Mr. Khoza runs a small business in Midrand, Gauteng. His business has been steadily growing since
its inception in February 2019 in spite of the ill-effects of the COVID-19 lockdowns as well as the
ripple effects of the economic issues and financial markets such as rising fuel prices and inflation.
He, Mr. Khoza, has asked you to design a secure network for his small business. Additionally, he
would like you to design and build a cost-effective network for his business.
The current setup is such that every PC and laptop user uses a 3G dongle to connect to the Internet.
When users need to print, they either copy the work that needs to be printed to USB flash drives
or email their work to any one of the five users whose PCs are attached to a printer – all printers
connect via USB cables.
The new network, according to Mr. Khoza, should cater to at least thirty devices, fifteen desktops
(PCs), seven laptops including Mr. Khoza’s laptop, two servers and four BYOD devices. Additionally,
Mr. Khoza wants to allow visitors such as customers and suppliers to connect mobile devices to get
Internet connectivity. All users with PCs and laptops should still be able to print.
The premises where Mr. Khoza runs his business has six offices (rooms). All the rooms are located
on the same floor. Mr. Khoza has an office and does not share office space. There are two open-
plan offices, the first open-plan office houses seven desktops and the remainder of the PCs are
housed in the second open-plan office. Two laptop users share an office while the other three
laptop users share a separate office. A small storeroom has been selected for use as a server room.
Use the prescribed material and your own research to answer this question:
Using examples, write a report to discuss ten principles of network design that you
can recommend to a network designer to follow when designing Mr. Khoza’s
network. In your answer, each example must show evidence that you have applied
the scenario to both the specifications of the existing network and the projected
network.
• The report must be at least three pages and must not exceed five pages,
excluding diagrams.
• Reference all the sources including in-text referencing.
Report: Ten Principles of Network Design for Mr. Khoza's Small Business
Introduction:
As the network designer for Mr. Khoza's small business, it is important to follow certain principles to ensure the design is secure, cost-effective, and capable of meeting the needs of the business. In this report, we will discuss ten principles of network design that can be recommended for Mr. Khoza's network. Each principle will be applied to both the specifications of the existing network and the projected network.
1. Scalability:
The network design should be scalable to accommodate the growing number of devices and users. In the existing network, the small business has fifteen desktops, seven laptops, two servers, and four BYOD devices. However, the projected network should cater to at least thirty devices. This can be achieved by implementing switches, routers, or access points that can handle a higher number of connections.
2. Redundancy:
To ensure network availability and minimize downtime, redundancy should be incorporated into the network design. This includes redundant power supplies, network cables, and network devices. In the existing network, reliance on 3G dongles for internet connectivity introduces a single point of failure. The projected network should include multiple internet connections, such as fiber or DSL, with failover capabilities to provide uninterrupted connectivity.
3. Security:
Ensuring network security is crucial to protect sensitive data and prevent unauthorized access. In the existing network, the use of USB flash drives and sharing printers via USB cables poses security risks. The projected network should implement security measures such as firewall protection, user authentication, encryption, and secure wireless networks (e.g., WPA2).
4. VLANs:
Virtual Local Area Networks (VLANs) can be utilized to segregate network traffic and improve network performance and security. In the existing network, all devices are on the same network. In the projected network, VLANs can be created to separate different departments, such as sales, finance, and administration.
5. Wireless Connectivity:
Providing wireless connectivity for visitors and employees who use laptops or mobile devices is essential. In the existing network, there is no wireless connectivity. The projected network should include wireless access points strategically placed to provide coverage throughout the premises. A guest network can be created to allow visitors to connect to the internet without accessing internal resources.
6. Quality of Service (QoS):
To prioritize network traffic and ensure critical applications receive sufficient bandwidth, implementing Quality of Service (QoS) is necessary. In the existing network, there are no QoS policies in place. The projected network should include QoS policies to prioritize printing and other business-critical applications over non-essential traffic.
7. Centralized Management:
To simplify network management and troubleshooting, a centralized management system should be implemented. In the existing network, there is no centralized management. The projected network should include a network management system that allows easy configuration, monitoring, and updating of network devices.
8. Network Segmentation:
To enhance security and reduce the impact of potential breaches, network segmentation should be implemented. In the existing network, all devices are connected to the same network. The projected network should include network segmentation to separate devices with different security requirements, such as servers, laptops, and BYOD devices.
9. VPN (Virtual Private Network):
To enable secure remote access to the network, implementing a VPN is necessary. In the existing network, there is no VPN capability. The projected network should include a VPN solution to allow employees or Mr. Khoza to securely access the network from remote locations.
10. Data Backup and Recovery:
Implementing a robust backup and recovery solution is essential to protect critical business data. In the existing network, there is no mention of data backup practices. The projected network should include regular backup schedules, offsite backup storage, and a disaster recovery plan.
Conclusion:
In conclusion, designing a secure and cost-effective network for Mr. Khoza's small business requires considering principles such as scalability, redundancy, security measures, VLANs, wireless connectivity, QoS, centralized management, network segmentation, VPN, and data backup and recovery. By adhering to these principles and applying them to both the existing and projected network, the network designer can ensure a reliable and efficient network for Mr. Khoza's business.