A Project Report On Installation of Campus Wide Network (Prepared in IS Department, BEL)

BHARAT ELECTRONICS GHAZIABAD

CERTIFICATION
a) ISO 9001- 2000 b) ISO 14001 c) ISO - 18001 OHSAS

Submitted by: Aman Garg

INTRANETWORKING, INFORMATION SYSTEM DEPARTMENT

(CS/11/11006)

CONTENTS
ACKNOWLEDGEMENT 2 3 4 5

1 1

1 8 4 5 4 6 CERTIFICATE

INTRANETWORKING, INFORMATION SYSTEM DEPARTMENT

PREFACE ABOUT BEL, THE ORGANIZATION HISTORY OF BHARAT ELECTRONICS LIMITED CORPORATE MOTTO, MISSION & OBJECTIVE MILESTONES AWARDS MANUFACTURING UNITS

ROTATION PROGRAM D & ER EMMCA IS

THE PROJECT CASE STUDY EPILOGUE

ACKNOWLEDGEMENT
I am very thankful to all the members of the Information System Department. Each of them was extremely co-operative and helping, without this help & guidance it would not have been possible for me to complete this project. They all have been very supportive in my work with their encouragement or criticism. I am deeply indebted to all of
3

INTRANETWORKING, INFORMATION SYSTEM DEPARTMENT

them and welcome this opportunity to benefit further from their contribution. I pay my sincere thanks to Mr. DINESH GOEL (Manager-IS) who permitted me to work in this Department and guided through the tough times. It is apt to mention that this practical experience is definitely going to enhance my knowledge.

Sincerely, Aman Garg

CERTIFICATE
Dated: JULY 6th, 2013 This is to certify that Mr. Aman Garg, a student of B.Tech (COMPUTER SCIENCE), has successfully completed his summer training in Information Systems Dept., Bharat Electronics Limited, Ghaziabad from 28TH May 2013 to 06TH July 2013. A Project titled INSTALLATION OF CAMPUS WIDE NETWORK was assigned to him. In this period he worked diligently and made valuable contribution in developing the Project. All his work is genuine and original and was timely completed.
4

INTRANETWORKING, INFORMATION SYSTEM DEPARTMENT

His conduct during the course of the training was excellent.

Mr. Dinesh Goel (Manager IS)

PROLOGUE
The four weeks industrial training is a part of 4-yr Bachelor of Technology course. Practical industrial training mainly aims at making one aware of the industrial environment, which essentially means that one gets to know the limitations, constraints as well as freedom under which an Engineer works. One also gets an opportunity to watch from close quarters that indicates Manager relation. This training mainly involves industrial and complete knowledge of designing, developing and testing of various modules recognized by the industry.

INTRANETWORKING, INFORMATION SYSTEM DEPARTMENT

BEL, THE ORGANIZATION

History of Bharat Electronics Limited
With over four decades of manufacturing experience Bharat Electronics Limited has pioneered the professional electronics movement in India. With continuous upgradation of technology, commitment to quality and constant innovation, BEL has grown into a multi product, multi unit, and multi technology company. BEL has set up impressive infrastructure and manufacturing facilities in their nine ISO certified production units around the country. BEL has also established two joint ventures - with General Electric Medical Systems, USA for X-ray tubes and Multitone, UK for paging systems and has a subsidiary company BEL Optronic Devices Limited for the manufacture of Image Intensifier tubes. BEL has nurtured itself to be known as one of the best public sector units in the nation. A peep into Bharat Electronics's Archives section, gives an idea of the progress at BEL. BEL has production units established at different parts of the country. The year of establishment and location are as follows: Year of establishment Location

INTRANETWORKING, INFORMATION SYSTEM DEPARTMENT 1954 1972 1979 1979 1984 1984 1985 1985 1986 Bangalore Ghaziabad Pune Taloja (Maharashtra) Hyderabad Panchkula (Haryana) Chennai Machhilipathnam (A.P.) Kotdwara (U.P.)

Motto Mission and Objectives

The passionate pursuit of excellence at BEL is reflected in a reputation with its customers that can be described in its motto, mission and objectives:

INTRANETWORKING, INFORMATION SYSTEM DEPARTMENT

CORPORATE MOTTO
"Quality, Technology and Innovation."

CORPORATE MISSION
To be the market leader in Defense Electronics and in other chosen fields and products.

CORPORATE OBJECTIVES
To become a customer-driven company supplying quality products at competitive prices at the expected time and providing excellent customer support. To achieve growth in the operations commensurate with the growth of professional electronics industry in the country. To generate internal resources for financing the investments required for modernization, expansion and growth for ensuring a fair return to the investor. In order to meet the nation's strategic needs, to strive for self-reliance by indigenization of materials and components. To retain the technological leadership of the company in Defense and other chosen fields of electronics through in-house Research and development as well as through Collaboration/Co-operation with Defense/National Research Laboratories, International Companies, Universities and Academic Institutions. To progressively increase overseas sales of its products and services. To create an organizational culture which encourages members of the organization to realize their full potential through continuous learning on the job and through other HRD initiatives?

Milestones in Chronological Order

Bharat Electronics Ltd has natured itself to be known as one of the best public sector units in the nation. A peep into Bharat Electronics Ltd milestones section gives an idea of the progress at Bharat Electronics Ltd.

INTRANETWORKING, INFORMATION SYSTEM DEPARTMENT YEAR 1954 1956 1961 1962 1966 1967 1968 1970 1971 1972 1974 1979 1982 1983 1985 1986 1987 1988 1989 1991 1992 1993 1994 MILESTONE Incorporation of BEL Equipment production started at Bangalore Receiving Valves Germanium Semiconductors Radars Transmitting Tubes HF & Broadcast Equipment, Silicon Semiconductor X-ray Tubes & manetrones Integrated Circuits & Hybrid micro circuits B/W TV Picture Tubes Ghaziabad Unit Pune Unit Space Electronics Division Machilipatnam Integrated with BEL Madras & Panchkula Units , Broadcast & TV , Digital Communication Equipment Division Kotdwara ,Taloza & Hyderabad Units Naval Equipment Division Central Research Laboratory Bangalore Telecom-Switching & Transmission System & Mass Mfg. Facility EMI/EMC Test Facilities & Computer Software SATCOM CRL- Ghaziabad ISO-9002 Accreditation and successively ISO-9001 Accreditation in 1996

Awards for BEL

Sl.No. Details of the Award Year

INTRANETWORKING, INFORMATION SYSTEM DEPARTMENT FICCI Award for Research in Science & Technology (for the corporate initiative of R&D) DSIR National R&D Award (for successful commercialization of Public Funded R&D) (for D&E project handled at BEL-GAD) DSIR National R&D Award (for in house R&D efforts under Electronics & Electrical Industries Sector) (for D&E projects handled at BEL-Bangalore, Machilipatnam & Ghaziabad) DSIR National R&D Award (for in house R&D efforts under Electronics Industries Sector) (for D&E Projects handled at BEL-Bangalore & Ghaziabad) DSIR National R&D Award (for successful commercialization of Public Funded R&D) (for D&E projects handled at BEL-Bangalore & Panchkula) Defense Technology Absorption Award '98 (Sponsored by DRDO) (for D&E projects handled at BEL-Hyderabad) Award for Excellence in R&D for the year 1998 (sponsored by Ministry of Information Technology, GoI) (for BEL-Ghaziabad's developments of various IFF Systems) Award for Excellence in Professional Electronics for the year 1998 (sponsored by Ministry of Information Technology, GoI) (for BEL-KOT's excellent performance in Production, R&D & its commitment to Quality & Service) Award for Contribution in areas of Defense R & D to Col. (Retd.) H. S. Shankar, Director ( R & D) for the year 2001-2002 (sponsored by Society for Defense Technologists - SODET)

1.

1990

2.

1992

3.

1993

4.

1995

5.

1998

6.

1999-2000

7.

2000-2001

8.

2000-2001

9.

2001-2002

Manufacturing Units:

10

INTRANETWORKING, INFORMATION SYSTEM DEPARTMENT

BANGALORE (KANARATAKA)
BEL started its production activities in Bangalore on 1954 with 400W high frequency (HF) transmitter and communication receiver for the Army. Since then, the Bangalore Complex has grown to specialize in communication and Radar/Sonar Systems for the Army, Navy and Air-force. BELs in-house R&D and successful tie-ups with foreign Defense companies and Indian Defense Laboratories has seen the development and production of over 300 products in Bangalore alone. The Unit has now diversified into manufacturing of electronic products for the civilian customers such as DoT, VSNL, AIR and Doordarshan, Meteorological Dept., ISRO, Police, Civil Aviation and Railways. As an aid to Electorate, the unit has developed Electronic Voting Machines that are produced at its Mass Manufacturing Facility (MMF).

GHAZIABAD (UTTER PRADESH)

The second largest Unit at Ghaziabad was set up in 1974 to manufacture special types of radar for the Air Defense Ground Environment Systems (Plan ADGES). The Unit provides Communication Systems to the Defense Forces and Microwave Communication Links to the various departments of the State and Central Govt. and other users. The Units product range included Static and Mobile Radar, Tropo scatter equipment, professional grade Antennae and Microwave components.

PUNE (MAHARASHTRA)
This Unit was started in 1979 to manufacture Image Converter Tubes. Subsequently, Magnesium Manganese-dioxide Batteries, Lithium Sulphur Batteries and X-ray Tubes/Cables were added to the product range. At the present the Laser Range Finders for the Defense services.

MACHILIPATNAM (ANDHRA PRADESH)

The Andhra Scientific Co. at Machilipatnam, manufacturing Optics/Opto-electronic equipment was integrated with BEL in 1983. The product line includes passive Night

11

INTRANETWORKING, INFORMATION SYSTEM DEPARTMENT Vision Equipment, Binoculars and Goggles, Periscopes, Gun Sights, Surgical Microscope and Optical Sights and Mussel Reference Systems for tank fire control systems. The Unit has successfully diversified to making the Surgical Microscope with zoom facilities.

PANCHKULA (HARYANA)
To cater the growing needs of Defense Communications, this Unit was established in 1985. Professional grade Radio-communication Equipment in VHF and UHF ranges entirely developed by BEL and required by the Defense services are being met from this Unit.

CHENNAI (TAMIL NADU)

In 1985, BEL established another Unit at Chennai to facilitate manufacture of Gun Control Equipment required for the integration and installation and the Vijay anta tanks. The Unit is now manufacturing Stabilizer Systems for T-72 tanks, Infantry Combat Vehicles BMP-II; Commanders Panoramic Sights & Tank Laser Sights are among others.

KOTDWARA (UTTER PRADESH)

In 1986, BEL started a unit at Kotdwara to manufacture Telecommunication Equipment for both Defense and civilian customers. Focus is being given on the requirement of the Switching Equipment.

TALOJA (MAHARASHTRA)
For the manufacture of B/W TV Glass bulbs, this plant was established in collaboration with coming, France in 1986. The Unit is now fully mobilized to manufacture 20 glass bulbs indigenously.

HYDERABAD (ANDHRA PRADESH)

To coordinate with the major Defense R&D Laboratories located in Hyderabad, DLRL, DRDL and DMRL, BEL established a Unit at Hyderabad in 1986. Force Multiplier Systems are manufactured here for the Defense

ROTATION-PROGRAMME

12

INTRANETWORKING, INFORMATION SYSTEM DEPARTMENT

The first week of the training consists of a rotational training programme comprising of a visit to different sections of the organization. Out of the various nine departments in BEL, rotational visit is done in the ones related to the streams. The trainees in groups are sent to the departments and they are to report to the D.G.M where they are told about the activities and projects being undertaken. The rotational training proves to be quite significant in getting an overview about the organization as it imparts knowledge about the basic questions like-what, how, where? The departments are allowed to be visited for two days in each department. The departments covered in the rotational training were:1. D&E or Development and Engineering

2. EMMCA or Equipment Modular Command & Control Application 3. IS or Information Systems

IS: Information System

13

INTRANETWORKING, INFORMATION SYSTEM DEPARTMENT

This department deals with the financial information of the organization. It also provides various information to organization and employee. Employee daily entry. Pay of the employee. Required list of the purchase item. Maintenance of the networking system.

This department also deals with the networking system of organization. All the data of the organization is stored here in the computer (servers). It also sees the requirement of the employee on the computers. They provide various information through intranet to the employee like E-mail Internal and co-operate office circular. Internet Net term (internal software)

IS department is responsible for BELs own homegrown manufacturing and control system called BELMAC. It comprises of almost all modules a modern ERP system but is host and dumb terminal based.

14

INTRANETWORKING, INFORMATION SYSTEM DEPARTMENT

NETWORK

THE PROJECT (INSTALLATION OF CAMPUS WIDE NETWORK)

15

INTRANETWORKING, INFORMATION SYSTEM DEPARTMENT

Aim: To plan, design, implement & establish a campus wide network. Description: A NETWORK is the mechanism that enables distributed computers and their users to communicate and share resources. A Network at its simplest is anything that enables two or more computers to communicate with each other and/or other devices. This enables users to use computers and networks to share information, collaborate on a work item, print and even communicate directly through individually addressed messages. There is need for standardization of the aspects of the network. Today, many different standards bodies are responsible for defining national and/or international standards for different aspects of information technologies, including data communications and networking. Although frequently these standard bodies either collaborate or cooperate to ensure as universal set of standards as possible, there can still be some confusion, although overwhelming effect is positive. We give below the names of some standard organizations:1. 2. 3. 4. 5. ANSI-AMERICAN NATIONAL STANDARD INSTITUTE IEEE-INSTITUTE OF ELECTRICAL & ELECTRONICS ENGINEERS ISO-INTERNATIONAL ORGANISATION FOR STANDARDIZATION IEC-INTERNATIONAL ELECTROTECHNICAL COMMISION IAB-INTERNET ARCHITECTURE BOARD

Part-I: To prepare the user nodes/workstation.

16

INTRANETWORKING, INFORMATION SYSTEM DEPARTMENT

In order to prepare and enable the client/user end workstations to become part of LAN setup it must have the following requirements: Hardware Requirements Software Requirements

Hardware Requirements To enable the client/user and workstation to become a part of LAN setup we need to fulfill following hardware requirements: Minimum 128 MB RAM (256 MB RAM recommended). A NOS (Network operating system) should be installed on the system (as recommended by Microsoft). It must support or consist of TCP/IP protocol suite. A Network Interface Card should be installed on the PCI slot in the system cabinet. e.g. Realtek RTL8139/810x Family Fast. A Network Interface Card (NIC) is a printed circuit board that is installed in a computers I/O bus. The back of the card contains a physical interface for a specific connector type. Each connector type is designed for a specific transmission media. This card provides the connectivity between a computers internal system resources and the external resources connected to the network. It embodies the logic of LANS Data Link and Physical Layers.

17

INTRANETWORKING, INFORMATION SYSTEM DEPARTMENT

Software Requirements After establishing the hardware now our next step is to install necessary software required. The software requirements are: TCP/IP protocol stack

A protocol suite is a suite of related communication protocol that offers users the mechanism and services required to communicate with other

18

INTRANETWORKING, INFORMATION SYSTEM DEPARTMENT

network connected machines. From the users perspective, the protocol stack is that what makes a network usable. It is a connection oriented protocol. It is different from UDP (User Datagram Protocol) in which the connection is not established and a data is sent in the form of packets. Data is sent in the form of packets and a connection is established between the sender and receiver. The most important function of the network protocol is to make sure that information reaches the network location .It accomplishes this task by routing packets of information to location specified by the Internet Protocol Addresses. The TCP/IP header contains two addresses: The source address that the message comes from and The destination address that it is being sent to. Because humans dont relate to strings of numbers very well computers are typically identified by names. For information to reach the address where humans wanted to be some resolution must be reached between the numerical IP address understood by the computer and the alpha numeric names given to them. To accomplish this TCP/IP relies on a group of protocols and services that represent

special advanced name and address resolution functions .These protocols and services include: DNS-Domain Name System WINS-Windows Internet Naming Services DHCP-Dynamic Host Configuration Protocol ARP-Address Resolution Protocol

In addition to these supporting protocols associated with IP/Computer name resolution, the TCP/IP protocol suite includes support for:

19

INTRANETWORKING, INFORMATION SYSTEM DEPARTMENT

Electronics Mail Transportation File And Print Services Web Browsing Network Troubleshooting

20

INTRANETWORKING, INFORMATION SYSTEM DEPARTMENT

Naming Convention Before creating the first user account a naming convention must be established. The most workable system for creating username is one that enables easy identification of the users yet is flexible enough to

21

INTRANETWORKING, INFORMATION SYSTEM DEPARTMENT

allow unique naming. A naming system that consists of either the first initial and last name or the first name and last initial are two that are workable and limit user confusion. NBP is a Name Binding Protocol contains the four basic functions: 1. Name Registration Name registration registers the unique logical name in an NBP registry database. 2. NAME LOOKUP Name Lookup is provided to a computer that requests another computers address. This request is made and resolved transparently. If the request is made using an object name NBP converts the name to a numeric address. NBP always attempt to resolve such requests by looking at the local node number. If no match is found, it broadcast a request to other internetwork, if match still can not be found, the request times out and requestor receives an error message. 3. Name Configuration Configuration request are used to verify object-address relationship. 4. Name Deletion Device on any network are periodically shut down or removed. When it happens, a name deletion request is sent, and object name-toaddressing tables are automatically updated. We below give a snapshot which confirms our point of unique name of a computer system.

22

INTRANETWORKING, INFORMATION SYSTEM DEPARTMENT

Valid IP Address

23

INTRANETWORKING, INFORMATION SYSTEM DEPARTMENT

An IP address is a 32-bit binary addressing scheme to identify networks, network devices, and network connected machines. These are strictly regulated by the Internet Network Information center (InterNIC). Although it is entirely possible for a network administrator to arbitrarily select unregistered IP address, this practice should not be condoned .Computers having such spurious IP addresses can only function properly with in the confines of their domain. There are five classes of IP addresses each defined by an alphabetic character: Class A, B, C, D and E. Each address consists of two parts: a network address and a host address. The five classes represent different compromises between the number of supportable networks and hosts. Although these networks are binary, they are normally identified with a dotted decimal style format ex: (135.65.121.6) to facilitate the human usage. The dots are used to separate the address four octants. Range of IP addresses for each class is given below: Class A 1.0.0.0 to 126.0.0.0. Class B - 128.1.0.0 to 191.256.0.0. Class C 192.0.1.0 to 223.255.254.0. Class D - 224.0.0.0 to 239.255.255.254. Class E there is no class E address for use

on the net. We give below an example of unique IP address of a system. Here we see that the computer has 80.0.68.13 as the IP address. Theses IP addresses are provided by the protocol known as Dynamic Host Configuration Protocol (DHCP).

24

INTRANETWORKING, INFORMATION SYSTEM DEPARTMENT

PART 2: TO PREPARE A NETWORKING INFRASTRUCTURE

25

INTRANETWORKING, INFORMATION SYSTEM DEPARTMENT

To establish a networking infrastructure we have to fulfill the following requirements: Hardware Requirements Software Requirements

Hardware Requirements Some Networking Devices In the physical layer, we find the repeaters. These are analog devices that are connected to two cable segments. A signal appearing on one of them is amplified and put out on the other. Repeaters do not understand frames, packets, or headers, they understand volts. E.g. Classic Ethernet was designed to allow 4 Repeaters, in order to extend maximum cable length from 500 Mts to 2500 Mts. A Hub has a number of input lines that it joins electrically. Frame arriving on any of the lines are sent out on all the others. If two frames arrive at the same time they will collide, just as on Coaxial cable. The entire hub forms a single collision domain. All lines coming into hub must operate at same speed. Hubs unlike repeaters do not amplify signals (usually) and are designed to hold multiple line cards each with multiple inputs, otherwise differences are slight. A Bridge connects two or more LANs. When a frame arrives software in the Bridge extracts the destination address, from the frame header and looks it up in the table to see where to send the frame. For Ethernet this address is the 48 bit destination address. Like a Hub, modern Bridge has line cards, usually for 4 to 8 input lines of a certain type. A line card for Ethernet cant handle, say token ring frames because it doesnt know where to find destination address in the frame header. With a Bridge, each line is its own collision domain, in contrast to a Hub. Switches are similar to bridges in that both route on frame addresses. Main difference is that a Switch is most often used to connect individual computers.
26

INTRANETWORKING, INFORMATION SYSTEM DEPARTMENT

A Router is a device that forwards data packets along networks. A router is connected to at least two networks, commonly two LANs or WANs or a LAN and its ISP network. Routers are located at gateways, the places where two or more networks connect. Routing is a process preformed by a router which moves packets of data around the Internet. A router makes sure that a message is sent and received and is part of what makes TCP/IP such a useful protocol suite. To be able to successfully start routing a router uses headers and a forwarding table to find the destinations for packets. A router uses the ICMP protocol section of the TCP/IP protocol suite. Routers use headers and forwarding tables to determine the best path for forwarding the packets, and they use protocols such as ICMP to communicate with each other and configure the best route between any two hosts. Very little filtering of data is done through routers A network gateway is an internetworking system, a system that joins two networks together. A network gateway can be implemented completely in software, completely in hardware, or as a combination of the two. Depending on their implementation, network gateways can operate at any level of the OSI model from application protocols to low-level signaling. A Cisco router is a computer device that receives or packets to and from the Internet towards a destination called routing. A router is the essential component of networking that enables any sent data to arrive destination. forwards data in the process the computer at the right

A router (broadband router) is also a device that enables two or more computer to receive data packets from the Internet under one IP address at the same time. Remember that to be able to connect to the Internet; a computer must have an IP address unique from the rest of the computers. Therefore, every computer connected to the Internet has it own IP address. It is like having a fingerprint or ID as an access pass to be

27

INTRANETWORKING, INFORMATION SYSTEM DEPARTMENT

able to enter the web. With the presence of the router, this ? fingerprint? or ?ID? could be shared by two or more computer at the same time. In simplest form, a router makes two or more computer use the Internet at the same with one access pass.

Application Layer Transport Layer Network Layer Data link Layer Physical Layer

Application Gateway Transport Gateway Router Bridge, Switch Repeater, Hub

28

INTRANETWORKING, INFORMATION SYSTEM DEPARTMENT

Layer3 switch (Central Switch) Router 1 2 3 Chassis based switch architecture with scalable back pane bandwidth over 32 Gbps. Multi-layer switching performance over 15 Million pps (64 Byte). Should support voice and data integration on the same switch to provide a single platform for running a multiservice network. Should provide for capability to integrate VoIP using IP Telephone in the campus. Should have provision to upgrade current 10BAseT/100BaseTX modules for in-line power to IP phones or should allow for the same externally. Efficient intranet multimedia and multicast support through protocol independent multicast (PIM), Internet Group Management Protocol (IGMP), and GARP Multicast Registration Protocol (GMRP) delivering end to end, scalable bandwidth for multimedia and multicast applications. Should support QoS policies enforced by using Layer 2, 3, and 4 information such as, precedence bits from IP, and 802.1p frames or layer 4 port numbers. Support for in-built protocol based Server load balancing for optimal server utilization. Support for fast Web Caching for optimal network

4 5

8 9

29

INTRANETWORKING, INFORMATION SYSTEM DEPARTMENT

10

11 12 13 14 15 16 17

18 19 20 21

22 23 24

25

utilization. Support for Web Caching Control protocol (WCCP2). Support for multiple queues with configurable thresholds employing queue management techniques like WRED, WRR, and type of service / class of service (ToS/CoS) mapping mechanism to ensure that QoS is maintained as packets traverse Layer 2 and Layer 3 boundaries. Support for wide range of IP, IPX, and IP multicast routing protocols. Support for over 32000 MAC addresses. IEEE 802.1Q, 802.1p, 802.3x Ethernet: IEEE 802.3u, 100Base TX, 100Base FX. Gigabit Ethernet: IEEE 802.3z. Support for hot standby redundancy on Layer 3. Support for SNMP MIB-II, 4 groups of RMON-1 (RFC 2819) on each ports and RMON-2 (RFC 2021) through external Network Analysis Module. Support for SMON Switch monitoring. Support for IEEE 802.1D Spanning-Tree Protocol instance per VLAN preferred. Modular architecture for quick replacement of faulty modules. Redundancy and fault tolerance : o Requirement for redundant switching matrix / Supervisory / Controller in central switch. o Requirements for supporting redundant, load sharing and hot pluggable power supply. o Requirement for Redundant Supervisory and Management module. o Requirement for Redundant System clocks. o Requirement for Redundant Fan modules. Requirement for hot swappable I/O modules. Support for over 4000 VLANs. Security: Switch to support Secure Port filtering, TACACs+ and IP permit lists, dynamic ACLs and MD5 Route authentication shall be preferred. If the same is offered by connecting an external device, then it is to be indicated. Port requirement : o Gigabit Ethernet provision for over 40 ports. o Fast Ethernet 48 ports 10 BaseT / 100 BaseTX. Option to enhance port count to over 200, should be able to support inline power if required. o WAN ports support option for T1/E1, T3/E3, HSSI, ATM, and POS in the same chassis for future
30

INTRANETWORKING, INFORMATION SYSTEM DEPARTMENT

upgradeability. o Voice support using FXS (at least 48 ports in the same chassis), E1. 26 Single TFTP download for entire chassis for the purpose of upgrade of Switch S/W. 27 Advanced diagnostic support for troubleshooting requirements.

Layer 2 Switches (Distribution Switches) 1 2 3 4 5 6 7 8 9 24/48 port 10Base T/100Base TX ports with full-duplex operation and auto sensing on each switched 10/100 port. Modular field replaceable Gigabit modules support SX, LX, LH and ZX (extended reach over 70km) capability. Over 10 Gbps aggregate switching fabric. Over 8 Million pps forwarding rate. Support for at least 16 MB DRAM and 4 MB of Flash Memory. Dual priority forwarding queues on each 10/100 and Gigabit Ethernet port with support for 802.1p. Bandwidth aggregation over 10/100 and Gigabit Ethernet up to 4 Gbps. Per port broadcast storm protection. Support for 4 groups of RMON History, statistics, alarms, and events on board. Support for 9 groups by using external analyzer through use of SPAN (Switch Port Analyzer). Support for NTP (Network Time Protocol). 8192 MAC Addresses. 802.1Q VLAN configuration on all ports. Support for IEEE 802.1D Spanning Tree Protocol instance per VLAN preferred. Please indicate. IEEE 802.1p ready. Must provide two priority queues on 10/100 ports and 8 priority queues on Gigabit Ethernet ports allowing users to prioritize data packets. Support for 802.3x full duplex on all ports. Support for switches to be stacked or clustered and manageable
31

10 11 12 13 14

15 16

INTRANETWORKING, INFORMATION SYSTEM DEPARTMENT

using a single IP address. 17 Support for up to 250 port based VLANs. 18 Bandwidth aggregation support for Inter-switch links. 19 Imbedded web based Network Management Software to configure and manage all stacked/clustered switches. Quote for external HTTP server in case it is required. 20 Support for SNMP MIB II, SNMP MIB extensions, Bridging MIB (RFC 1493). 21 Support for Telnet and Command Line Management. 22 Support for IP multicast. 23 Multifunction LEDs per port for port status, half-duplex/fullduplex, and 10BaseT/100BaseT indication as well as switch-level status LEDs for system, RPS, and bandwidth utilization.

Access Switches 1 2 3 4 5 Support for at least 8 ports of 10BaseT/100BaseTX working simultaneously is required. Support for Auto-sensing and Auto-negotiation on each port. Support for Web-based network management in addition to regular management using SNMP. Support for at least 4 port-based VLANs. Internal power supply is required.

HUB Specifications 1 2 3 4 5 6 16 port of 10 Mbps each. Unmanaged and standalone. One AUI port. Inbuilt power supply. 19 Rack Mounted. Front LED for Status and Link.

Following Minimum Configuration required with above parameters. 1. 2. 3. . 4. Minimum 9 Slot Chassis Supervisory / Controller Module Min. 10 Gigabit Ports Redundant Supervisory / Controller Module
32

1 Nos. 1 Nos. 8 Nos. 1000 BaseSX & 2 Nos 1000 BaseLX. 1 Nos

INTRANETWORKING, INFORMATION SYSTEM DEPARTMENT

5. Redundant Power Supply 6. 1 Port QC-12 Uplink Module 7. 36 / 48 Port 10/100 BaseTX Module

1 Nos. 1 Nos. 1 Nos.

UTP Cabling Specifications 1 Enhanced CAT-5 cable (4 pair) comply with ISO/IEC ISO 11801 ANSI/TIA/EIA/568 A/B should preferably be tested and verified to exceed the draft TIA specifications for 1000Base T (Gigabit Ethernet) CMR rated UL verified UL listed Minimal delay skew < 8 ns Electrical characteristics: Impedance 100 15 from 1MHz to 350 MHz DC Resistance 28.6 / 305m Max Resistance unbalance 5% max Physical characteristics Conductor: solid copper Conductor diameter: 0.511 0.005 mm Insulation: polyolefin Insulation thickness: 0.125 0.03 mm Jacket: PVC Outer diameter: 5.1 0.4 mm Max Temperature: 75 0C Comply with TIA/EIA/568 A/B
33

Enhanced

INTRANETWORKING, INFORMATION SYSTEM DEPARTMENT

CAT-5 UTP Information Outlets

Patch Cord (Enhanced CAT-5) 7 ft 3 ft

Angled Socket High Durability RJ45 Interface Mechanical Termination Tools: Krone (BT Inserter Wire 2A)/11 IDC terminals: Suitable for 0.4 mm 0.6 mm solid or stranded cable, max D.1.5 mm Two wires may be terminated for Daisy chain applications 25 re terminals possible. RJ45 Connector: Body material UL 94VO Thermoplastic, suitable for minimum 1000 mating cycles Connector composition: 1.25 mm gold over 2.5 mm nickel over phosphor bronze Electrical DC Resistance: 20 m or less DC Resistance Imbalance: 2.0 m or less Insulation Resistance: >100 M Attenuation (dB) @1 MHz 0.0121 or better @16 MHz 0.0193 or better @100 MHz 0.1052 or better Near End Crosstalk @1 MHz 84.26 or better @16 MHz 60.03 or better @100 MHz 42.32 or better Return Loss (dB) @1 MHz 51.26 or better @16 MHz 36.99 or better @100 MHz 18.06 or better Comply with TIA/EIA/568 A/B UTP / RJ45 Patch cords 4 Pair cable assembly that is fully compatible with voice, data and video applications Constructed of stranded UTP cable for maximum flexibility and integrity Built in strain relief on connectors(Boots) Mechanical Specifications Cable Gauge: 24 AWG stranded copper wire pair count:
34

INTRANETWORKING, INFORMATION SYSTEM DEPARTMENT

Jack panels / patch panels (Enhanced CAT-5) Wall mount racks 12 U

6 7

Floor mount rack 42 U PVC channel casing & capping

4 pairs individually color coded Sequence Wiring sequence in 568 A and 568 B available Lengths: 0.3m; 0.6mm; 1.0mm; 1.5mm; 2.0mm; 3.0mm; 4.5mm; 5.0mm; 6.0mm; 7.0mm; 8.0mm; 9.0mm; 10.0mm; Temperature range: -40 0C to 60 0C Crimping Plug Housing: natural polycarbonate UL 94V-2 Contract Material: Phosphor Bronze Contact Plating: 1.25mm gold over 2.5mm Nickel Cable to Plug Tensile strengths: 7.71 kg min Electrical characteristics Cable TIA/EIA category 5 LAN Performance ETL verified DC resistance per lead 0.085 /m nominal DC resistance unbalanced 3% nominal Nominal mutual capacitance 49.6 pF/m Characteristic Impedance 100 (15 % from 1 to 100MHz) ACA Approval Comply with TIA/EIA/568 A/B Capable accommodating 22-26 AWG solid/standard wires along with cable management clamps on rear and front side Capable of mounting on 19 rack Single/Double section rack 600 mm wide X 500 mm deep Rigid frame which can be fixed to the wall Adjustable 19 rails in the front Fixed mounting rails in the rear Top & Bottom cable entry facility Front section with glass door Load rating 40 KG Material made of steel & power coated Steel door & glass door trims to be powder coated With 800 mm deep Front Glass Door and back Steel Door ISI make Standard class A PVC channel PVC channel used should have 25% free space to accommodate the further requirements
35

INTRANETWORKING, INFORMATION SYSTEM DEPARTMENT

8 9

GI pipe Information outlet

The PVC channel with casing & capping should be fired & cold/alkali retardant and rodent proof Class B type ISI Make EN 60603 7 (IEC 603 7) and EN 28877 (ISO 8877) 8 positions modular MGS 200 connector and of the insulation displacement type Capable of receiving of 24 AWG solid and stranded wires Should be either surface or flush mounted, single or dual sockets

Software Requirements

DNS Servers

36

INTRANETWORKING, INFORMATION SYSTEM DEPARTMENT

DNS servers called name servers manage portion of a hierarchical namespace-a group of related objects contained within a small subset of the realm of the network. The entire namespaces hierarchical to allow for the unique identification by name of every system attached to the connected networks and registered in database maintained by name servers. The DNS hierarchy is divided into domains or zones that form an inverted tree that starts at the route and branches downward
37

INTRANETWORKING, INFORMATION SYSTEM DEPARTMENT

through independently managed domains. Authority to manage host name-to-IP address mappings within a domain is delegated by an administrator of a domain holding a position in the hierarchy directly above the domain. Any given name server knows only about the domains its directly responsible for managing as well as the name servers for any domains directly above and below its managed domains in the DNS hierarchy. System that are represented by entries in a domain database on a name server can be uniquely identified with in the DNS hierarchy using a combination of host name and domain name for e.g.: if a system has a host name of SNOOPY with in the domain base for foo.bar.com, it can be contacted by a client system outside the domain using the name snoopy.foo.bar.com, as long as the client system resolves names with the name server with the same hierarchy. This combination of host name and domain name is sometimes referred to as an FQDN (Fully Qualified Domain Name).

Remote Access Server (RAS) Remote access is the ability to get access to a computer or a network from a remote distance. In corporations, people at branch offices, telecommuters, and people who are traveling may need access to the corporation's network. Home users get access to the Internet through remote access to an Internet service provider (ISP). Dial-up connection through desktop, notebook, or handheld computer modem over regular telephone lines is a common method of remote access. Remote access is also possible using a dedicated line between a computer or a remote local area network and the "central" or main
38

INTRANETWORKING, INFORMATION SYSTEM DEPARTMENT

corporate local area network. A dedicated line is more expensive and less flexible but offers faster data rates. Integrated Services Digital Network (ISDN) is a common method of remote access from branch offices since it combines dial-up with faster data rates. Wireless, cable modem, and Digital Subscriber Line (DSL) technologies offer other possibilities for remote access. A server that is dedicated to handling users that is not on a LAN but need remote access to it. A remote access server is the computer and associated software that is set up to handle users seeking access to network remotely. Sometimes called a communication server, a remote access server usually includes or is associated with a firewall server to ensure security and a router that can forward the remote access request to another part of the corporate network. A remote access server may include or work with a modem pool manager so that a small group of modems can be shared among a large number of intermittently present remote access users. A remote access server may also be used as part of a virtual private network (VPN). ePolicy Orchestrator (EPO) ePolicy Orchestrator is a security management solution that gives you a coordinated defense against malicious threats and attacks. As your central hub, you can keep protection up to date; configure and enforce protection policies; and monitor security status from one centralized console. Benefits: 1 Enforces compliance and updates 2 ePolicy Orchestrator lets you effectively manage policy compliance and updates; 3 You lower the risk of noncompliant systems compromising your security Comprehensive security management 4 Handle all your enterprise-wide system protection with this centralized management infrastructure. 5 It covers anti-virus, anti-spy ware, host IPS, content filtering, and Microsoft patch assessment Find non-compliant systems 6 It helps you identify noncompliant systems that increase your risk of vulnerability and infection Assesses Microsoft patch compliance 7 You can assess Microsoft patch compliance and audit your current patch rollout processes; it informs you about your exposure to new exploits and vulnerabilities Monitors security all
39

INTRANETWORKING, INFORMATION SYSTEM DEPARTMENT

day, every day You can monitor security status 24/7, evaluate your policy status, and find your network's vulnerabilities from one centralized

Features: 1 Noncompliant system detection 2 ePolicy Orchestrator lowers your risks due to noncompliant systems by alerting you when such systems are connected to your corporate network Patch compliance and reporting 3 ePolicy Orchestrator lets you search for a file, service, registry key, or specific Microsoft patch; you can monitor the compliance by viewing detailed graphical reports Virus tracking and notification 4 It tracks new anti-virus security updates every hour and deploys them to appropriate systems without your intervention Automatic and fast global updating 5 Updates are distributed efficiently and quickly, so that you can respond to new and emerging threats more quickly 6 McAfee ePolicy Orchestrator delivers a coordinated, proactive defense against malicious threats and attacks. As a central hub for system security, you work through a single console to keep protection up to date, enforce protection policies, and lower the risk of infection and vulnerability due to noncompliant systems. 7 ePolicy Orchestrator enforces compliance and updates. It enables your administrators to handle enterprise-wide protection using anti-virus, anti-spy ware, system firewalls, host IPS, and content filtering. It will also check for critical Microsoft security patches, and pinpoint a virus source and take remedial action.

Mail Server A host server which holds e-mail messages for clients. The client (the program you use to get your e-mail) connects to the mail server and retrieves any messages that are waiting for you. The computers at your ISP that handle email coming into your account as well as all the email you send out. A mail transfer agent or MTA (also called a mail server, or a mail exchange server in the context of the Domain Name System) is a computer program or software agent which transfers electronic mail messages from one computer to another.

40

INTRANETWORKING, INFORMATION SYSTEM DEPARTMENT

Dynamic Host Configuration Protocol (DHCP) It is a client server networking protocol. The Dynamic Host Configuration Protocol (DHCP) is a protocol that automates the assignment of IP addresses; subnet masks default routers, and other IP parameters. The assignment usually occurs when the DHCP configured machine boots up, or regains connectivity to the network. The DHCP client sends out a query requesting a response from a DHCP server on the locally attached network. The DHCP server then replies to the client PC with its assigned IP address, subnet mask, DNS server and default gateway information. The assignment of the IP address usually expires after a predetermined period of time, at which point the DHCP client and server renegotiate a new IP address from the server's predefined pool of addresses. Configuring firewall rules to accommodate access from machines who receive their IP addresses via DHCP is therefore more difficult because the remote IP address will vary from time to time. You'll probably have to allow access for the entire remote DHCP subnet for a particular TCP/UDP port. Most home router/firewalls are configured in the factory to be DHCP servers for your home network. DHCP operations fall into four basic phases. These phases are IP lease request, IP lease offer, IP lease selection, and IP lease acknowledgement. IP Lease Request -- Whenever a computer comes on line, it checks to see if it currently has an IP address leased. If it doesn't, it requests a lease from a DHCP server. Because the client computer doesn't know the address of a DHCP server, it uses 0.0.0.0 as its own IP address and 255.255.255.255 as the destination address. Doing so allows the client to broadcast a DHCPDISCOVER message across the network. Such a message consists of the client computer's Media Access Control (MAC) address (the hardware address built into the network card) and its NetBIOS name. IP Lease Offer -- When a DHCP server receives an IP lease request from a client, it extends an IP lease offer. This is done by reserving an IP address for the client and broadcasting a DHCPOFFER message across the network. This message contains the client's MAC address, followed by the IP address that the server is offering, the subnet mask, the lease duration, and the IP address of the DHCP server making the offer. IP Lease Selection -- When the client PC receives an IP lease offer, it must tell all the other DHCP servers that it has accepted an offer. To do this, the client broadcasts a DHCPREQUEST message containing the
41

INTRANETWORKING, INFORMATION SYSTEM DEPARTMENT

IP address of the server that made the offer. When the other DHCP servers receive this message, they withdraw any offers that they might have made to the client. They then return the address that they had reserved for the client back to the pool of valid addresses that they can offer to another computer. Any number of DHCP servers can respond to an IP lease request, but the client can only accept one offer per network interface card. IP Lease Acknowledgement -- When the DHCP server receives the DHCPREQUEST message from the client, it initiates the final phase of the configuration process. This acknowledgement phase involves sending a DHCPACK packet to the client. This packet includes the lease duration and any other configuration information that the client might have requested. At this point, the TCP/IP configuration process is complete.

CASE STUDY
We have defined all the networking aspects theoretically and than we have used our concepts practically i.e. we have established a network consisting of 100 nodes (approx.). For our objective first of all we enabled each computer system with: An NIC (Network Interface Card). The network Interface Card is designed for specific IP addresses. We have loaded a network recommended operating system in all the systems.

42

INTRANETWORKING, INFORMATION SYSTEM DEPARTMENT

We fulfilled the RAM requirement for a system. UTP Cable (Unshielded Twisted Pair). Fiber Optics Cable I/O box Switches Rack

These all were the hardware requirements. After the hardware requirements, we come to software

requirements which are:Assigning of IP address by DNS (Domain Name System) or DHCP (Data Host Configuration Protocol). Each Computer is assigned a specific Name so that it can be easily identified on the network. We divided all the computers in different group, and assigned each group a specific WORKGROUP name. We used TCP/IP protocol suit to enable the transfer of date. We made Enterprise Level Anti Virus Solution to test the different modules.

EPILOGUE
I have finished the industrial training scheduled in Bharat Electronics Limited and I am very thankful to the employees of HRD department and Systems department for letting access all the means under their control which were necessary for fulfillment of the training and lending a helping hand in tough times. I would say that I had a wonderful experience in BEL and wish for the progress of the company to reach greater heights. I was involved in a project along with 2 other unpaid trainees (upts), this actually helped me understand the aspects of teamwork and how a team should go about a project in a methodical and planned manner.

43

INTRANETWORKING, INFORMATION SYSTEM DEPARTMENT

On a personal and a moral front I have understood that one should always enjoy the work he is doing and only then one can actually be successful, another lesson is that no matter how senior an employee you are there will always be someone who needs your guidance and help, and also consequently there will always be someone from whom you can learn and gain something, so never be shy or egoistic in doing so. And last but not the least aspect is that there is no substitute to hardwork, be that from catching the bus at 7:30 in the morning to reach the workplace or at the work in the office, so hats off to my parents and employees who have been doing this for a long time to earn their living and feeding us.

44