Planning, Designing and Building Large-scale Network at Campus

Xie Shuizhen

School of electronic engineering , Jiujiang University

Jiujiang China xieshuizhen@jju.edu.cn

Abstract—This article makes detailed analysis and description on the campus network to achieve a higher overall performance, including needs analysis, the goal, the network technology, the method of planning and design, network technology and network design requirements, the overall design scheme, the netwrk equipment selectin, device configuration, network planning, and service systems to the campus network application and so on. The study is mainly to apply to the construction of the campus network and the network Upgrade.

Key words- the overall structure of the campus network design, network planning, network equipment selection, network cabling, VLAN classification

Figure 1. Hierarchical network design

Core layer is consisted in wire-speed routing switch, such

In short, the goal of building the campus network is to as Cisco Catalyst6509, Cisco Catalyst6506, Cisco link a variety of different applications of information Catalyst4006, Cisco3600 as the backbone. The route as the resources through high-performance network equipment, core, network is based on the expansion and management of where forms the Intranet system and builds external access the network. The core layer is the main route, where the through the routing devices. Specifically, the core is to build Internet technology is used in building the network. We use an office automation, computer-aided instruction, and triangular core network topology shown in Figure 2. As the campus culture. A variety of school PC, workstation, export line to the Internet is assigned to the triangle's three terminal device and LAN are connected and linked with the points, each region's export traffic in the network directly wide area network on the base of advanced technology, through the point during the normal Internet visit. The way where can meet the teaching, research and management that the three triangle points communicate between each needs of software and hardware environment; provide staff other is achieved through the route. Once a point failing in with various types of network information services by visiting internet, one can change to another via another two developing of various information database and application routes. It is obvious advantages in the management of the

network topology and traffic load balancing. In this case, systems.

each area where there points of the triangle charge can use a different IP address. Agent-based technology can make each II. DESIGN AND IMPLEMENTATION OF CAMPUS

region did not have a large number of virtual addresses, NETWORK

which makes it easy to expand each regional network larger. Another advantage is that each triangle is only responsible A. Campus network topology and routing

for three-switch VLAN routing and switching in each region,

The campus covers an area of 2757 acres, including the

without having to bear the entire network VLAN switch. The

existing main campus, Xundong campus, Lufeng campus

nodes of the backbone layer are connected through the

and South Lake campus. With the area of 780,000 square

\"single-mode fiber\

meters, there are over 3 million full-time students. The

or two full-duplex Gigabit Ethernet links. Bandwidth

Academy has an affiliated hospital, 2 Middle School

incensement and link backup are realized through load

Attached, which is typical of the large campus network. In

balancing and the backbone ring taking into account the

the view of the structure, large campus network system can

chain Way back.

be divided into the core layer, the convergence layer and

Convergence layer mainly refers to Catalyst3524,

access layer, as shown in Figure 1; in the view of the

Catalyst3550, Catalyst 2950 with the core layer of gigabit /

functions, it can be divided into the campus network center,

fast optical switch. In the use of L2, 100M or 1000M Fast

teaching subnet, office subnet, subnet, dormitory, and etc.

Ethernet switching technology, the campus network

___________________________________ convergence layer is built through the \"multi-Mode fiber\" 61284-840-2/11/$26.00 ©2011 IEEE 978-1-between buildings, from backbone of the network layer of

I.

INTRODUCTION

󰀗󰀜󰀘

each node to the teaching buildings, office buildings, student dormitories and faculty residential area; while within the larger buildings through the twisted pair UTP backbone network from the node to building of the various departments at the same level. The 100M Ethernet aggregation layer switches is set among nodes. Although a building is often corresponds to a convergence layer node, the responding relationship between the nodes and building does not exist.

Access Layer: the entire network topology looks like a tree as the TCL S4126MF and Lenovo connected to the switch and the secondary. The campus network access layer switch is built between buildings by using the \"multi-mode fiber, \"or in buildings over five twisted pair with the convergence layer of the network node from the extended deployment in the building, floor or unit 100M switches . Users directly connected to the UTP twisted pair access node. Taken full account of the future application of the school, the campus information node is designed around 10,000. Switches, a total of some 150, are 4 core switches, 20 trunk switches with a Gigabit fiber interface. The existing computer room access through their most recent main switch switching nodes as well as the multimedia teaching network. INTERNET access router connected with 100M fiber program. The 8-pin or 12-core outdoor cables are used to connect master room to the library, classroom building, laboratory building, library, and dormitory; 6-core cable and over Category 5 cable are used within building indoor.

• • • • • 1 DNS Server: responsible for the entire campus network analysis of each domain name.

1 Email server: responsible for the entire campus network each user's mail.

1 Proxy Server: responsible for the entire campus network users to access Internet.

1FTP Server: Responsible for campus file sharing 1 VOD server: video news on demand courseware

B. Equipment selection and VLAN classification

nstitute of the overall network topology is shown in Figure 3. There are three level network of centers, two centers and secondary teaching area network subnet, office subnet, subnet family area, library subnet, subnet experimental center room and so on, in which a network-centric IP address and VLAN classification is in Table 1,and other VLAN and IP address space by the relations are not listed.

Figure 3. Overall Network Topology at Jiujiang University Campus

Figure 2. Triangle Network Topology

Also, according to the practical application of the school, 7 sets of servers are as follows:

• 1 set the database server: with UNX operating

system, responsible for the student record system management.

• 1 WWW server: with WINDOWS operating systems,

remote service management, responsible for the management of WEB sites. WEB server is using IIS server is now more popular with ASP language development, SQL database connected to form a complete dynamic website.

1) Three top network centers

a) First Network Center (Information Technology Center)

The first network center is responsible for office and family area network. The center core layer switches Cisco Catalyst6509 is responsible for C-class address for 218.193.224.0-218.193.239.255, 16 VLAN routing and switching. The Internet address is valid on the whole public school outside the server address all of these addresses.

b) The second network center (Integrated Services Building)

The second teaching area network center is responsible for the network. The center core layer switches Cisco Catalyst4006 is responsible for C-class address for

󰀗󰀜󰀙

192.168.0.0-192.168.63.255, VLAN routing and switching. The address is invalid virtual address of the Internet with the use of NAT technology to access Internet. However, effective internal access at school, when the internal data network access and a public address of the center position is the same. The backup servers of school database server address all.

c) The third Network Center (Indoor Track and Field Hall)

North Network Center is responsible for the third network. The center core of the switch for the Cisco Catalyst6506 is responsible for 192.168..0-192.168.127.255, C-class address for VLAN routing and switching. The address is invalid virtual address of the Internet with the use of NAT technology to access Internet. While effective internal access at school, the internal data network access and a public address of the center position is the same. The backup servers of school database server address all.

2) Two secondary network centers

a) Secondary Network Center 1 (Experimental Center) By CISCO3550-12G

b) Secondary Network Center 2 (Library)

With Catalyst 3550-12T, the switch includes 10 10/100/1000 BaseT ports and 2 Gigabit Interface Converter Based on (GBIC) Gigabit Ethernet port; 1.5 rack unit (RU) 3) Other sub-networks

a) The design of teaching area subnet

One of the purposes of campus network construction is the use of multimedia networks, such as: interactive multi-media classrooms, electronic reading, teacher training. The difficulty lies in multimedia transmission of video signals (such as the VOD video on demand). Subnets according to the teaching of the characteristics of high speed requirements, using the Catalyst 3524 10/100M adaptive Ethernet switch that provides 24 10/100M switched ports and two gigabit interface converter based on (GBIC) of thousands Gigabit Ethernet interface.

b) The design of office subnet

The main office subnet leaders at all levels for schools and the functional departments is to achieve the network data query, modify, add, delete. It should be able to meet the requirements for video transmission at the same time. In view of this, the office subnet using Catalyst 3524 10/100M adaptive Ethernet switch that provides 24 10/100M switched ports and two gigabit interface converter based on (GBIC) Gigabit Ethernet interface. Access layer using a wire-speed Fast Ethernet desktop switch, Cisco Catalyst 2950 Series, which greatly increase data transmission rate to resolve the server bottleneck problem.

c) The design of students area subnet

Student Area subnet allows students to browse and access some electronic documentation in a dormitory; and access to the core switch through the school Internet. Because there is large student demand to visit Internet traffic, the bandwidth requirements are very high. So we use Catalyst 3524 10/100M adaptive Ethernet switch that provides 24 10/100M switched ports and two gigabit-based

Interface converter (GBIC) Gigabit Ethernet interface, connected directly via fiber optic cable core switches.

d) Design of the families District subnet

Subnet that is to connect residential buildings in the families district of all teachers, staff to the engine room through fiber optic cable, where is convenient for teachers access to library resources to search online information. As there is large demand of school teachers and staff for Internet traffic, very high bandwidth required and large network traffic . So we use Catalyst 3524 10/100M adaptive Ethernet switch that provides 24 10/100M switched ports and two gigabit interface converter based on (GBIC) Gigabit Ethernet interface directly connected by fiber optic cable core switches.

e) The design of library subnet

The library is a relatively independent system with a 600-seat reading room. we use the Catalyst 3550-12T 10/100/1000M Adaptive Ethernet switch, which provides excellent performance and low cost per port, and supports Port VLAN classification, support layer switching, greatly improving the library network access speed.

f) The design of experiment center subnet

Experimental Center is charging each department's computer courses, using a wire-speed Fast Ethernet desktop switch, Cisco Catalyst 2950 Series, and is connected to the secondary hub through the fiber optic cable.

III.

THE MAIN TECHNICAL MEANS AND MEASURES OF CAMPUS NETWORK OPERATION AND MANAGEMENT

Network management is the soul of the network to ensure stable and efficient operation of computer networks, which plays a very important role in network management. It will affect the operation of the network quality. Network center at Jiujiang University campus is divided into six levels with a total of more than 20,000 points network. It consists of three layers, namely the core layer, the convergence layer and access layer three-tier network architecture. Among them, dozens of servers provide the whole school literature search, science computing, distance learning, auxiliary office, file services, email and multimedia lesson plans and other services, which play an important role in teaching and research in the school. To ensure quality and efficient operation of the network, a variety of techniques are used to conduct the operation on the campus network monitoring, analysis and monitor the results through the Web publishing through the network system status alarm management. The main technical means and measures of campus network operation and management is shown in Table 2.

IV. SUMMARY

Combined with modern information technology, the design of the campus network is as the base of the college of practical application, following the practical, reliable, advanced and safe design principles. The study aims to provide a good solution to the normal teaching and scientific research work ,and meet future development needs.

󰀗󰀜󰀚

REFERENCES

[1] Xiren Xie .Computer Networks (version 5), Electronic Industry Press,

2008

[2] Liaochang, Wu, Formation of the Campus Network, Tsinghua

University Press, 2005

[3] Douglas Comer. nternetworking With TCP/P VolΣ:Principles,

protocols,and ArchitecturesወFourth EditionወPublishing house of electronics industryወ2001

TABLE I.

VLAN Code [4] Andrew S.Tanenbaum. Computer Networks (Third Edition)ወ

Prentice-Hall InternationalወIncወ1997

[5] Matthew H. Birkner. Cisco Interconnect Network Design, Posts &

Telecom Press, 2000

[6] John R. Levine. Internet Core Technology Intensive Solutions,

Electronic industry Press, 2001

A NETWORK-CENTRIC IP ADDRESS AND VLAN CLASSIFICATION

Segment Net Mask Gateway Application

Vlan1 1 218.193.224.224 255.255.225.224 218.193.224.225 Exchange unit2 Vlan11 11 218.193.224.0 255.255.225.224 218.193.224.1 Exchange unit1 Vlan12 12 218.193.224.32 255.255.225.224 218.193.224.33 Exchange unit1 Vlan13 13 218.193.224. 255.255.255.224 218.193.224.65 Network management Vlan14 14 218.193.224.96 255.255.255.224 218.193.224.97 Development room Vlan15 15 218.193.224.128 255.255.255.224 218.193.224.129 Admission room Vlan16 16 218.193.224.160 255.255.255.224 218.193.224.161 Courseware room Vlan17 17 218.193.224.192 255.255.255.224 218.193.224.193 headmaster Vlan25 25 218.193.225.0 255.255.255.0 218.193.225.1 library Vlan26 26 218.193.226.0 255.255.255.0 218.193.226.1 library Vlan27 27 218.193.227.0 255.255.255.0 218.193.227.1 library Vlan28 28 218.193.228.0 255.255.255.0 218.193.228.1 library Vlan29 29 218.193.229.0 255.255.255.0 218.193.229.1 Online admission Vlan30 30 218.193.230.0 255.255.255.0 218.193.230.1 Online admission Vlan31 31 218.193.231.0 255.255.255.0 218.193.231.1 No.2 Faculty Village Vlan32 32 218.193.232.0 255.255.255.0 218.193.232.1 Multiple-use building Vlan33 33 218.193.233.0 255.255.255.0 218.193.233.1 Red buildingǃNo.1 VillageVlan34 34 218.193.234.0 255.255.255.0 218.193.234.1 No.3 Faculty Village Vlan35 35 218.193.235.0 255.255.255.0 218.193.235.1 No.4 Faculty Village Vlan36 36 218.193.236.0 255.255.255.0 218.193.236.1 No. 3 Faculty Village

Vlan37 37 218.193.237.0 255.255.255.0 218.193.237.1 Office machine Vlan38 38 218.193.238.0 255.255.255.0 218.193.238.1 Information center Vlan39 39 218.193.239.0 255.255.255.0 218.193.239.1 reserve

󰀃

TABLE II.

THE MAIN TECHNICAL MEANS AND MEASURES OF CAMPUS NETWORK OPERATION AND MANAGEMENT

NO. Management Technology Feature

Monityoring FacilityǃCPU of ServerǃMemory usage circumstance 1 Monityoring Whats up

and port state MRTG

solarwinds

2 Monityoring Whats up WWWǃDNSǃEMAILǃFTP, ECT

3 Mall Monityoring Gateway Control spam, viruses spread of e-mail 4 Trafficmonitoring MRTG Real-time traffic, day, month, year flow, graphics, WEB publishing

solarwinds

5 IP-Macbingding Replacement to prevent users from unauthorized IP 6 Agent Technology FWSM Protect the user's system security

NAT

Reduce the broadcast storm and improve overall network performance 7 High-speed, Gigabit Ethernet technology,

three switching VLAN technology

ACL 8 high-performance Protect the safety of equipment and user system

Between the network access control 9 DMZ zone established FWSM Protect the server farm security

Firewall Technology

10 Configuration Backup FTFP Core device data backup, failure recovery time

󰀗󰀜󰀛