Name Professor Course Date Mister Network Engineer This assignment will utilize the network diagram below by incorporating the devices that are on the lower right so as to come up with a secure corporate network. There are various devices that would have to be incorporated in this network diagram so as to attain our objective and they include: vulnerability scanner ftp server web server anti-virus server (server-based/client-based) intrusion detection system (IDS) aunthetification server and Web proxy. Figure 1. The given Network Diagram Figure 2. The completed Network Diagram Cisco’s ASA 5585-X is the firewalls that have been used in this network infrastructure.ASA can be defined as an Adaptive Security Appliance software that plays the role of supporting layers 3 and 4 which happen to be stateful firewall inspection features that include Network Adress Translation(NAT) and access control.Two hardware blades that are in a single 2RU chassis are supported by able to provide unique IP addresses to each device. They offer port security Web based authentication They offer protection against DHCP snooping Carry out dynamic ARP Inspection Servers They offer a stable platform for the development of applications Provision of full file and disk level encryption They are protected against virus and spam They provide integrated firewall features Windows based workstations They provide active firewall profiles. They offer enhanced control and security features They have a built-in protection from spyware malware or viruses Consist of safe wireless networking features Offer Bit Locker drive encryption Works Cited Introduction to Computer and Network Security. (2013). Network Security 2013(11) 4. doi:10.1016/s1353-4858(13)70124-7 Lin Yonghua et al. "Wireless network cloud: Architecture and system requirements." IBM Journal of Research and Development 54.1 (2010): 4-1. Newman Mark. Networks: an introduction. Oxford university press 2010. Tanenbaum A. & Wetherall D. (2011). Computer networks. Boston: Pearson Prentice Hall. [...]
• Using the network diagram attached incorporate into the diagram the devices on the lower right to create a secure corporate network. The devices you must incorporate into the network diagram include: Web server, ftp server, vulnerability scanner, anti-virus server (client-based / server-based), Web proxy, intrusion detection system (IDS), and authentication server. Note: All client-based / server-based devices work where a client is installed on a workstation, which has bidirectional communication with a corresponding server. Write a paper in which you: 1. Determine which devices you will use for both the current network diagram infrastructure consisting of firewalls, routers, and workstations as well as the device(s) you need to incorporate. Include the following for each: 1. Make or vendor’s name (e.g., Microsoft, Redhat, Cisco, Juniper, Netgear, 3Com, etc.) 2. Model (e.g., Windows 7, ASA 5500, Cisco 3500, Squid, etc.) 3. IP address assigned to all devices 2. Establish the configuration for each device in which you: 1. Research each of the devices you chose and provide a basic configuration you would use in your network. 2. Use IP addresses to describe your configuration. 3. Explain the impact that each of your configurations has on the security of the entire network. 4. Highlight at least five (5) security features for each device, including devices in network diagram. 3. Using Microsoft Visio or its open source alternative, create a final network diagram that incorporates all devices into the existing network and ensures the following: 1. VPN sessions (from laptop) are only allowed to access the desktops in the IT department by IT department employees. 2. All VPN connections from the Internet cloud into the corporate network terminate at the VPN server. 3. Users from Engineering and Finance and Accounting CANNOT communicate. 4. Vulnerability scans occur daily in which all desktops are scanned at least once per day. 4. Use at least four (4) quality resources in this assignment. Note: Wikipedia and similar websites do not qualify as quality resources. 5. Include charts or diagrams created in Visio or an equivalent such as Dia. The completed diagrams / charts must be imported into the Word document before the paper is submitted. The specific course learning outcomes associated with this assignment are: • Design a secure network to address a business problem. • Use technology and information resources to research issues in network security design. • Write clearly and concisely about Advanced Network Security Design topics using proper writing mechanics and technical style conventions.