CT6034 Advanced Networking & Security Assignment Brief | UoG

CT6034 Assignment Brief

1. The requirements for the assessment 

A car dealership has established its Corporate Headquarter in Cheltenham and expanded operations to branches in Oxford and Dubai.

With rapid expansion, network security has become a major concern for the company. The car dealership’ management has contracted your consultancy team to design, configure a secure, scalable enterprise network to ensure confidentiality, integrity, and availability of business operations.

Your solution must allow secure communication between HQ and branches. The network should also support secure internal communication, enforce access restrictions, and ensure reliable wireless and wired connectivity for employees.

You are required to

• Design, configure, and test the secure network using Cisco Packet Tracer. (Do not use the same design for all branches).
• Submit the Packet Tracer file on Moodle.

1. Authentication and Access Control

• Configure AAA authentication using the local database.
• Apply Access Control Lists (ACLs) to regulate inbound/outbound traffic.

2. Secure Network Management

• SSH for encrypted access.
• Syslog for centralised logging.
• Apply these services on the ASA firewall.

3. Firewall and VPN Configuration

• Implement a minimum 3-zone based firewall: Public, Private, and DMZ.
• Configure a Zone-Based Policy Firewall (ZPF)
• Implement NAT and PAT for internal/external access.
• Configure static and dynamic routing across all sites.
• Establish site-to-site IPsec VPN tunnels between HQ ↔ Dubai

4. Switch and Wireless Security

• Implement Layer 2 and Layer 3 security features.
• Deploy a wireless router and access point for the Admin, Configure wireless security.

5. Network Services

• Configure DHCP services to dynamically allocate IP addresses to internal clients in the Dubai branch.
• Assign static IP addressing at HQ, Oxford and Dubai.

Each branch in your design should include the following:

• At least 1 router per branch.
• At least 1 ASA firewall per branch for network security.
• A minimum of 3 switches, with both Layer 2 and Layer 3 switches being compulsory.
• A minimum of 10 computers for employees and operations.
• A minimum of 2 servers as needed by the branch.
• Connectivity between the branches via the internet.

Evaluation and Marking 

Pack tracer file (Network Topology configuration):

• Topology design (15%)
• Configure firewall (30% each zone 10%)
• Site to site VPN (10%)
• Dynamic and static routing (10%)
• Wireless security (10%)
• Vlan and Switch Security (15%)
• Configure servers (10%)

2. Assessment Q & A:

Can I have an extension? Module tutors cannot grant extensions. In the first instance, go on to student records to self-administer an extension. Anything beyond that you would need to get in touch with the Student Centres.

What happens if I submit late?

• Up to 24 hours late – 10-point deduction on the percentage mark being applied to the original mark, until or unless the percentage mark reaches the published pass mark.
• Between 24 hours and seven days late – maximum mark of 40% (or published module pass mark)
• More than seven days late – mark of 0% and recorded as a non-submission

What happens if I submit the wrong file? Mark is 1%. Fail but with entitlement to reassessment.

What happens If I fail an assessment? If you submit an assessment and achieve between 1-39 you will be entitled to a reassessment (which will appear on this page when and if applicable). However, if you do not submit anything for your assessment, you will not be entitled to a reassessment.

3. Arrangements for Submission 

Your assessment will be submitted online via Moodle. Please name the files you are submitting using the convention:

MODULE CODE_ASSESSMENT NUMBER (if more than one) STUDENT NUMBER (plus _FILE NUMBER if more than one file is being submitted)

Please ensure you do not use special characters (e.g. brackets, commas, speech marks, question marks, etc.) in the file name.

The Maximum file size for uploading is 100MB.

This assessment will be marked anonymously. This means Moodle will hide student identities from the marker during the marking process. To protect this anonymity, please do not incorporate your personal details, including your name, initials and email anywhere within the actual assignment or its file name.

Please also be aware that if you take an extension, it may not be possible for your work to be marked anonymously. This is because the technology reveals all student identities to the marker on the standard feedback return date, but your assignment might be marked after this.

Answer

Request Answer of this Assignment