1 / 11

Designing an enterprise network with minimal investment

Designing an enterprise network with minimal investment. Devassy Jose Tharakan PMP,ITIL,VCA dev.jos@gmail.com. Minimal CAPEX and OPEX . CAPEX – Capital Expenditure Your initial investment OPEX – Operational Expenditure Your Operational Expenses.

verne
Download Presentation

Designing an enterprise network with minimal investment

An Image/Link below is provided (as is) to download presentation Download Policy: Content on the Website is provided to you AS IS for your information and personal use and may not be sold / licensed / shared on other websites without getting consent from its author. Content is provided to you AS IS for your information and personal use only. Download presentation by click this link. While downloading, if for some reason you are not able to download a presentation, the publisher may have deleted the file from their server. During download, if you can't get a presentation, the file might be deleted by the publisher.

E N D

Presentation Transcript

  1. Designing an enterprise network with minimal investment Devassy Jose Tharakan PMP,ITIL,VCA dev.jos@gmail.com

  2. Minimal CAPEX and OPEX • CAPEX – Capital Expenditure • Your initial investment • OPEX – Operational Expenditure • Your Operational Expenses

  3. Major pain points for an IT Administrator • Virus Attack • Loss of data • Security issues • Bandwidth related issues • Difficult to implement policies • VPN related issues • Content filtering on web • Denying chat and games • Load balancing if multiple gateways

  4. Major considerations while designing a network • Scalability • Security(internal and external threats) • Load balancing • Easy Administration and cost of administration • Controlling users • How to release IP’s

  5. UTM for rescue • Unified Threat Management(Anti virus, Anti spam, IPS etc) • Easy to install • Easy to deploy • User authentication and enforcement of policies • Ease of administration • Remote management • DHCP lease from UTM.

  6. RouterIP:61.0.5.1/29 INT IP:192.168.0.1/24 DMZ IP: 172.16.1.1/24 EXT IP: 61.0.5.2/29 Gateway IP: 61.0.5.1 DMZ Zone Console Switch Switch Network:192.168.0.x/24 Database ServerIP:172.16.1.4Gateway: 172.16.1.1 Web ServerIP:172.16.1.2Gateway: 172.16.1.1 Mail ServerIP:172.16.1.3Gateway: 172.16.1.1 Users UTM in gateway mode Default Gateway: 192.168.0.1

  7. Advantages of the above configuration • Inter Zone data transfers are all checked by the firewall • Limits virus spreading due to presence of antivirus engine on UTM • NAT function provided by firewall • IDS and IPS • Policies can be enforced • Authentication provided through identity based security(IP or MAC)

  8. Easy to configure VPN(IPSEC – VPN) Branch Offices Corporate Head Office Branch1 UTM Appliance Branch2 Branch3 Branch…N

  9. Advantages of IPSEC VPN • Easy implementation • Avoids costly leased lines • Requires 1 static IP connection • Easy to troubleshoot

  10. Major UTM vendors • Dell Sonic wall • Cyberoam • Fortigate

  11. Thank You!

More Related