Advanced Computer Networks

Course Instructor: Vivek Sethi

Dehradun Institute of Technology, India

Vivek Sethi (DIT) Advanced Computer Networks 10th Jan. 2023 1 / 70

About the Course

Network Design
Switching and Routing
Wireless Network Design
Network Security and Management Design
Queuing System

Vivek Sethi (DIT) Advanced Computer Networks 10th Jan. 2023 2 / 70

Reference Books

Diane Tiare and Catherine Paquet, ”Campus Network Design

Fundamentals”, Pearson Education, 2006.
LL Peterson, BS Davie, Computer Networks: A Systems Approach,
5th Ed., Morgan-Kauffman, 2011.
W Stallings, Cryptography and Network Security, Principles and
Practice, 5th Ed., Prentice-Hall, 2010.

Vivek Sethi (DIT) Advanced Computer Networks 10th Jan. 2023 3 / 70

Introduction to Computer Network

What is a Network?
Special Purpose Networks: Voice Telephone Networks, Cable TV
Networks
Multi-purpose Networks: Computer Networks

Vivek Sethi (DIT) Advanced Computer Networks 10th Jan. 2023 4 / 70

Popular Computer Network Applications

World Wide Web

Streaming audio and video
File sharing
Social Networking
Instant Messaging
People who interact - are users, people who develop - are application
developers, and people who design a network - are network designers.

Vivek Sethi (DIT) Advanced Computer Networks 10th Jan. 2023 5 / 70

Challenges in Today’s Computer Network

Application developers are building new smart applications which use

the networking services.
Large number of users, and devices are joining the internet.
Attackers are trying to steal the private information of users.
Network designers need to design the network according to the new
requirements of the organization.

Vivek Sethi (DIT) Advanced Computer Networks 10th Jan. 2023 6 / 70

Network Design

Design: Planning to create something.

Network Design: Plan to create / modify a network according to
the requirements of the customer.
How to make a Good Network? - Follow Network Design Principles

Vivek Sethi (DIT) Advanced Computer Networks 10th Jan. 2023 7 / 70

Design Principles

Design Implement
Plan Phase
Phase Phase

Optimize Operate
Phase Phase
Figure: Design Principles.

Vivek Sethi (DIT) Advanced Computer Networks 10th Jan. 2023 8 / 70

Design Principles

Plan phase: The detailed network requirements are identified, and the
existing network is reviewed.
Design phase: The network is designed according to the initial
requirements.
Implement phase: The network is built according to the approved
design.
Operate phase: The network is operational and is being monitored.
Optimize phase: During this phase, issues are detected and corrected.
Retirement phase: This phase is necessary when part of the network
is outdated or is no longer required.

Vivek Sethi (DIT) Advanced Computer Networks 10th Jan. 2023 9 / 70

Determining Requirements

The technical requirements may include the following items:-

Applications that will run on the network?.
Internet Connections Requirement?
Network Security Requirement?
Network Availability?
Network Response Time?
Network Scalability?

Vivek Sethi (DIT) Advanced Computer Networks 10th Jan. 2023 10 / 70

Determining Requirements

Also, there can be many restrictions/constraints in building the network.

Budget - Cost of building a network?
Schedule - Time to build a network?
People - Who will operate the network?
Legal - Restrictions on the use of data?
Policy - Organization policies which restrict the network design?

Vivek Sethi (DIT) Advanced Computer Networks 10th Jan. 2023 11 / 70

Analyzing the Existing Network

If the network is needed to be re-designed, the current network must the

analyzed.
Analyzing what is good or what needs to be changed in the existing
network.
Examine documentation of existing network and discuss it with users
and administrative staff.
Determine what are the devices used in the network, and utilization of
those devices.
Routing protocols used in the existing network.
Cabling used in the existing network.

Vivek Sethi (DIT) Advanced Computer Networks 10th Jan. 2023 12 / 70

Preparing the Preliminary Design
After considering all the requirements and restrictions/constraints, possible
alternate solutions are developed. Two models are used:

Top-down Approach Bottom-up Approach

Applications and Applications and

Requirments Requirments

Network Network
Solution Solution

Figure: Design models.

Vivek Sethi (DIT) Advanced Computer Networks 10th Jan. 2023 13 / 70
Completing the Final Design Development

Among all the possible solutions, one optimal solution is selected. Final
design development involves:
Producing detailed configuration specifications, costing, addressing
plans, etc.
Develop a prototype separate from the original network for
verification.

Vivek Sethi (DIT) Advanced Computer Networks 10th Jan. 2023 14 / 70

Deploying the Network

First, a deployment plan is prepared which includes details of what is to be

done and how is to be done.
If new cabling is required, complete procedure to deploy the cable is
specified.
Scheduling - when to do the tasks, people who perform the tasks?

Vivek Sethi (DIT) Advanced Computer Networks 10th Jan. 2023 15 / 70

Deploying the Network

Second, a contingency plan is prepared which includes:

What happen when a problem occurs during the implementation?
How the network is restored to its previous working state?
Any technical training required for personnel?
Any contracts required? Any maintenance, internet connectivity
contracts.
When plans, schedules, and contracts are determined, the network can be
implemented.

Vivek Sethi (DIT) Advanced Computer Networks 10th Jan. 2023 16 / 70

Monitoring and Redesigning

The network should be monitored for anomalies and problems.

If any problem occur, or if any requirement changes, appropriate
design changes must be made and entire design process must be
repeated for that portion of network.

Vivek Sethi (DIT) Advanced Computer Networks 10th Jan. 2023 17 / 70

Maintaining Design Documentation

The design should be documented throughout the process.

All the agreed-to requirements and constraints.
The state of the existing network, if any.
Preliminary design options, final design.
Results of prototype testing.
Deployment plans, schedules, and other implementation details.
Monitoring requirements.

Vivek Sethi (DIT) Advanced Computer Networks 10th Jan. 2023 18 / 70

Modular Design

Design that divides the system into smaller parts known as modules.
Modules are independently created, modified, or replaced.
Different modules are put together to meet the requirements of the
entire network design.

Vivek Sethi (DIT) Advanced Computer Networks 10th Jan. 2023 19 / 70

Advantages of Modular Design

Easier to understand and design smaller modules.

Easier to troubleshoot small modules.
Reuse of modules to save design time and effort.
Reuse of modules allows the network to grow easily, providing network
scalability.

Vivek Sethi (DIT) Advanced Computer Networks 10th Jan. 2023 20 / 70

Hierarchical Network Design

Core

Distribution

Access
Figure: Hierarchical Network Design.

Vivek Sethi (DIT) Advanced Computer Networks 10th Jan. 2023 21 / 70

Hierarchical Network Design

Access Layer: Provides user and workgroup access to the resources of

the network
Distribution Layer: Provides connections between workgroups and
between the workgroups and the core
Core Layer: Provides high-speed transport between distribution-layer
devices and to core resources

Vivek Sethi (DIT) Advanced Computer Networks 10th Jan. 2023 22 / 70

Hierarchical Network Design

CORE

DISTRIBUTION

ACCESS

Figure: Hierarchical Network Design.

Vivek Sethi (DIT) Advanced Computer Networks 10th Jan. 2023 23 / 70

Functions

Access Layer: Provides access to local users through connections to a

hub or a switch.
Distribution Layer: Provides routing between the access and core
layers, performing route summarization, providing redundant
connections, aggregating multiple lower-speed access connections into
higher speed core connections.
Core Layer: Providing high-speed, low-latency links, Adapting to
network changes quickly by implementing a quick-converging routing
protocol, The routing protocol can also be configured to load-balance
over redundant links

Vivek Sethi (DIT) Advanced Computer Networks 10th Jan. 2023 24 / 70

The Cisco Enterprise Composite Network Model
The Enterprise Composite Network Model first divides a network into
three functional areas.

Figure: Functional areas.

Vivek Sethi (DIT) Advanced Computer Networks 10th Jan. 2023 25 / 70
Enterprise Campus

Enterprise Campus: This area contains all the functions required for
independent operation within one campus location. It does not
provide remote connections
Enterprise Edge: This area contains all the functions required for
communication between the Enterprise Campus and remote locations,
including the Internet, remote employees, other campuses, partners,
and so forth.
Service Provider Edge: This functional area is not implemented by the
organization; rather, it is included to represent WANs and Internet
connections provided by service providers.

Vivek Sethi (DIT) Advanced Computer Networks 10th Jan. 2023 26 / 70

Modules: The Cisco Enterprise Composite Network Model

Figure: Functional area containing modules.

Vivek Sethi (DIT) Advanced Computer Networks 10th Jan. 2023 27 / 70

Campus Infrastructure Module

The Campus Infrastructure module represents one or more buildings

connected to a backbone.
This module is comprised of three submodules: Building, Building
Distribution, and Core.
The combination of a Building and a Building Distribution submodule
represents each building within a campus.

Vivek Sethi (DIT) Advanced Computer Networks 10th Jan. 2023 28 / 70

Campus Infrastructure Module - Building Module

The Building submodule contains all the devices to allow users in the
building to access the network.
Layer 2 switches, but it can also include Layer 3 switches if more
advanced features are required.

Vivek Sethi (DIT) Advanced Computer Networks 10th Jan. 2023 29 / 70

Campus Infrastructure Module - Building Distribution
Module

The Building Distribution submodule provides access between

workgroups and to the Core.
This functionality is typically provided by Layer 3 switches or routers.
Routing is implemented in this sub-module; route filtering might also
be required. Summarizing of routes should also be implemented here
so that the routing overhead is minimal.

Vivek Sethi (DIT) Advanced Computer Networks 10th Jan. 2023 30 / 70

Campus Infrastructure Module - Core Module

The Core submodule typically uses Layer 3 switching to provide a

high- speed connection between the campus buildings and the Server
and Edge Distribution modules.

Vivek Sethi (DIT) Advanced Computer Networks 10th Jan. 2023 31 / 70

Management Module

The Management module houses monitoring, logging, security, and

other management features within an enterprise.
An authentication, authorization, and accounting (AAA) server to
provide security checks of users.
Intrusion detection system (IDS) and intrusion prevention system
(IPS) management.
System logging.

Vivek Sethi (DIT) Advanced Computer Networks 10th Jan. 2023 32 / 70

Server Module

The centralized Server module contains internal campus servers.

These servers can include e-mail, file, and print servers, or any other
servers
An authentication, authorization, and accounting (AAA) server to
provide security checks of users.
Intrusion detection system (IDS) and intrusion prevention system
(IPS) management.
System logging.

Vivek Sethi (DIT) Advanced Computer Networks 10th Jan. 2023 33 / 70

Edge Distribution Module

The Edge Distribution module is the interface between the Enterprise

Campus (through the Core submodule) and the Enterprise Edge
functional areas.
This module typically uses Layer 3 switching to provide
high-performance routing.
Intrusion detection system (IDS) and intrusion prevention system
(IPS) management.
System logging.

Vivek Sethi (DIT) Advanced Computer Networks 10th Jan. 2023 34 / 70

Enterprise Edge Functional Area

The Enterprise Edge functional area is the interface between the

Enterprise Campus functional area (through the Edge Distribution
module) and the Service Provider Edge functional area.
E-commerce module
Corporate Internet module
VPN/Remote Access module
WAN module

Vivek Sethi (DIT) Advanced Computer Networks 10th Jan. 2023 35 / 70

Enterprise Edge Functional Area

The E-commerce module includes the devices and services necessary

for an organization to support e-commerce applications.
The Corporate Internet module provides Internet access for the users.
Typical servers in this module include e-mail, File Transfer Protocol
(FTP), and Domain Name System (DNS) servers.
The VPN/Remote Access module terminates VPN traffic and dial-in
connections from external users.
The WAN module provides connectivity between remote sites and the
main site over various WAN technologies.

Vivek Sethi (DIT) Advanced Computer Networks 10th Jan. 2023 36 / 70

Service Provider Edge Functional Area

Three Modules:
Internet Service Provider (ISP) module.
Public Switched Telephone Network (PSTN) module.
Frame Relay/ATM module

Vivek Sethi (DIT) Advanced Computer Networks 10th Jan. 2023 37 / 70