Bonded Stream

Sample Network Documentation | Supplied as Standard

<Customer> Network Documentation

Prepared for: John Smith, Manager, Company




 

Prepared by: David Prestidge, IT Consultant, Bonded Stream

5 August 2020

Revision: 1.1

Overview

The following document is designed to provide a quality reference for the network setup and configuration of all network devices and services provided or utilised by staff and visitors to Company, Address.

 

The IT installation at the Company, is intended to be as flexible as possible.  First providing a solid foundation that can adjust to business needs at time progresses.

 

Company has just completed its migration to their new office to provide a solid foundation to grow into the future.  The purpose-built facility will enable the existing office based team to expand and growth to the future vision of 25 office based staff, and potentially hundreds of mobile workers out in the field.

 

You Will Find:

The following items:

    Important contact details

    Infrastructure locations and Wi-Fi access points

    Software Licensing Details

    Email Configuration and Setup

 

 

Important Contact Details:

 

Customer

John Smith

Company

Full Address

P: 03 9000 9999

E: john@yourdomain.com

IT Consultant

David Prestidge

Bonded Stream

Level 14, 330 Collins Street

Melbourne, 3000 VIC
M: 0458 012 824

E: david@bondedstream.com

 

 

 

Network and Communications

Infrastructure locations

Installed IT infrastructure for Company is currently located in the Communication Store, on the 2nd floor, just past the bathrooms.

Internet:


Internet is provided via Telstra NBN service Fibre Service.
The purchased speed is 50Mbps download and 20Mbps upload. 

NBN Installation has been provided using the best option available, FTTP. Or Fibre To The Premise allowing full speed access to the NBN.

The current NBN Speed profiles supported are:

Download / Upload

50Mbps / 20Mbps. (Current)

100Mbps / 40Mbps

250Mbps / 25Mbps

 

Internet service is provided via the Telstra supplied Telstra Gateway Modem.

This modem is then handing off to the Ubiquiti UniFI Security Gateway Pro which handles the firewall and routing operations and VPN.

WiFi:

Two network exist currently for Internet Access.

Wireless Network Name

Password

Company-Staff

ABCDEFGHIJKLM

Company-Guest

NOPQRSTUVWXYZ

 

Wifi Usage:

Company-Staff - People connected to the staff network have access to the printer, server and laptops and the internet.  Its a trusted network so should only be given ideally to staff.

 

Company-Guest is an isolated network, designed for a contractor who might just need only an internet connection. It is blocked from accessing the Printer, servers and network browsing.

 

Company Files and Storage

Customer staff access a shared folder on a Dell PowerEdge XXXX Server, running Windows 2016 Server called: SERVER
This server is used as the main file server for the company.

Accessible from \\SERVER\MAINSHARE

 

<Client Specific Details Go Here>

 

CUSTOMER NAME

 

 

Printers:

Brother MFC-9970CDW


Product Link: https://support.brother.com/g/b/producttop.aspx?c=au&lang=en&prod=mfc9970cdw_all
Drivers (Windows 10):
https://support.brother.com/g/b/downloadlist.aspx?c=au&lang=en&prod=mfc9970cdw_all&os=10013
The printer now running the latest firmware, as at 7 August 2020.

Brother Printer - Network Details:

Wireless Connection:
IP address for printer: 192.168.1.8

Subnet mask  255.255.255.0
Gateway 192.168.1.1

Fuji Xerox Docucentre-V C3373

Product Link:
https://www.fujixerox.com.au/en/Products/AU-Multifunction-Printers/DocuCentre-V-C2265-C2263

Drivers (Windows 10):
http://onlinesupport.fujixerox.com/setupSupport.do?cid=2&ctry_code=AU&lang_code=en
Search C2263, follow the prompts for your driver download.

Fuji Xerox Photocopier - Network Details:

Wired Connection:
IP address for printer: 192.168.1.8
Subnet mask  255.255.255.0
Gateway 192.168.1.1

The Network Backbone

The Network Backbone is the foundation that all other services use over the entire life of the building.

When talking about an office building, the Network Backbone covers the items below;

NBN Internet <—> Firewall <—> Network Switching, then Phones and Data (network cabled and WiFi)

All Desks will be cabled along with the Server and 2 x Printers. Adding a new computer, is as easy as running a network cable from the wall socket, to the Desk. Keeping it simple and efficient going forward.

This solution caters for data separation for Voice, and Data networks.

The proposed solution utilises enterprise hardware to provide a solid backbone for the company to use well into the future, 3-5 years being typical.  Its based on Ubiquiti Business Grade Networking hardware industry and has the following components;

    Firewall - Ubiquiti Security Gateway Pro provides protection by supplying filtering at the network edge, helping filter malicious software before it enters the network. Also support site-to-site VPN for expansion to additional sites and client VPNs if required for staff.

    Network Switch - UniFi Switch 24 POE-250W provides 24 Ports of networking capacity at gigabit speeds, and will power phones and data from a single port.  A 24 Port will cable your immediate need up to 21 devices.  All 16 Data Points are patched and ready for use.

    WiFi - Ubiquiti AP-AC-LR Wireless Access Points would be using in this design to provide enterprise grade wifi.  2 Access Points have been installed on Level 2.  Wifi allows roaming, so staff can retain their connection throughout the building.  This allows anyone with secure access to the network to utilise internet services and access any central server, by ethernet cable or WiFi.

A key benefit of using Ubiquiti is the connection to the Ubiquiti UniFI Dashboard that used for management, automated upgrades to network equipment. Keeping the network safe and secure environment into the future. Limited remote diagnosis and monitoring is built-in to all the hardware, Many issues can typically be fixed in a few minutes, remotely.  The hardware comes with 1 year replacement warranty.

 

 

 

 

 

 

 

Network Design - Hardware

Naming Convention Used:
AU215PRT ( Australia, 215 Pipers Road, Thomastown)
FW/S/W (Firewall / Switch / Wireless)

-G or -1 (Floor, ground or Level 1)
-1 or -2 (on last value, number of the device)









To Manage the network:

<LastPass Preview of suitable credentials>

Using a web browser, go to https://unifi.ubnt.com/









 Once logged in; you will see the CloudKey listed as CloudKey, click on Launch (Far Right) to connect to your network management (Cloud Key).









Once your Cloud Key is connected; you will see the analytics for your network, as per the image below;

Menu options are on the left, most useful is ‘Devices’, which shows your Ubiquiti Hardware that is installed.

To manage any of them, click on the image of the hardware device.

Network Documentation is designed to give you an overview of your system, please refer to the Ubiquiti User Manual for explanation and step by step instructions.

Ubiquiti User Guides:

https://dl.ubnt.com/guides/UniFi/UniFi_Controller_V5_UG.pdf

If in future, this link doesn’t work, try this google search:
https://www.google.com/search?q=ubiquiti+user+guides

 

 


 

 

Connecting to VPN for Remote Access on Windows 10:

The VPN is now configured at your Melbourne office, in order to connect, I have provided the following instructions for you.  First step is to do a one time setup, then it shows you how to connect.

As Company is running Windows 10 across all desktops and laptops, I have included instructions for that.

 

Windows 10 Manual Setup Instructions  (one time setup)

How to Configure

1.       Click on the Start menu.

2.       Click on Settings.

3.       Click Network & Internet from the Settings menu.

4.       Select VPN from the left side of the window.

5.       Click Add a VPN connection.

6.       Fill out the settings listed in the box below.

         VPN provider: Windows (built-in)           

         Connection Name: Melbourne VPN

         Server name or address: 123.123.123.123

         VPN type: Point to Point Tunneling Protocol (PPTP)

         Type of sign-in info: User name and password

         User name: jsmith (must be lowercase)

         Password (optional): <Password>

         Remember my sign-in info: Checked

7.       Click Save.

8.       You will now see the connection in the Network & Internet window, in the system tray (bottom right corner)


 

How to Connect to the VPN each time.

1.       Click on the Start menu.

2.       Click on Settings.

3.       Click Network & Internet from the Settings menu.

4.       Select VPN from the left side of the window.

5.       Click on Melbourne VPN and then click the Connect button.

6.       You are now connected to Melbourne VPN! Connection can take up to 50 seconds.
You will automatically disconnect if your computer goes to sleep, if this is an issue, refer to your computers Sleep and Power settings to extend the timeout.

7.       Click Disconnect from this screen at any time to disconnect from the service.

If for any reason the VPN decides it's not going to connect, please reboot the computer and it will connect first time. A reboot fixes most issues in a few seconds.

VPN requires internet access to work, ensure you have a mobile hotspot or Wifi available to you before trying to connect.

 

<SPECIAL CIRCUMSTANCES INSTRUCTIONS>

Editing HOSTS file to point to SERVER

Use the following instructions if you’re running Windows 10. This is required as Company does not run a server software.  So this workaround will provide access to your server.

1.     Press the Windows key.

2.     Type Notepad in the search field.

3.     In the search results, right-click Notepad and select Run as administrator.

4.     From Notepad, open the following file:
c:\Windows\System32\Drivers\etc\hosts

5.     Make the necessary changes to the file.
Add a row at the bottom of the file, using a TAB to seperate the the IP address from the Server name.

192.168.1.100           SERVER

6.     Select File > Save to save your changes.