8/7/2019 Final reprot COMSATS
1/61
Case Study of COMSATS Internet Service Providers
By:
Muhammad Osama RazaRii-12-1354
Rizwan ArifRii-13-1375
Zohaib MukhtarRii-12-1345
Submitted To:Sir Khurram Javed
Faculty of ComputingRiphah International University, Islamabad
Spring 2010
Page 1 of61
8/7/2019 Final reprot COMSATS
2/61
Dedication
We dedicate our project our Parentswhose support are always there inour life. And to all the teachers whoever taught us, due to their hardwork we are able to do that.
Page 2 of61
8/7/2019 Final reprot COMSATS
3/61
Acknowledgement
First of all we are thankful to Allah Almighty the Merciful, the
Beneficent and the source of all Knowledge, for granting us the
courage and knowledge to complete this Project.
Here I take the opportunity to acknowledge the cooperation of our
teachers who guide us through the completion of that project.
We are especially thankful to Mr.Shaukat Hussain (Sr.Corporate Sales
Executive) and Mr.Umar Ali (Dept. Director Communications) ofCOMSATS Internet Service Providers Islamabad, without their kind
cooperation we would not be able to complete that project.
_______________
Muhammad Osama Raza
Rii-12-1354
______________
Rizwan Arif
Rii-13-1375
______________
Zohaib Mukhtar
Rii-12-1345
Page 3 of61
8/7/2019 Final reprot COMSATS
4/61
Table of Contents
Introduction.51. Front
End
.6
1.1Services provided by our
ISP6
1.2Technologies offered by the
ISP6
1.3Comparative
rates
..9
1.4User
Equipment
14
1.5Technical
overview
.14
1.6Data rates , Pros &cons..
18
1.7Promotions &
Packages
19
2. Local
LAN24
2.1 Infrastructure
MAP
.24
Page 4 of61
8/7/2019 Final reprot COMSATS
5/61
2.2 Description
25
2.3 Local
switch28
2.4 Local
Infrastructure
..29
2.5 Servers Functionalities &
statics32
2.6 Other
Servers
36
3. Back Bone37
3.1 LAN ISP37
3.1.1. Firewall37
3.1.2. Features.......37
3.2 Router Gateway39
3.3 Backbone..........41
4. Other Information.42
4.1 Switches used by ISP.42
4.2 Router used by ISP 44
5. Appendix A......47
6. Appendix B..48
7. Appendix C..49
8. Appendix D..50
9- Appendix E..58
Introduction of ISP
Page 5 of61
8/7/2019 Final reprot COMSATS
6/61
COMSATS is an International, Inter-Governmental Organization, aiming atsocio-economic uplift of the third world through useful applications of scienceand technology. COMSATS has number of technical and scientific projectsincluding COMSATS Internet Services (CIS) for providing Internet servicesand COMSATS Institute of Information Technology (CIIT) a degree awardinguniversity having campuses at Islamabad, Lahore, Wah and Abbotabad.
COMSATS Internet Services (CIS) is one of the leading Internet Serviceproviders in Pakistan. CIS provides variety of Internet access servicesranging from dial up, leased lines and Broadband connectivity through DSL
and Radio-Links to value added services to corporate and residential users.
CIS started its operation in 1996 and is pioneer in launching InternetBackbone on multi-city basis in the country and is now successfully operatingin 12 major cities of Pakistan and providing Internet products and services tothe people of Pakistan. CIS employs 200 people in its countryside networkincluding trained and qualified system administrators, Networking andCommunication engineers, Software designers and engineers, Webdevelopers, marketing, sales and customer support executives.
There specialty in LAN & WAN connectivity gives them an edge over our
competitors. The Sun, Microsoft, Intel, Compaq and Cisco Systems certifiedengineers are constantly engaged in enhancing our network capabilities. Theinternational connectivity to US multiple Tier-1 IP backbones by submarinecable makes CIS the largest Internet Service Provider of Pakistan.Furthermore, CIS network operations centers are equipped with the Systemsand machines from World class vendors like SUN, CISCO Systems andCompaq. CIS has the fiber backbone terminated at NOC Islamabad.
CIS clients include reputed national and international organizations andcompanies; technology and business companies, foreign missions,
consulates and embassies, NGOs, social development and researchorganizations coupled with good percentage of residential users. Till date CIShas in its list 65,000 customers.
1-Front End
Page 6 of61
8/7/2019 Final reprot COMSATS
7/61
1.1 Services Provided by our ISP
Dial up
ISDN
DSL
Wireless Domain & Hosting
Video conferencing
1.2 Technologies offered by the ISP
Dial-up
ISDN
DSL Wireless
Video Conferencing
Explanation
Dial-up
Dial-up access is a form of Internet access through which the client uses amodem connected to a computer and a telephone line to dial into an Internet
Service Provider's (ISP) node to establish a modem to modem link, which isthen routed to the Internet.Dial-up requires time to establish a telephone connection and performhandshaking before data transfers can take place, potentially a source offrustration. In locales with telephone connection charges, each connectionincurs an incremental cost. If calls are time-charged, the duration of theconnection incurs costs.Dial-up access is just like a phone connection, except that the parties at thetwo ends are computer devices rather than people. Because dial-up accessuses normal telephone lines, the quality of the connection is not always goodand data rates are limited. The maximum data rate with dial-up access was
56 Kbps (56,000 bits per second).
ISDNIntegrated Services Digital Network
Page 7 of61
8/7/2019 Final reprot COMSATS
8/61
It is fully communication technology. It uses standard phone line(a copperwire pair) in a home or office and converts it from a single circuit into highspeed digital circuits capable of transmitting audio, still images, motionvideos, and text data simultaneously. ISDN service makes possible videoconferencing and other real time data intensive application on ordinary
telephone line. The key feature of ISDN is that it integrates speech and dataon the same lines, adding features that were not available in the classictelephone system. ISDN typically provides a maximum of 128 kbit/s in bothupstream and downstream directions.
DSL Digital Subscriber Line
(DSL) is a family of technologies that provides digital data
transmission over the wires of a local telephone network It is a moderntechnology that uses existing twisted pair telephone line to transport highbandwidth data such as web pages,e-mail, attachments, music files, software, online videos and other large files.DSL is available in a spectrum of speeds. Some are best for home, whileothers are designed to accommodate rigorous business demands. DSL offersunsurpassed value compared to other online access options. ADSL uses twopieces of equipment one at user end called DSL CPE(customer premisesequipment) or DSL router and other at telephone exchange end calledDSLAM(DSL access multiplexer).DSLAM is costly equipment installed by theinternet service provider.
The data throughput of consumer DSL services typically ranges from 384KB/s to 20 MB/s in the direction to the customer, depending on DSLtechnology, line conditions, and service-level implementation.
Wireless:
Wireless communication is the transfer of information over a distance withoutthe use of enhanced electrical conductors or "wires". The distances involvedmay be short or long.
Fixed wireless is an ideal technology for providing high speed internetservices to medium & large sized business subscribers within a specificgeographic area from 5 KM to 30 KM. It is a suitable technology where ISDNor DSL is not available. This technology transmits & receives datasymmetrically at licensed or unlicensed bands of frequencies. The mostcommonly used unlicensed frequency bands are 2.4 GHZ & 5.8 GHZ.Two typical configurations are used to delay broadband fixed wirelesssystem.
Page 8 of61
8/7/2019 Final reprot COMSATS
9/61
oPoint to Point Radio link
In this configuration, a radio/antenna combination at one end communication
with another radio/antenna combination. For point-to-point radio links,directional antennas are used to focus the transmitted energy in he directionof receiver and to focus antenna in the direction of transmit antenna.COMSATS is already running up successfully several radio links in Islamabad& other cities of Pakistan.
o Point to Multipoint Radio link
In this configuration, radio antenna combination at a hub communicatessimultaneously with any other radio/antenna combination. The antenna at thehub location of a point to multipoint system normally vary broad coverage,where as the antenna at subscriber\'s location may be directional. It ispossible to use more than one antenna at a hub site, both for point tomultipoint coverage to serve many subscribes & for point to Multipoint links toconnect distant subscribers.
Video Conferencing:Video conferencing is a communications technology that integrates video and voice
to connect remote users with each other as if they were in the same room. Each userneeds a computer, webcam, microphone, and broadband internet connection for
participation in video conferencing. Users see and hear each other in real-time,
allowing natural conversations not possible with voice-only communications
technology.
The core technology used in a videoconference (VC) system is digitalcompression of audio and video streams in real time. The hardware orsoftware that performs compression is called a codec (coder/decoder).Compression rates of up to 1:500 can be achieved. The resulting digitalstream of 1s and 0s is subdivided into labeled packets, which are thentransmitted through a digital network of some kind (usually ISDN or IP). Theuse of audio modems in the transmission line allow for the use of POTS, orthe Plain Old Telephone System, in some low-speed applications, such asvideo telephony, because they convert the digital pulses to/from analogwaves in the audio spectrum range.
Page 9 of61
8/7/2019 Final reprot COMSATS
10/61
The other components required for a video conferencing system include:
Video input: video camera or web cam
Video output: computer monitor , television or projector Audio input: microphones, CD/DVD player, cassette player, or any othersource of PreAmp audio outlet Audio output: usually loudspeakers associated with the display device ortelephone Data transfer: analog or digital telephone network, LAN or Internet.
1.3 Comparative rates
Dial up rates:
Dial up Basic:o No e-mail account.
o No static IP.
o No COMSATS billing.
Dial up Standard:
o Flat rate package Rs 100 per month.o Registered user name / password.
o E-mail account with 25MB quota.
o Zero COMSATS billing.
Dial up PREMIUM:
o Flat rate package with Rs 500 per month.
o E-mail account with 100MB quota.
o One static IP address.
o
Free e-mail forwarding facility.o Free e-mail alias (one)
o ZERO COMSATS billing.
Mail box quota.
Page 10 of61
8/7/2019 Final reprot COMSATS
11/61
Mail quota Price per Month. (Rs) Price per year. (Rs)
25 MB 100 1000
50 MB 150 1500
100 MB 200 2100
200 MB 250 2800500 MB 375 4000
1 GB 500 5500
2 GB 700 7500
Assigned static IP address Rs 500 per month.
E-mail forwarding Rs 200 per month per address.
E-mail Alias Rs. 50 (one time).
Scratch Cards Tariff
Rs. 10 2 hrs Night Free (2 Days Expiry)
Rs. 50 Rs.10/- hrs Night Free 12 to 7 am (10 Days Expiry)
Rs. 100 Rs.10/- hrs Night Free 12 to 9 am(20 Days Expiry)
Rs. 250 Rs.10/-hrs Night Free 12 to 9 am(25 Days Expiry)
Rs. 500 Rs.10/-hrs Night Free 12 to 9 am(30 Days Expiry)
DSL
Home user
Packages Connectivity Charges per month(Rs)
Additional100MB (Rs)
UnlimitedDownload
1 Mbpsshared.
1200 --
UnlimitedDownload
2 Mbps shared 2400 --
6 GB 512K (CIR) 1200 35
Corporate user
Page 11 of61
8/7/2019 Final reprot COMSATS
12/61
Packages Connectivity Charges per month(Rs)
Additional100MB(Rs)
8 GB 512 K 1600 35
10 GB 512 K 2400 3515 GB 512 K 3600 35
25 GB 512 K 5600 30
35 GB 768 K 7700 30
50 GB 768 K 11000 30
75 GB 768 K 16500 25
100 GB 1024 K 22000 25
Unlimited Data Transfer
S# Description Charges per monthCIR (Rs)
1 Internet charges for 128 Kbps
4000
2 Internet charges for 256 Kbps
7500
3 Internet charges for
384 Kbps
11000
4 Internet charges for 512 Kbps
14500
5 Internet charges for 768 Kbps
21000
6 Internet charges for 1024 Kbps
28500
7 Internet charges for 2048 Kbps
55000
o ADSL CPE charges: Rs. 3500
o RDSL CPE charges: Rs. 5500
ISDN:
Page 12 of61
8/7/2019 Final reprot COMSATS
13/61
ISDN 64K and 128K
Sr.
NoPackage Minimum Hrs. Rate Per Hr.
Total
Amount1 ISDN 64K 10 25/- 250/-
3 ISDN 128K 10 50/- 500/-
Volume Based High Speed ISDN Connectivity
Sr.No
Package (No Time Limit) Total Amount
1 1 GB 1500/-
2 2 GB 2800/-
3 3 GB 3500/-
Domain registration and web hosting
o Bali Package
1 free domain name .com , .net , .org only50 MB Disk Spae + FTP
10 POP3 E-Mail Accounts3 GB Data TransferWebsite StatsMysqlRs. 1950 / annum.
o Fiji Package
1 free domain name .com , .net , .org only100 MB Disk Spae + FTP15 POP3 E-Mail Accounts
Page 13 of61
8/7/2019 Final reprot COMSATS
14/61
6 GB Data TransferWebsite StatsMysql
1 Sub DomainRs 3300 / annum.
o Carrebean Package:
1 free domain name .com , .net , .org only200 MB Disk Spae + FTP
25 POP3 E-Mail Accounts12 GB Data Transfer5 MB MS SQLWebsite StatsMysql
2 Sub DomainRs 5950 / annum.
o Cancun Package:
1 free domain name .com , .net , .org only500 MB Disk Spae + FTP50 POP3 E-Mail Accounts20 GB Data Transfer15 MB MS SQL
Website StatsMysql5 Sub DomainRs 12600 / annum.
o Bermuda Package:
1 free domain name .com , .net , .org only1024 MB Disk Spae + FTP
100 POP3 E-Mail Accounts30 GB Data Transfer20 MB MS SQLWebsite StatsMysql
10 Sub DomainRs 24700 / annum.
Page 14 of61
8/7/2019 Final reprot COMSATS
15/61
1.4 User Equipment
For dial-up
Modem
DSL
Thomson Speed Touch 536 v6
Aztech DSL605E
Wireless
Zhone 6218-I2-304
Aztech DSL605EW
1.5 Technical Overview
Modem
A modem (modulator-demodulator) is a device that modulates an analogcarrier signal to encode digital information, and also demodulates such a
carrier signal to decode the transmitted information. The goal is to produce asignal that can be transmitted easily and decoded to reproduce the originaldigital data. Modems can be used over any means of transmitting analogsignals, from driven diodes to radio.Modems are generally classified by the amount of data they can send in agiven time, normally measured in bits per second (bit/s, or bps).
ISDN Installation Procedure
Customer can get new ISDN line from Telephone Company(PTCL) or convertthe existing analogue line into ISDN.Telephone company(PTCL) terminatesthe ISDN line at your office or home and provide NT-1 equipment whichserves as interface between Telephone Company and home/office ISDNequipment.After the ISDN line Installed, COMSATS internet Services configures ISDNconnection at your PC within two hours.And then you enjoy a truly digitalconnection.
Page 15 of61
8/7/2019 Final reprot COMSATS
16/61
For LAN, you need to purchase a sepearte ISDN router enabling multiplecomputers at LAN to communicate with internet backbone.
DSL
Thomson Speed Touch 536 v6
Interfaces:- LAN: 10/100Base-T (RJ45) 1 Ethernet port and 1 USB port
- WAN: ADSL line (RJ11) Dimensions: 30 X 147 X 114mm (1.18 x 5.78 x 4.48 in.) AC voltage: 100 to 120, 220 to 240 V Frequency: 50/60 Hz
Aztech DSL605E
Page 16 of61
8/7/2019 Final reprot COMSATS
17/61
o Static IP support
o Dynamic RIP routing
o Network Address Translation (NAT)
o DHCP Server/Relay/client
o DNS Relay Agent Po PPP Always on with configurable timeout
o PPP Dial on Demand
o NAT for basic Firewall support
o Platform: For Ethernet OS Independent
Zhone 6218-I2-304
o Interface
DSL Line: RJ11Ethernet: 4 Port 10/100BaseTWireless: 802.11b/g
Page 17 of61
8/7/2019 Final reprot COMSATS
18/61
ATM SupportRouting/Bridge SupportDHCP Server/Relay/ClientStatic RoutingPPP Support: PPPoA, PPPoE, PAP/CHAP authentication
NAT for Basic Firewall supportMAC Filtering
Aztech DSL605EW
Static IP, Dynamic RIP routing supportIP/TCP/UDP/ICMP/ARP/RARP Application SupportNetwork Address Translation (NAT)DHCP Server/Relay/clientDNS Relay AgentPPP Dial on DemandUniversal Plug and Play Support
IEEE 802.11, 802.11b and 802.11g compliant supportPacket Filtering Firewall SupportPassword Authentication to ModemPlatform support: For Ethernet and Wireless LAN
OS Independent
Page 18 of61
8/7/2019 Final reprot COMSATS
19/61
1.6 Data Rates, pro & cons:Data Rate: 56 kbps
Pros.
It is not costly.Good for limited use.Affordable.
Cons.
Low speed.Video chat is not possible.Phone line remains busy while internet is on.
DSL
o 512 k
o 765 k
o 1Mb
o 2Mb
Pros:
Always on, 24 hours.No busy signal and no idle time or dropped connection.50 times faster than dial up connections.High speed internet access over existing telephone line.No separate bill for voice communication.You can set up VPN (Virtual Private Network) A secureencrypted connection between a users distributed offices over apublic network.Video conference is available.Affordable.
Cons:DSL is distance sensitive.As distance from the exchange increases, signal quality andconnection speed decreases. ADSL service has maximum of18000 ft between ADSL modem and the DSLAM.
Page 19 of61
8/7/2019 Final reprot COMSATS
20/61
1.7 Promotions and packages
Dial up:
Here are some dial up packages given below.
Dial Up Basic
Dial UP Standard
DIAL UP Premium
Dial up Packages:
Dial up Basic:
No e-mail account.
No static IP. No COMSATS billing.
Dial up Standard:
Flate rate package Rs 100 per month.
Registered user name / password.
E-mail account with 25MB quota.
Zero COMSATS billing.
Dialup PREMIUM:
Flate rate package with Rs 500 per month.
E-mail account with 100MB quota.
One static IP address.
Free e-mail forwarding facility.
Free e-mail alias (one)
ZERO COMSATS billing.
Additional Mail box quota.
Mail quota Price per Month. (Rs) Price per year. (Rs)
25 MB 100 1000
50 MB 150 1500
100 MB 200 2100
Page 20 of61
8/7/2019 Final reprot COMSATS
21/61
8/7/2019 Final reprot COMSATS
22/61
Unlimited Data Transfer.
S# Description Charges per monthCIR (Rs)
1 Internet charges for 128 Kbps
4000
2 Internet charges for 256 Kbps
7500
3 Internet charges for 384 Kbps
11000
4 Internet charges for 512 Kbps
14500
5 Internet charges for 768 Kbps
21000
6 Internet charges for 1024 Kbps
28500
7 Internet charges for 2048 Kbps
55000
o ADSL CPE charges: Rs. 3500
o RDSL CPE charges: Rs. 5500
Some other features:
Free 25 MB mail quota.
24X7 technical supports.
Value added services are available for all DSL users on discountrates
Network Consultancy.
LAN WAN setup.
Bandwidth is according to package chosen with static IP.
Domain Registration and Web Hosting
Packages:There are different packages for the web hosting offered by
COMSATS. Which are given below.
Page 22 of61
8/7/2019 Final reprot COMSATS
23/61
Bali
Fiji
Carrebean
Cancun
Bermuda
Bali Package
1 free domain name .com , .net , .org only50 MB Disk Spae + FTP10 POP3 E-Mail Accounts3 GB Data TransferWebsite StatsMysql
Rs. 1950 / annum.
Fiji Package:
1 free domain name .com , .net , .org only100 MB Disk Spae + FTP15 POP3 E-Mail Accounts6 GB Data TransferWebsite StatsMysql
1 Sub DomainRs 3300 / annum.
Carrebean Package:
1 free domain name .com , .net , .org only200 MB Disk Spae + FTP
25 POP3 E-Mail Accounts12 GB Data Transfer5 MB MS SQL
Website StatsMysql2 Sub DomainRs 5950 / annum.
Cancun Package:
Page 23 of61
8/7/2019 Final reprot COMSATS
24/61
1 free domain name .com , .net , .org only500 MB Disk Spae + FTP50 POP3 E-Mail Accounts20 GB Data Transfer15 MB MS SQL
Website StatsMysql5 Sub DomainRs 12600 / annum.
Bermuda Package:
1 free domain name .com , .net , .org only1024 MB Disk Spae + FTP100 POP3 E-Mail Accounts
30 GB Data Transfer20 MB MS SQLWebsite StatsMysql
10 Sub DomainRs 24700 / annum.
Page 24 of61
8/7/2019 Final reprot COMSATS
25/61
2- Local LAN
2.1 Infrastructure map:
Page 25 of61
SubscribersLine
ATM switchDSLAM
Router
Switch
AAAServer
Router
Internet
SubscribersLine
DSLAM
RADIUS
Switch
RASUser
8/7/2019 Final reprot COMSATS
26/61
2.2 Description:
DSLAM
A DSLAM (Digital Subscriber Line Access Multiplexer) is a network device,
usually at a telephone company central office, that receives signals frommultiple customer Digital Subscriber Line (DSL) connections and puts thesignals on a high-speed backbone line using multiplexing techniques.Depending on the product, DSLAM multiplexers connect DSL lines with somecombination of asynchronous transfer mode (ATM), frame relay, or InternetProtocol networks. DSLAM enables a phone company to offer business orhomes users the fastest phone line technology (DSL) with the fastestbackbone network technology (ATM).
A DSLAM combines a group of subscribers' connections into one aggregateInternet connection.
ATM
Asynchronous Transfer Mode (ATM) is standard for connection orientednetworks which use cell relay communication, meaning that information formultiple service types, such as voice, video, or data, is packed andtransmitted in small, fixed-size cells.
It is a dedicated switching technology that transmits small packets of datausing digital switch technology. It is implemented with hardware so it can bedone faster than other methods of data transmission.
ATM is a technology of cell-switching and multiplexing that has both benefitsof circuit switching and packet switching. It also provides range of bandwidthfrom a few megabits per second (Mbps) to many gigabits per second (Gbps).
ATM uses a connection-oriented model and establishes a virtual circuitbetween two endpoints before the actual data exchange begins.
ATM Cell Basic Format
The information that transfers through ATM is packed in fixed-size units calledcells. Each cell contains 53 bytes. The first 5 bytes contain cell-headerinformation, and the remaining 48 contain the user information.
Page 26 of61
8/7/2019 Final reprot COMSATS
27/61
Voice and video types of traffic cant stand transmission delays; thereforeATMs small and fixed-length cells serve well such type of traffic.
Operation of an ATM Switch
An ATM switch has the following job:
1. Determine whether an incoming cell is eligible to be admitted to the switch
2. Possibly perform a replication step for point-to-multipoint connections.
3. Schedule the cell for transmission on a destination interface. By the time itis transmitted, a number of modifications might be made to the cell, includingthe following:
VPI and VCI
A Virtual Circuit Identifier (VCI) is a unique identifier which indicates aparticular virtual circuit on a network. It is a 16-bit field in the header of anATM cell. The VCI, together with the Virtual Path Identifier (VPI) is used toidentify the next destination of a cell as it passes through a series of ATMswitches on its way to its destination.
UNI and NNI
The UNI specification defines communications between ATM end systemssuch as workstations and routers and ATM switches in private ATM networks
The Network-Network Interface (NNI) specification defines communicationsbetween two ATM switches in a private ATM network.
A private UNI connects an ATM endpoint and private ATM switch.
A public UNI connects an ATM endpoint or private switch to a public switch.
A private NNI connects two ATM switches within the same private network.
A public NNI connects two ATM switches within the same public network.
Page 27 of61
8/7/2019 Final reprot COMSATS
28/61
RADIUS
Remote Authentication Dial In User Service (RADIUS) is a networkingprotocol that provides centralized Authentication, Authorization, andAccounting (AAA) management for computers to connect and use a network
service. RADIUS is a client/server protocol that runs in the application layer,using UDP as transport. The Remote Access Server, the Virtual PrivateNetwork server, the Network switch with port-based authentication, and theNetwork Access Server, are all gateways that control access to the network,and all have a RADIUS client component that communicates with theRADIUS server. The RADIUS server is usually a background process runningon a UNIX or Windows NT machine.
RADIUS serves three functions:
1. To authenticate users or devices before granting them access to a
network,2. To authorize those users or devices for certain network services and3. To account for usage of those services.
RAS
Remote access is the ability to get access to a computer or a network from aremote distance. Remote access is also possible using a dedicated linebetween a computer or a remote local area network and the central or main
corporate local area network remote access server is the computer andassociated software that is set up to handle users seeking access to networkremotely. A remote access server usually includes or is associated with afirewall server to ensure security and a router that can forward the remoteaccess request to another part of the corporate network. A server that isdedicated to handling users those are not on a LAN but need remote accessto it.
Page 28 of61
8/7/2019 Final reprot COMSATS
29/61
2.3 Local Switch
Zyxel-4124
Manufacturer Zyxel
Model ES-4124Type Layer 3 switch
Layer 3
Features:
Number of Ports: 24
Connectivity Media: Twisted Pair 10/100/1000Base-T
Data Transfer Rate: 10Mbps Ethernet
Performance: 12.8Gbps
Layer Support: 2 Switching
IEEE 8021.p QoS
IEEE 8021.Q VLAN
Memory: 32MB
Input Voltage: 12 V DC
Dimensions: 1.75" Height x 17.24" Width x 10.63" Depth
Weight: 8.82 lb
Backup Power System
Up to 24 switches managed by single IP address
Page 29 of61
8/7/2019 Final reprot COMSATS
30/61
2.4 Local Infrastructure:
LAN standard: 802.3Fast Ethernet
Gigabit Ethernet10 gig
Cables: CAT-5 and CAT-6
Page 30 of61
8/7/2019 Final reprot COMSATS
31/61
Description:
PIX (Private Internet Exchange)
Manufacturer: CISCO
Model:515 & 525
Cisco PIX (Private Internet exchange) is a popular IP firewall and networkaddress translation (NAT) appliance. It sits in between two networks and actslike a gateway to either of the networks.The PIX runs a custom-written proprietary operating system originally calledFinesse (Fast Internet Server Executive), but now the software is knownsimply as PIX OS. Technically the PIX would be called a Layer 4, or
Transport Layer Firewall, as its access is not restricted to Network Layerrouting, but socket based connections. By default it allows internalconnections out (outbound traffic), and only allows inbound traffic that is aresponse to a valid request or is allowed by an Access Control List (ACL).The PIX can be configured to perform many functions including networkaddress translation (NAT) and port address translation (PAT), as well asbeing a virtual private network (VPN) endpoint appliance.
AAA server
An AAA server is a server program that handles user requests for access tocomputer resources and, for an enterprise, provides authentication,authorization, and accounting (AAA) services. The AAA server typicallyinteracts with network access and gateway servers and with databases anddirectories containing user information.
Manufacturer HPModel ML-150
Processor Dual Core
Operating System LINUX
RAM 2 GB
Hard disk 80 GB- RAID 3
Page 31 of61
8/7/2019 Final reprot COMSATS
32/61
DHCP server
Dynamic Host Configuration Protocol (DHCP) is a network protocol thatenables a server to automatically assign an IP address to a computer from a
defined range of numbers.DHCP operations fall into four basic phases: IP discovery, IP lease offer, IPrequest, and IP lease acknowledgement.DHCP uses client-server architecture. The client sends a broadcast requestfor configuration information. The DHCP server receives the request andresponds with configuration information from its configuration database.
The DHCP server may have three methods of allocating IP-addresses:
Dynamic allocation: A network administrator assigns a range of IPaddresses to DHCP, and each client computer on the LAN has its IP software
configured to request an IP address from the DHCP server during networkinitialization.
Automatic allocation: The DHCP server permanently assigns a free IPaddress to a requesting client from the range defined by the administrator.This is like dynamic allocation, but the DHCP server keeps a table of past IPaddress assignments, so that it can preferentially assign to a client the sameIP address that the client previously had.
Static allocation: The DHCP server allocates an IP address based on a tablewith MAC address/IP address pairs, which are manually filled in. Onlyrequesting clients with a MAC address listed in this table will be allocated anIP address.
Page 32 of61
8/7/2019 Final reprot COMSATS
33/61
2.5 Servers Functionalities and Statistics
File server
A file server is a computer responsible for the central storage andmanagement of data files so that other computers on the same network canaccess the files. A file server allows users to share information over a networkwithout having to physically transfer files by external storage device. Anycomputer can be configured to be a host and act as a file server.
Manufacturer DELL
Model Power Edge-2900
Operating System LINUX
RAM 4 GB
Hard disk 80 GB RAID-3
Cache server
A cache server is a dedicated network server or service acting as a server
that saves Web pages or other Internet content locally. By placing previouslyrequested information in temporary storage, or cache, a cache server bothspeeds up access to data and reduces demand on an enterprise's bandwidth.
A forward cache sits close to users and accelerates their requests toInternet.
A reverse cache sits in front of one or more Web servers and webapplications, accelerating requests from the Internet.
They are using cache servers with 2 DNS having forward and reverse look up
Page 33 of61
Manufacturer DELL
Model Power Edge 2900
Operating System Windows server 2003
RAM 4 GB
Hard disk 80 GB - RAID 3
Forward mode YES
Reverse Mode NO
8/7/2019 Final reprot COMSATS
34/61
DNS
The Domain Name System (DNS) is a hierarchical naming system forcomputers, services, or any resource connected to the Internet or a private
network. It associates various information with domain names assigned toeach of the participants. It translates domain names meaningful to humansinto the numerical (binary) identifiers associated with networking equipmentfor the purpose of locating and addressing these devices worldwide.The Domain Name System makes it possible to assign domain names togroups of Internet users in a meaningful way, independent of each user'sphysical location
Forward DNS lookup and reverse lookup
Forward DNSlookup is using an Internet domain name to find an IP
address. Forward DNS lookup is the more common lookup
Reverse DNS lookup is using an Internet IP address to find a domainname.
Proxy server
A proxy server is a server that acts as an intermediary between a workstationuser and the Internet so that the enterprise can ensure security,administrative control, and caching service. A proxy server is associated withgateway server that separates the enterprise network from the outsidenetworkA proxy server receives a request for an Internet service (such as a Webpage request) from a user. If it passes filtering requirements, the proxy server,assuming it is also a cache server, looks in its local cache of previously
downloaded Web pages. If it finds the page, it returns it to the user withoutneeding to forward the request to the Internet. If the page is not in the cache,the proxy server, acting as a client on behalf of the user, uses one of its ownIP addresses to request the page from the server out on the Internet. Whenthe page is returned, the proxy server relates it to the original request andforwards it on to the user.
An advantage of a proxy server is that its cache can serve all users.
Page 34 of61
8/7/2019 Final reprot COMSATS
35/61
Manufacturer DELL
Model Power Edge 2900
Operating System LINUX
RAM 2 GBHard disk 80 GB RAID 3
Web serverA web server is computers program that delivers content such as web pages,using the Hypertext Transfer Protocol (HTTP), over the World Wide Web.
The primary function of a web server is to deliver web pages to clients. Thismeans delivery of HTML documents and any additional content that may beincluded by a document, such as images, style sheets and JavaScripts.
A client, commonly a web browser or web crawler, initiates communication bymaking a request for a specific resource using HTTP and the server respondswith the content of that resource, or an error message if unable to do so. Theresource is typically a real file on the server's secondary memory
Web servers are not always used for serving the world wide web, but theycan also be found embedded in devices such as printers, routers, webcams
and serving only a local network. The web server may then be used as a partof a system for monitoring and/or administrating the device in question. Thisusually means that no additional software has to be installed on the clientcomputer, since a only a web browser is required
Load LimitsA Web server (program) has defined load limits, because it can handle only alimited number of concurrent client connections usually between 2 and80,000, by default between 500 and 1,000 per IP address.
FTP
Page 35 of61
Manufacturer HPModel ML-150
Operating System LINUX
RAM 2 GB
Hard disk 80 GB- RAID-3
8/7/2019 Final reprot COMSATS
36/61
An FTP server is a software application running the File Transfer Protocol(FTP). File Transfer Protocol (FTP) is a standard network protocol used tocopy a file from one host to another network, such as the Internet. FTP is builton client-server architecture and utilizes separate control and dataconnections between the client and server applications. FTP is used with
user-based password authentication or with anonymous user access.
A client makes a connection to the server on TCP port 21. This connection,called the control connection, remains open for the duration of the session,with a second connection, called the data connection, on port 20 opened asrequired to transfer file data. The control connection is used to sendadministrative data.
Manufacturer DELL
Model Power Edge 2900
Operating System LINUXRAM 4 GB
Hard disk 80 GB - RAID-3
Allocated size 1 GB, 2GB
It is used for the backup the users account, contains the users data whichcan be in the form of files.
Mail server
A mail server is an application that receives incoming e-mail from local usersand remote senders and forwards outgoing e-mail for delivery. A computerdedicated to running such applications is called a mail server. Mail exchangedacross networks is passed between mail servers that run specially designed software
Manufacturer HP
Model ML 150
Operating System LINUX
RAM 2 GBHard disk 80GB RAID-3
2.6 Other servers:
Page 36 of61
8/7/2019 Final reprot COMSATS
37/61
Database server
A computer in a network that is dedicated to database storage and retrieval.It holds the database management system and the databases. Uponrequests from the client machines, it searches the database for selected
records and passes back the results.Such a server is accessed either through a "front end" running on the userscomputer which displays requested data or the back end which runs on theserver and handles tasks such as data analysis and storage.
Hosting server
Manufacturer DELL
Model Power Edge 2900
Operating System Windows server 2003
RAM 4 GB
Hard disk 80 GB RAID-3
3-Backbone
Page 37 of61
Manufacturer DELL
Model Power Edge 2900
Operating System Sun Solaris
RAM 4 GB
Hard disk 80 GB RAID-3
8/7/2019 Final reprot COMSATS
38/61
3.1 LAN ISP
3.1.1 Firewall:
Name ISA server
Soft / Hard Soft
Manufacturer Microsoft
Version 2004
Inbound/Outbound Both
PoliciesOutside access denied,authentication, internet sessionmaintained
Hardware DELL- Power Edge 2900Operating system Microsoft Server 2003
RAM 2GB
Description:
Microsoft's ISA Server stands for Internet Security and Acceleration Server.ISA Server provides the two basic services of an enterprise firewall and aWeb proxy/cache server. ISA Server's firewall screens all packet-level, circuit-level, and application-level traffic.
Inbound access control allows you to configure what traffic should beallowed from an external network into an internal network.
Outbound access controls allow you to configure what traffic can leave theinternal network and what services can be requests by internal networkclients.
3.1.2 Features:
Centralized logging and reporting
Logs and reports traffic moving through all members of an enterprisearray.Eliminates need to collect log file information from each firewall andorganize it to create unified report information.
Page 38 of61
8/7/2019 Final reprot COMSATS
39/61
Enterprise policy
Set security policies at enterprise levels for consistent control oversecurity standards throughout your geographically diverseorganization, with application of array-level policy and local policy, as
appropriate.
Multi-layer firewall
Provides three types of firewall functionality: packet filtering , statefulfiltering, and application layer filtering.
Block access to all executable content
HTTP policy enables you to block all connection attempts to theMicrosoft Windows operating system executable content, regardless
of the file extension used on the resource.
FTP policy
The ISA Server 2006 FTP policy can be configured to let usersupload and download through FTP, or you can limit user FTP accessto download only.
Authentication
Authenticate users with built-in Windows, LDAP, RADIUS, or RSA
SecurID authentication.
Separate front-end and back-end configuration provides for moreflexibility and granularity.
Supports single sign-on for authentication to Web sites.
Apply rules to users or user groups in any namespace.
RADIUS support
3.2 Router Gateway
Manufacturer: CISCO
Page 39 of61
8/7/2019 Final reprot COMSATS
40/61
Model: 7507
Features:
Connectivity Technology: Wired
Data Link Protocol: ATM, FDDI, ISDN, Serial, Ethernet,Token Ring, Fast Ethernet
OS Required: Cisco IOS
RAM: 32 MB installed / 128 MB max
Bandwidth: 1 Gbps
Cisco 7507 (Front View)
Page 40 of61
8/7/2019 Final reprot COMSATS
41/61
Cisco 7507 (Rear View)
3.3 Backbone:
Bandwidth used fro backbone connectivity
Page 41 of61
8/7/2019 Final reprot COMSATS
42/61
100 Mbps
Number of lines to connect to backbone2Automatic shifting
Gigabit converter
Method of transferFiber DWDM
DWDMDense Wavelength Division Multiplexing
An optical technology used to increase bandwidth over existing fiber opticbackbones.
It is a technology which multiplexes multiple optical carrier signals on asingle optical fiber by using different wavelengths of laser light to carrydifferent signals. This allows for a multiplication in capacity, in addition toenabling bidirectional communications over one strand of fiber.An advantage to DWDM is that it's protocol- and bit-rate-independent.DWDM-based networks can transmit data in IP, ATM, SONET /SDH, andEthernet, and handle bit rates between 100 Mb/s and 2.5 GB/s. Therefore,DWDM-based networks can carry different types of traffic at differentspeeds over an optical channel.
4 Other Information
4.1 Switches which are using by our ISP
Page 42 of61
8/7/2019 Final reprot COMSATS
43/61
CISCO 3560
The Cisco 3560 is a line of fixed-configuration, enterprise-class switches thatinclude IEEE 802.3 and Cisco prestandard Power over Ethernet (PoE)
functionality in Fast Ethernet and Gigabit Ethernet configurations. The Cisco3560 is an access layer switch for small enterprise LAN access or branch-office environments, combining both 10/100/1000 and PoE configurations formaximum productivity and investment protection while enabling thedeployment of new applications such as IP telephony, wireless access, videosurveillance, building management systems, and remote video kiosks.Customers can deploy network wide intelligent services-such as advancedquality of service (QoS), rate limiting, access control lists (ACLs), multicastmanagement, and high-performance IP routing-while maintaining thesimplicity of traditional LAN switching.
Features
Number of ports 24
Superior Redundancy for Fault Backup
High-Performance IP Routing
Integrated Cisco IOS Software
Features for Bandwidth Optimization
Configurable up to 12,000 MAC addresses
Configurable up to 11,000 unicast routes
CISCO 3550
The Cisco 3550 Series Intelligent Ethernet Switches is a line of enterprise-class, stackable, multilayer switches that provide high availability, securityand quality of service to enhance the operation of the network. With a rangeof Fast Ethernet and Gigabit Ethernet configurations, the 3550 series canserve as both a powerful access layer switch for medium enterprise wiringclosets and as a backbone switch for small networks.
Features:
Number of ports 24
Superior Redundancy for Fault Backup
High-Performance IP Routing
User and Device Authentication
Configurable up to 12,000 MAC addresses
Page 43 of61
8/7/2019 Final reprot COMSATS
44/61
Configurable up to 24,000 unicast routes
Configurable up to 8,000 multicast router
CISCO 2960
Cisco 2960 is a form of fixed-configuration standalone devices that providedesktop Fast Ethernet and Gigabit Ethernet connectivity, enabling enhancedLAN services for entry-level enterprise, mid-market, and branch officenetworks.The 2960 offers integrated security, including network admission control(NAC), advanced quality of service (QoS), and resiliency to deliver intelligentservices for the network edge.
Features
Dual-purpose uplinks for Gigabit Ethernet uplink flexibility, allowing useof either a copper or a fiber uplink.
Network control and bandwidth optimization.
Network security through a wide range of authentication methods, dataencryption technologies, and network admission control based onusers ports, and MAC addresses.
Configurable up to 8000 MAC addresses.
Configurable maximum transmission unit (MTU) of up to 9000 bytes,with a maximum Ethernet frame size of 9018 bytes.
CISCO 2950
The Cisco 2950 is a member of the Cisco Catalyst 2950 Series switches, andis a standalone, fixed-configuration, managed 10/100 switch providing userconnectivity for small to mid-sized networks.Cisco 2950 switch offers enhanced data security through a wide range ofsecurity features. These features allow customers to provide network securitybased on users or MAC addresses.
Features
Layer 2
Configurable up to 8000 MAC addresses
Standard Image (SI) software installed.
Foundry Fastiron 4802
Page 44 of61
8/7/2019 Final reprot COMSATS
45/61
FastIron 4802 delivers the highest available switchingperformance in the industrys smallest 48-port 10/100 footprint,providing the richest feature set available in a fixed configurationswitch product.
Layer 2 and Layer 3 Switching Features Network Monitoring, Accounting, and Billing
o Port-based byte accounting
o MAC-based accounting and traffic matrix based on MAC
addresseso Inter-VLAN accounting
o IP subnets, IP addresses, and IP traffic matrix
Performance:o Up to 10,100,000 packets per second
o Switching Capacity:
o Up to 34 Gbps
4.2 Routers which are using by our ISP:
CISCO 7206
Interfaces
o Ethernet 10BASE-T and 10BASE-FL
o Fast Ethernet 100BASE-T
o Gigabit Ethernet
o Token Ring (half and full duplex)
Deploymento WAN edge
o Broadband aggregation
o Voice/video/data integration
o IP Security virtual private networking
Processor Memory: 128 MB (default)Layer 2 and Layer 3 protocols
Page 45 of61
8/7/2019 Final reprot COMSATS
46/61
CISCO 3640
The Cisco 3600 series is a multifunction platform that combines dial access,routing, and LAN-to-LAN services and multi-service integration of voice, videoand data in the same device. It is fully supported by Cisco IOS software,
which includes analog and digital voice capability. The Cisco 3640 has fournetwork module slots.
Features
o Analog and digital voice services
o ATM networking services
o Dial-up services
o LAN-to-LAN services
o Network module slots 4
o Supported network interfaces Ethernet
Fast Ethernet
Token Ring
Asynchronous
Synchronous serial
Digital Modems
Analog Modems
Voice
Page 46 of61
8/7/2019 Final reprot COMSATS
47/61
Cisco 3640 Router Rear View
CISCO 3745
Features:
o Interfaces
LAN
WAN
Serial
ISDN/Channel
Voice
ATM
Modem
o
Default memory of 32MBo Support for Optional Redundant Power
CISCO 3745 with interfaces
Page 47 of61
8/7/2019 Final reprot COMSATS
48/61
Appendix A
Broachers , leaflets
Page 48 of61
8/7/2019 Final reprot COMSATS
49/61
Appendix B
Logs
Page 49 of61
Activity Milestone achieved Time taken
Visit the outlet Broachers,advertisements,information aboutequipments
Visit to ISP Working study, nextappointments
Documentation started Front end completed
Literature study Concepts aboutequipments
Visit No. 2Local infrastructurestudy, statisticalinformation
Documentation --------------
Visit No-3 Core study
Search about equipments Material fordocumentation
Visit No-4 Resolve confusions
Documentation Report
Checking of document Final document
8/7/2019 Final reprot COMSATS
50/61
Appendix C
Questionnaire
How the user terminates at your end? What are the ways?How the users request is forward through different hardware?Is this infrastructure is different according to your offering technologies or not?What are the technologies available for that hardware?What switches you are using? Level and manufacturer?What routers you are using?Which one is gateway router?What is the role of local switch and its specification?How your local users are access the internet?Which LAN standard you are using?What kind of server you are using? And their specifications?How these servers are different with each other?What are security measures?How many firewalls you are using? They are hard of soft?What are the implemented policies for firewall?How they are deployed and how they provide security?What kind of cables are using for local infrastructure?How much bandwidth for backbone? And how many lines are connected?How this transfer takes place? Method and its detail?How many addresses you are using? Specify the classes?
Page 50 of61
8/7/2019 Final reprot COMSATS
51/61
Appendix D
Pictures and diagrams
ISP Headquarter
A DSLAM
Page 51 of61
8/7/2019 Final reprot COMSATS
52/61
An ATM switch
Page 52 of61
8/7/2019 Final reprot COMSATS
53/61
A PIX
RAS
Page 53 of61
8/7/2019 Final reprot COMSATS
54/61
CISCO 7505 Router
CISCO 7602 Router
Page 54 of61
8/7/2019 Final reprot COMSATS
55/61
Routers
CISCO 3640 Router
CISCO 3740 Router
CISCO 2800 Router
Page 55 of61
8/7/2019 Final reprot COMSATS
56/61
Switches
CISCO 3560 Switch
CISCO 3550 Switch
CISCO 2960 Switch
CISCO 2950 Switch
Page 56 of61
8/7/2019 Final reprot COMSATS
57/61
Foundar 4802 Switch
Zyxel 4124 Switch
Page 57 of61
8/7/2019 Final reprot COMSATS
58/61
Servers
DELL-PowerEdge 2900
HP ML-150
Page 58 of61
8/7/2019 Final reprot COMSATS
59/61
Cables
CAT-5
CAT-6
Page 59 of61
8/7/2019 Final reprot COMSATS
60/61
Appendix E
References
1-http://www.webopedia.com/TERM/D/dial_up_access.html
2-http://en.wikipedia.org/wiki/Integrated_Services_Digital_Network
3-http://www.wisegeek.com/what-is-video-conferencing.htm
4-http://en.wikipedia.org/wiki/Computer_modem
5-http://www.spectra.com/pdfs/cisco7500.pdfhttp://searchcio-midmarket.techtarget.com/sDefinition/0,,sid183_gci213968,00.html
6-http://en.wikipedia.org/wiki/Domain_Name_System
7-http://www.webopedia.com/TERM/W/Web_server.html
8-http://en.wikipedia.org/wiki/Web_server
9-http://www.webopedia.com/TERM/F/FTP_Server.html
10-http://en.wikipedia.org/wiki/FTP_server
11 http://searchsoa.techtarget.com/sDefinition/0,,sid26_gci876011,00.html
12-http://www.wisegeek.com/what-is-a-mail-server.htm
13-http://www.answers.com/topic/database-server
14-http://searchtelecom.techtarget.com/sDefinition/0,,sid103_gci213916,00.html
15-http://www.techterms.com/definition/dslam
16-http://www.cramsession.com/articles/get-article.asp?aid=304
17-http://searchenterprisedesktop.techtarget.com/sDefinition/0,,sid192_gci864220,00.html
18-http://www.microsoft.com/forefront/edgesecurity/isaserver/en/us/features.aspx
Page 60 of61
8/7/2019 Final reprot COMSATS
61/61
19-http://www.spectra.com/pdfs/cisco7500.pdf
20-http://reviews.cnet.com/routers/cisco-7507-router/4507-3319_7-227150.html?tag=mncol;rnav
21-http://www.cisco.com/en/US/prod/collateral/switches/ps5718/ps5528/product_data_sheet09186a00801f3d7d.html
22-http://www1.cisco.com/en/US/products/hw/routers/ps359/products_installation
_and_configuration_guide_chapter09186a00801c63a5.html#wp1038366
23-http://www.vantage.com/pdfs/communications/cisco_catalyst_3560_switch.pd
f
24-http://www.cisco.com/en/US/prod/collateral/switches/ps5718/ps646/product_data_sheet09186a00800913d7.html
25-http://newsroom.cisco.com/dlls/2005/eKits/cisco_catalyst_2960_series_switches.pdf
26-
http://www.cisco.com/en/US/products/hw/switches/ps628/products_data_sheet09186a00801cfb71.html
27-http://www.mtmnet.com/PDF_FILES/fi4802.pdf
28-http://www.icann.org/en/tlds/org/applications/dotorgfoundation/Tech_Attachments/Hardware/Network/Color-Cisco_7200.pdf
29-http://www.arcelect.com/cisco_3600_router.htm
30-http://en.wikipedia.org/wiki/DWDM#Dense_WDM
31 http://onlinestore wacomps com/index php?
Top Related