INTRODUCTION
A small business network lacks external support from corporate entities and as such, should be straight forward and easy to manage. In this network design, we are going to adopt a simple strategy that will follow the simplest strategies to achieve the desired results. In this billing business, only a single employee is available to troubleshoot, diagnose and maintain computers. The network comprises modest computing and networking resources and a dozen or fewer computers, printers and servers. The network should allow member of the business to share files, printers, and other peripherals on a single LAN. The small office LAN is managed by a single individual with moderate technical knowledge and experience. The design fundamentals for this small office network must be synonymous with that of large enterprises. The design is small, functional, secure and scalable. Since the billing business is a start-up, it is expected to grow in some day, and scaling up should not be an issue at all. The network should easily expand with the business.
In order to design a small network for the neighbour, all the devices required for the network are assembled. There are two workstations, two laptops and a server required for the task. Dell is chosen as a supplier of these devices. Thus, two workstations, two laptops and a server are chosen from Dell.com website. The cost of the materials should be less than $3,000.
The network depicted below illustrates two workstations, two laptops and a single printer connected via switch. A DSL router is connected the ISP with the organizational resources. A firewall and intrusion prevention server are placed between the clients, and DSL router to inspect and monitor traffic in and out of the internet.
NETWORK ARCHITECTURE AND INTERNET ACCESS CONFIGURATION
A LAN is set up in this scenario. Using LAN is convenient to connect two computers, laptops and printers with little cost. LAN will make it possible to transfer files, share resources such as the database and printers, and provide mobility required by laptop users. The LAN architecture developed in this case is a combination of wired and wireless. Wired architecture is done on the two workstations and the printers while wireless router will provide wireless connectivity for remote users. Ethernet networks will use RJ45 cables to connect between computers and switches. A star topology is recommended for this LAN. Computers and printers will be connected to the switch via RJ45 cables. Instead of using a hub to connect two computers we use a switch provided by the ISP. ISP provides a wireless router that routes traffic over the internet.
Switches are used to connect hosts to the network. A switch receives traffic from devices such as DSL router, firewalls and other switches and forwards it to the appropriate network hosts based on MAC addresses. Each of the device in the network will be assigned a unique MAC address as well as IP address. While MAC addresses are permanently assigned to the hosts, IP are dynamic and changes with time or when an internet connection is established.
Screened subnets are physical network segments that allow access to and from the Internet. Screen subnets contain information technology assets such as Domain Name System servers, Mail Servers, Web servers and Network IDS sensor. Static IP addresses will be assigned to Web Servers, Mail Servers, and DNS servers. Domain registration will be done so that users can access the servers via the internet. Firewall will translate valid IP addresses into appropriate private address using Network Address Translation.
Mail Relay Server neither through nor included at the moment will be considered in the future as the organization grows. It will be placed, on a Screened Subnet, to act as an intermediary. It will be received SMTP traffic originating and directed to the internet and the internal network and forwards it to the preferred destination. Firewall will allow SMTP traffic to traverse screened subnet and allow traffic to flow from mail relay to the internal mail servers. Mail relay servers allow mail to be sent and received from the Internet and at the same time sorting critical business messages and placing it in the services subnet. The server also hosts anti-spam software that removes unsolicited email from entering the network.
Web server conducts intranet related tasks and is not accessible by Internet. All unnecessary ports are closed, and the server hardened. Strong s and passwords are applied. The server communicates with applications and databases in the application subnet.
Files and print are located in the shared services subnet and are also not available via the internet. File servers contains critical business resources and assets including financial information, corporate strategy documents, and patents.
HARDWARE
The recommended personal computers are Dell Precision T3500
- It is affordable, reliable and ideal for small businesses
- Operating system: 64-bit and windows 7 Ultimate
- Processor: Intel Pentium IV 2.8Ghz
- 15.6” SCREEN SIZE led Display 1366 x 768
- 4GB RAM
- Hard Drive: 500GB
- Network interface Card in Built 10/100 BASE-T LAN
- Wireless connectivity
- Microsoft Essential anti-virus protection
- Price $312 for each workstation
The neighbour would also require two laptops for efficient operation. Dell Precision M65000 is preferred. They have Intel Core i5 2.40 processors, 500GB hard drive, 4096 memory and run on Windows 7 Pro operating system. Each laptop cost $617.
Dell will provide the printers, and Dell V525W All-in-One Wireless Inkjet Printer is chosen for the task. The printer will provide versatile, efficient and enhanced performance while printing, scanning, faxing, and copying at a great value. The cost of the printer is $120.
An 8 port power connection switch from Dell costs $100 and provides flexible management capabilities and energy-efficient options.
Dell Power Edge R710 is the server of choice. It has 2.26GHz Intel Xeon Quad Core processor and 6GB RAM as well as 272 GB Hard drive. It costs $1179.
A wireless router is required, and AT&T 871 Ethernet Wireless Router for small offices is identified for the task. It costs $300.00. Other materials such as CAT 6 cables are approximated to cost $200.
The total cost of all the materials is summarized in the table below:
Setup and configuration manuals will be obtained from Microsoft and Dell, and if necessary, an external IT consultant is recommended.
Windows Small Business Server 2008 is essential for sharing files and general administration. The Share and Storage Management feature combine a number of related tools such as a file server resource manager, disk defragmenter, disk manager, and storage manager for SAN.
Windows Home Server is suitable for sharing home media and making simple tasks such those required by a small business. File sharing is simplified, and any file in the server is shared unless it is specified it is specified as hidden.
Internet accessInternet connectivity is essential for the small business. Internet is particularly noteworthy because it is the backbone upon which the billing business is based. Without internet access, the business cannot continue.
With internet, reliability is core. An appropriate internet provider will be sourced to provide internet connectivity. A choice of the provider is dependent on pricing, internet speeds, additional services and reliability.
Internet connectivity will be provided by AT&T. With AT&T, it is easy to connect the small office with high speed internet network favourable for business functions. AT&T provides a number of internet option including high speed, DSL and broadband. High speed internet provided via fibre cables is sufficient to drive the business to the next stage. Fiber connections are installed on the premise by expert technical engineers to provide internet speeds of up to 500Mbps.
In addition, the bundle comes with VoIP connection. VoIP will ultimately eliminate the need for extra telephone lines. In VoIP, voice data is converted and sent or received through high speed Internet connection. The package includes dedicated services, wireless router, professional installation for a single PC, internet security, online backup and sharing, and business applications at no extra charge.
AT&T high speed internet is suitable for downloads, research on the web and communication with partners and business clients. AT&T charges $70 for internet connectivity, domain name of the business and website hosting.
Multiple email addresses
Multiple email addresses will be required for employees in the small business. Email communication is essential for linking with outside partners, suppliers, customers and other parties. Support for email will be provided as a single package with the internet connectivity from AT&T.
SECURITY
Security in the small business resembles that of a home area. Most of The security concerns are introduced by the internet. Thus, in order to secure the business against external attacks, basic security measures are adopted.
Anti-malware programs will be installed in all computers, and laptops to guard against viruses and malwares. Microsoft essentials as chosen to provide that needed security. Microsoft essentials software is available free of charge from Microsoft and guards the business computers against many known security threats. In addition, a firewall will be configured, at the network level, to prevent unauthorized traffic. Firewall will help the business eliminate unwanted traffic that could result in network performance and security risks. Data theft is one of the many methods that inflict damage to the organization.
Application subnets are protected to limit chances of attacks. Application subnets are isolated from internal networks by using a firewall. This segmentation is expected to provide an additional layer of security against attacks on critical business resources.
A network intrusion and detection application will be installed in the network. Devices in the small business network will communicate through wireless means. NIDS sensors are deployed, in the shared services subnet, to monitor and detect sensitive information. Alarms are raised whenever a hostile encounter is detected. False alarms are, however, minimized, and response are made immediately and strongly focused. Thus, laptops and mobile phones need to be protected against spoofing and similar kinds of attacks. The cost of hardware, software and monthly subscription costs for AT&T internet bundles less than the anticipated costs of $5000.
CONCLUSION
This paper has proposed a network design for a small billing business. The business comprises of two workstations, two laptops, a single printer and an application/web server. The total cost of materials is below the budgeted cost of $5000. Monthly subscriptions (internet and Windows Home Server) are below $200. The network adopts a star LAN topology. Workstations are connected to the network via switches, and the network is connected to ISP internet through a router. AT&T is chosen as the preferred internet service provider. Mail and web servers are used to communicate with the outside world. Security in the business is enhanced through the use of anti-virus software installed on individual PCs and laptops. Firewall is also placed to isolate internal and external traffic. NIDS is deployed, on the network, to alert the user of any threat. Provisions for scaling up are considered, in the network design, to provide for future expansions and acquisitions. It is my belief that this is the best network that is economical and delivers the best in ensuring that goals are met.
References
Allan Reid, J. L. (2007). Networking for Home and Small Businesses, CCNA Discovery Learning Guide. Cisco Press.
Association, I. R. (2013). Small and Medium Enterprises: Concepts, Methodologies, Tools, and Applications. IGI.
Rybaczyk, P. (2004). Cisco Network Design Solutions for Small-medium Businesses. Cisco Press.
