IT - infrastructure Audit for an international educational institution.
International Private School.
The Client works in the market of the Republic of Kazakhstan for more than 15 years. During this period several additional buildings were built on the territory of the educational institution and a new network infrastructure was laid. However, during this time, the Client’s system administrators periodically changed. That caused the loss of technical information about the topology of active network equipment and the physical topology of cable networks.
At the time of project kick-off, the Client’s network reached a serious scale: about 50 access points, 25 switches and about 900 end devices (wired and wireless).
Obviously, there were numerous problems in the network infrastructure. There were loops in certain areas of the network, and there were problems at the level of physical connections (issues with patch panels, lack of signal in the sockets). All these factors have led to the need to sort out the issues in the network infrastructure.
- Create a network map (basic version of cable journal), plot all sockets on the map of rooms, mark and test patch panel ports and physical connections;
- Set up a backup system, install monitoring system and centralized OS deployment. Audit and configure the active network equipment – switches, firewall, router, wireless access points and network controllers.
- Check and configure the basic network services DHCP, DNS, Active Directory, WSUS;
The works were performed in 3 stages. At the first stage the network map was drawn up. All physical connections were tested and recorded. Connections in telecommunication cabinets were settled – cable organizers were installed, patch cords were laid, unused cables were disconnected.
At the second stage the network topology was significantly improved. Despite the presence of network equipment from different manufacturers, all network loops were successfully eliminated using built-in tools of network equipment. Inefficient cascade connections between switches were eliminated and the network was divided into multiple logical segments.
Wireless network topology was also improved. Automatic channel selection and load balancing between adjacent points was fine-tuned. A network for users connecting over VPN was created on the firewall.
At the third stage, main network services were restructured. Backup, monitoring system and centralized installation of the OS was set up.