sr engineer access to FW and layer 3 switches)
• Switch port security (portfast and bpduguard)
