Secure network infrastructure.

 

 


Plan a deployment of software and/or hardware, including implementation and testing considerations.
Instructions
Part 1
Use Microsoft Visio or an open-source alternative to:

Create a network infrastructure diagram, incorporating the following devices needed for a secure corporate network, placed where they will work, and citing specific, credible sources that support the design. Note: A web search will provide multiple examples of network infrastructure diagrams.
Web server.
FTP server.
VPN server.
Authentication server.
Anti-virus server (client-based and server-based).
Edge firewall.
Firewall.
Vulnerability scanner.
Intrusion detection system (IDS).
Web proxy.
Edge router.
Core router.
Switch.
Distribution router.
Note: All client-and server-based devices work where a client is installed on a workstation, which has bi-directional communication with a corresponding server.

Part 2
Write a 6 paper in which you:

Determine the specific devices you will use in the network, including the following information for each device:
Make or vendor's name (for example, Microsoft, Redhat, Cisco, Juniper, Netgear, 3Com).
Model (for example, Windows 7, ASA 5500, Cisco 3500, Squid).
IP address assigned to all devices.
Determine the basic configuration of each network device, citing specific, credible sources that support the configuration.
Research each of the devices you chose and provide a basic configuration you would use in your network.
Use IP addresses to describe your configuration.
Identify the operating system.
Highlight at least five security features and the administrative controls incorporated into each device, including devices in the network diagram.
Explain the impact that each of your configurations has on the security of the entire network.
Explain the elements that must be addressed for planning and testing a network, citing specific, credible sources that support your assertions and conclusions.
Organizational requirements and expectations.
Budget.
Modularity for security and testing.
Naming conventions that facilitate layering and growth.
Determination of required network speed and data capacity.
Vendor support.
Determination of risk and redundancy.
Uptime requirements.
Continuous data monitoring for fault, failure, or security-induced changes.
Load balancing.
Testing for latency.
Bandwidth.
Throughput.
 

Sample Answer

 

 

 

 

 

A secure corporate network requires a layered, hierarchical design to provide defense-in-depth, ensuring that multiple security controls are in place to protect against both internal and external threats. The following diagram describes a logical network infrastructure that a user could create using a tool like Microsoft Visio, incorporating all the specified devices. The design segregates the network into three distinct zones: the Internet/Edge Zone, the Demilitarized Zone (DMZ), and the Internal Corporate Network (LAN), each with its own specific security measures.

Logical Network Infrastructure Diagram

1. Internet/External Zone:

Edge Router: The outermost device, directly connected to the Internet Service Provider (ISP). Its primary role is to route traffic in and out of the corporate network.

Edge Firewall: Sits directly behind the Edge Router. It is the first line of defense, performing stateful packet inspection and filtering all incoming and outgoing traffic to the corporate network.

 

 

 

We are here to help
We have crazy offers
It’s quick and easy to place an order. We have an efficient customer service that works 24/7 to assist you.It’s quick and easy to place an order. We have an efficient customer service that works 24/7 to assist you.

We are here and ready to help

Order Now

IS IT YOUR FIRST TIME HERE? WELCOME

USE COUPON "11OFF" AND GET 11% OFF YOUR ORDERS

PLACE AN ORDER NOW REGISTER NOW