Network Design Proposal for Redco Developments' Galle Branch

Answered using GPT-4o Mini by GPT4oMini.app

Question:

Assignment Brief and Guidance:

Redco Developments is a Sri Lankan based Mobile app development company, which the head office is in Kandy. The company develops mobile applications for Sri Lanaka’s leading organizations for both mobile platforms IOS and Android. The CEO plans to expand the company operations of Redco development in Southern province in Sri Lanka. The management has decided to open a new branch office in Galle and wants it to be one of the most prominent tech-oriented offices in Galle with the latest tech facilities including smart devices such as auto lighting, physical security solutions, smart gates and new ERP software IP camera Systems. You have been appointed as the Junior implementation Engineer of Redco and your task is to design a new network for the Galle branch and restructure the existing Kandy network that connects both networks. Prepare a network architectural design and implement it with your suggestions and recommendations to meet the company requirem

Answer:

Network Architectural Design for Redco Developments

Overview

The goal is to design a robust, secure, and scalable network architecture for the new Galle branch of Redco Developments while restructuring the existing Kandy network to ensure seamless connectivity between the two locations. The design will incorporate the latest technology to support smart devices, security systems, and ERP software.

Network Requirements

  1. Connectivity: Reliable and high-speed internet connection between Kandy and Galle.
  2. Security: Implementation of firewalls, VPNs, and physical security measures.
  3. Smart Devices: Support for IoT devices such as smart lighting, IP cameras, and smart gates.
  4. Scalability: Ability to expand the network as the company grows.
  5. Redundancy: Ensure high availability and disaster recovery options.

Proposed Network Architecture

1. Network Topology

  • Star Topology: Each branch (Kandy and Galle) will have a central switch/router that connects all devices within the branch. This allows for easy management and troubleshooting.

2. Network Components

  • Core Layer: High-performance routers to connect both branches.
  • Distribution Layer: Layer 3 switches to manage traffic between VLANs and provide routing capabilities.
  • Access Layer: Layer 2 switches for connecting end devices (computers, printers, smart devices).
  • Wireless Access Points (WAPs): For mobile device connectivity and IoT devices.
  • Firewall: To protect the network from external threats.
  • VPN Gateway: For secure remote access and inter-branch connectivity.

3. IP Addressing Scheme

  • Private IP Addressing: Use a private IP address range (e.g., 192.168.1.0/24 for Kandy and 192.168.2.0/24 for Galle).
  • Subnetting: Divide the network into subnets for different departments (e.g., Development, HR, Marketing).

4. Network Security

  • Firewalls: Deploy next-generation firewalls at both branches to monitor and control incoming and outgoing traffic.
  • VPN: Establish a site-to-site VPN between Kandy and Galle for secure communication.
  • Access Control Lists (ACLs): Implement ACLs on routers and switches to restrict access to sensitive areas of the network.
  • Physical Security: Install IP cameras and smart gates at both locations for surveillance and access control.

5. Smart Device Integration

  • Smart Lighting: Use smart lighting systems that can be controlled via a mobile app or centralized management system.
  • IP Camera Systems: Deploy IP cameras for security monitoring, integrated with the network for remote access.
  • Smart Gates: Implement smart gates that can be controlled remotely and integrated with the security system.

6. ERP Software Integration

  • Server Setup: Host the ERP software on a dedicated server within the Kandy branch, accessible via the VPN from the Galle branch.
  • Database Management: Ensure that the database is secure and backed up regularly.

Implementation Plan

  1. Site Survey: Conduct a site survey in Galle to assess the physical layout and determine the best locations for network equipment.
  2. Procurement: Purchase necessary hardware (routers, switches, firewalls, WAPs, smart devices).
  3. Installation: Set up the network infrastructure in Galle, including cabling, switches, and access points.
  4. Configuration: Configure routers, switches, firewalls, and VPN settings.
  5. Testing: Perform thorough testing of the network to ensure connectivity, security, and performance.
  6. Training: Provide training for staff on using the new systems and devices.
  7. Documentation: Create detailed documentation of the network architecture, configurations, and procedures.

Recommendations

  • Regular Maintenance: Schedule regular maintenance and updates for network devices and software.
  • Monitoring Tools: Implement network monitoring tools to track performance and detect issues proactively.
  • User Education: Educate employees on cybersecurity best practices to minimize risks.

Conclusion

The proposed network architecture for Redco Developments' Galle branch is designed to meet the company's requirements for connectivity, security, and scalability. By implementing the latest technology and best practices, Redco can ensure a robust and efficient network that supports its growth and operational needs.