Modular Network Design: Key Modules Overview

Oct 1, 2024

Notes on Modular Approach to Network Design Part 2

Introduction

  • Subject: Enterprise Network Design, B7 Semester IT, University of Mumbai
  • Focus: Modular approach to network design (Part 2)
  • Recap of Part 1: Evaluation of enterprise network, Cisco SONA framework, functional areas, and enterprise campus module.

Overview of Modules Discussed in Part 2

  • Enterprise Edge Module
  • Service Provider Module
  • Remote Enterprise Module

1. Enterprise Edge Module

  • Components Covered:
    • E-commerce Module
    • Internet Connectivity Module
    • Remote Access and VPN Module
    • WAN and MAN Site-to-Site VPN Module

a. E-commerce Module

  • Purpose: Enables organizations to provide e-commerce applications.
  • Key Elements:
    • Web Servers: Primary interface for navigation.
    • Application Servers: Host various applications.
    • Database Servers: Store application and transaction information.
    • Firewall/Routers: Control communication and security.
    • NIDS/NIPS: Monitor network segments for attacks.
    • Multi-layer Switches: Provide traffic transport and security monitoring.

b. Internet Connectivity Module

  • Purpose: Provides internal users with internet access.
  • Key Components:
    • SMTP Servers: Relay between internal and internet mail servers.
    • DNS Servers: Authoritative for external DNS requests.
    • Public Servers (HTTP/FTP): Share information about the organization.
    • Firewalls: Provide protection and forward VPN traffic.
    • Edge Routers: Basic filtering and multi-layer connectivity.

c. Remote Access and VPN Module

  • Purpose: Terminates remote access and VPN traffic.
  • Key Components:
    • Access Concentrators: Authenticate dial-in connections.
    • Cisco ASA: Terminates tunnels and provides security services.
    • Firewalls/IDS Appliances: Provide protection and monitoring.

d. WAN and MAN Site-to-Site VPN Module

  • Purpose: Provides connectivity between remote and central sites.
  • Technologies Used:
    • Traditional (Lease Lines, Frame Relay, ATM)
    • Modern (SONET, DSL, MPLS, Metro Ethernet, Wireless)
  • Note: Does not include WAN connections; only interfaces.

2. Enterprise Edge Guidelines

  • Steps to Create Enterprise Edge System:
    1. Create E-commerce Module.
    2. Determine connection to the internet (Internet Connectivity Module).
    3. Design Remote Access and VPN Module.
    4. Define WAN and MAN module for permanent connections.

3. Service Provider Module

  • Submodules Discussed:
    • Internet Service Provider Module
    • PSTN Module
    • Frame Relay and ATM Module

a. Internet Service Provider Module

  • Represents enterprise IP connectivity.
  • Redundant connections to ISPs for reliability.

b. PSTN Module

  • Represents non-permanent WAN connections (dial-up).

c. Frame Relay and ATM Module

  • Covers WAN technologies for permanent connectivity.
    • Frame Relay: Connection-oriented, efficient data transmission.
    • ATM: High-performance cell-oriented switching.
    • Other Technologies: DSL, SONET, Cable, Wireless Bridge, MPLS.

4. Remote Enterprise Module

  • Modules Discussed:
    • Enterprise Branch Module
    • Enterprise Data Center Module
    • Enterprise Teleworker Module

a. Enterprise Branch Module

  • Provides resilient network architecture for remote locations.
  • Supports connectivity to central site and high-speed internet access.

b. Enterprise Data Center Module

  • Similar architecture to server farm.
  • Manages increased security and regulatory requirements.

c. Enterprise Teleworker Module

  • Provides secure access for remote employees.
  • Connects via broadband or dial-up services.

Conclusion

  • Summary of modules covered: Enterprise Edge, Service Provider, and Remote Enterprise Modules.
  • Next topic: Services within Modular Network.
  • Thank you and goodbye!