General off-topic discussions.
User avatar
stretch
Post Whore
Posts:
1254
Joined:
Sat Sep 22, 2007 5:58 am

Network redrawing contest!

Fri Apr 25, 2008 2:37 am

In an effort to raise enterprise awareness of proper network diagramming techniques, I am opening a network redrawing contest! Below is an awful network diagram which needs to be redrawn. Interested participants can take their best shot at redoing the diagram in their own style and submit their entry to me by 23:59 GMT Tuesday, 29 April.

Once the deadline has been reached, I will start a new forum thread featuring all the submissions and a poll. The Networking Forum community can then vote for the drawing they feel is the best upgrade to the original. The poll will run until 23:59 GMT Friday, 2 May, and the author of the drawing with the most votes at that time will win a free copy of Network Warrior, by Gary Donahue.

Image

Here is the offending drawing (click for the full view). Please review the rules listed below before beginning. Additional scenario details are listed below the rules.

Image

Rules

* E-mail your completed entry to stretch at packetlife dot net (be sure to include your nick on the forum so I know who is who). Entries must be received by 23:59 GMT 29 April 2008. Entries can be resubmitted up until the deadline (but please be reasonable). One entry per person, and one person per entry (no co-op drawings).

* Entrants will be disqualified if plagiarism or any other form of cheating is suspected.

* Drawings can be done on any platform (Visio, Kivio, dia, etc), but entries must be submitted in JPG, GIF, or PNG format. You are free to use any symbols or icons you have acquired legally.

* Any details not included on the drawing are to be assumed as documented elsewhere; use your best judgment on what to include and what not to include on your drawing.

* Drawings are limited to an 8.5" x 11" sheet of paper (smaller is okay). No other media or documents can accompany the drawing.

* UPDATE: I should have clarified this before starting the contest: Drawings may contain multiple (maximum of two) pages (tabs) to express "layered" views so long as each page remains within the 8.5x11" limitation. Each tab may be submitted as a separate image. If anyone takes issue with this update, please express it in the thread and we'll try to get it settled.

* You cannot redesign the network pictured, as much as you may want to. Remember, you're redoing the drawing, not the network itself.

* The vote will open on all qualifying entries for 72 hours in a new thread. A winner will be declared on Saturday, 3 May, and the winner will need to provide me with their mailing address to receive their prize.

* If you need any additional detail or direction, please ask in this thread. I will reply in the thread with an answer for everyone.

* This is a friendly contest, and everyone has his or her own style. Please don't bad-mouth other entrants or their submissions. Being a dick will get you disqualified. :)

Details

WAN Connectivity
Internet access is provided by Qwest business-class ADSL; the circuit ID is 4068124. The customer premises equipment (CPE) is a Qwest-owned Cisco 837 router. The statically-assigned public IP address is 65.100.34.67/32.

DMZ
The DMZ is positioned between the CPE router and the outside interface of the firewall. The DMZ subnet is 192.168.0.0/26. The DMZ switch is a simple Linksys switch with no management interface and no configuration. Webmail is provided for employees on a Dell PowerEdge 1650 server running Windows 2003 named WEBMAIL connected to the DMZ switch on port 3. The old webmail server pictured is no longer in place.

Firewall
The firewall is Dell PowerEdge 1750 running FreeBSD. The firewall has three interfaces:
Code: Select all
Eth0 (Inside): 192.168.0.66/26 - Connects to the core router
Eth1 (Outside): 192.168.0.2/26 - Connects to the DMZ switch
Eth2 (Management): 192.168.100.99/24 - Connects to switch A1 G0/2


Core Router
A Cisco Catalyst 3560 named CORE is used as the core router.

Building A
Building A houses the DMZ, firewall, core router, servers, switches A1 and A2, and VLAN 10 hosts.

Building B
Building B houses switch B1 and VLAN 20 hosts. A 12-strand multimode fiber run connects to building A.

Building C
Building C houses switch C1 and VLAN 30 hosts. A 12-strand multimode fiber run connects to building A.

Switches
All switches connect to the core router via an 802.1q trunk. All switches have an SVI in VLAN 1 (10.0.0.0/24) for management. All switches are 24-port models.

Code: Select all
       Name          Mgmt IP       Model              Host VLAN     Uplink
A1     Switch_A1     10.0.0.11     Catalyst 3560G     100           G0/1 - G0/23
A2     Switch_A2     10.0.0.12     Catalyst 3550      10            F0/1 - G0/24
B      Switch_B      10.0.0.21     Catalyst 3550      20            F0/1 - G0/25
C      Switch_C      10.0.0.31     Catalyst 2950G     30            G0/1 - G0/26


Servers
All internal servers are in VLAN 100. All servers reside in 192.168.100.0/24, with the gateway of 192.168.100.1.

Code: Select all
IP                  Name
192.168.100.5       DCMASTER
192.168.100.10      FILE1
192.168.100.20      FILE2
192.168.100.30      EMAIL1


Hosts
End hosts are of various makes and models, and include workstations, laptops, and printers. All hosts are wired. All host subnets are /24. All host subnet gateways are 192.168.x.1. An unknown number of new hosts have been added since this drawing was last updated.
Last edited by stretch on Mon Apr 28, 2008 6:18 am, edited 4 times in total.

User avatar
ibarrere
Cisco Inferno
Posts:
10283
Joined:
Mon Jul 10, 2006 12:58 am

Fri Apr 25, 2008 3:10 am

Dude, great idea!

Texanmutt will be all over this one. :)

User avatar
pug
Ultimate Member
Posts:
716
Joined:
Tue Aug 14, 2007 12:23 am

Fri Apr 25, 2008 8:20 am

Sweet!! I'm in!

Edit: Just sent mine in. :)

User avatar
Steve
Site Admin
Posts:
10617
Joined:
Mon Dec 06, 2004 6:46 pm
Certs:
CCNA

Fri Apr 25, 2008 10:12 am

Very cool contest! I will donate any 1 item from the logo shop shipped to anywhere CafePress.com ships to the winner.

Thanks stretch.

User avatar
pug
Ultimate Member
Posts:
716
Joined:
Tue Aug 14, 2007 12:23 am

Fri Apr 25, 2008 12:37 pm

w00t!!! :) *crosses fingers*

mgp
Ultimate Member
Posts:
848
Joined:
Tue Nov 27, 2007 1:56 am

Fri Apr 25, 2008 1:13 pm

I don't see anything wrong with the diagram, it's alot better then some I seen hand drawn on a sticky note :D

User avatar
inzeos
Post Whore
Posts:
1858
Joined:
Mon Jun 11, 2007 9:43 am

Fri Apr 25, 2008 1:42 pm

I'll add to the contest as well! If we have at least 10 submissions, the runner up will receive one of these handy cross over cable adaptors;

Image

Note, I will pay shipping to the continental US only! However, if it can be shipped to your location for < $20 USD I will do international.

User avatar
Dinger
Post Whore
Posts:
1397
Joined:
Fri Apr 25, 2008 2:16 pm
Certs:
CCNP, CCNA:Sec, MCSE

Fri Apr 25, 2008 2:41 pm

OK, I have to ask.. is the supplied diagram one that you made ("let's see how ugly I can make this") or one that somebody actually made and uses? :)

User avatar
pug
Ultimate Member
Posts:
716
Joined:
Tue Aug 14, 2007 12:23 am

Fri Apr 25, 2008 2:52 pm

What subnet are the 10.0.0.0 address suppose to use? /24? /8?

User avatar
stretch
Post Whore
Posts:
1254
Joined:
Sat Sep 22, 2007 5:58 am

Fri Apr 25, 2008 3:13 pm

OK, I have to ask.. is the supplied diagram one that you made ("let's see how ugly I can make this") or one that somebody actually made and uses?

I actually made this from scratch to document a nonexistent network. I had to force myself to draw things "wrong," it was weird.

What subnet are the 10.0.0.0 address suppose to use? /24? /8?

Whoops, forgot that. Let's assume /24; I'll add that to the initial post. Good catch!

User avatar
coolblade
Member
Posts:
180
Joined:
Tue May 15, 2007 3:05 am

Fri Apr 25, 2008 6:56 pm

I'm not sure if this is important to be documented in the network diagram, but I will ask you anyhow.

WAN Connectivity
Internet access is provided by Qwest business-class ADSL; the circuit ID is 4068124. The customer premises equipment (CPE) is a Qwest-owned Cisco 837 router. The statically-assigned public IP address is 65.100.34.67.


What subnet for the mentioned public IP address?

Another question is, if I send two diagrams (let's say one for logical, and other is for physical) is it considered that they are combined to one entry by myself? An JPG /PNG image represent one diagram I guess so?

User avatar
stretch
Post Whore
Posts:
1254
Joined:
Sat Sep 22, 2007 5:58 am

Sat Apr 26, 2008 2:48 am

What subnet for the mentioned public IP address?

The public IP is assigned with a /32 mask; I'll add that to the details.

Another question is, if I send two diagrams (let's say one for logical, and other is for physical) is it considered that they are combined to one entry by myself? An JPG /PNG image represent one diagram I guess so?

I probably should have clarified this in the contest announcement. You can have one drawing with multiple pages (tabs) to express different "layer" views, but each page must still be within the 8.5x11" limit, and all pages will be considered a single entry. That is to say, they must make sense together. I'm also adding a two-page maximum, to ensure brevity.

Sorry if anyone interpreted a one-page limitation; remember you have until Tuesday to resubmit if you want to!

User avatar
Paris Heng
Senior Member
Posts:
346
Joined:
Sat Jun 09, 2007 2:03 am
Certs:
CCNA|CCNP|HCNP|SCLP|NSE

Sun Apr 27, 2008 12:28 am

In the drawing, may i use the real Cisco switch figure?

Example: http://www.hardware.com/products/cnet/I330050.jpg

User avatar
stretch
Post Whore
Posts:
1254
Joined:
Sat Sep 22, 2007 5:58 am

Sun Apr 27, 2008 5:51 am

* Drawings can be done on any platform (Visio, Kivio, dia, etc), but entries must be submitted in JPG, GIF, or PNG format. You are free to use any symbols or icons you have acquired legally.

Sure.

yapchinhoong
New Member
Posts:
2
Joined:
Sun Apr 27, 2008 9:22 pm

Firewall Inside IP Address and Switch_A1 Gi0/1

Sun Apr 27, 2008 11:15 pm

yo stretch, what is the IP address of the inside interface of the firewall? According to the diagram, it is 192.168.0.66/26; while according to the post is 192.168.0.65/26.

another problem is Port Gi0/1 of Switch_A1. It connects to both Firewall management interface and uplink to CORE according to the info provided.

Thanks. 8)

User avatar
stretch
Post Whore
Posts:
1254
Joined:
Sat Sep 22, 2007 5:58 am

Mon Apr 28, 2008 6:23 am

yo stretch, what is the IP address of the inside interface of the firewall? According to the diagram, it is 192.168.0.66/26; while according to the post is 192.168.0.65/26.


The drawing is correct; the inside interface of the firewall is 192.168.0.66/26. I've corrected the details to reflect this.

another problem is Port Gi0/1 of Switch_A1. It connects to both Firewall management interface and uplink to CORE according to the info provided.


Switch_A1 should be connected to the firewall's management interface through it's G0/2 interface. I've corrected this in the details.

Kudos for your attention to detail. Of course, all these errors were 100% intentional, and I just wanted to see if people would catch them... Yeah, that's it... 8)

User avatar
nicklauscombs
Ultimate Member
Posts:
669
Joined:
Thu Apr 17, 2008 11:13 am
Certs:
CCNP, CCNA: Security, JNCIA-FWV, JNCIA-SSL

Mon Apr 28, 2008 10:08 am

I really enjoyed reading the network warrior book, what a great prize for the contest!

User avatar
Steve
Site Admin
Posts:
10617
Joined:
Mon Dec 06, 2004 6:46 pm
Certs:
CCNA

Mon Apr 28, 2008 10:52 am

Have you had any entries yet?

User avatar
kraelen
CCIE #24211
Posts:
131
Joined:
Fri Apr 11, 2008 2:51 pm

Mon Apr 28, 2008 11:27 am

I really think it was kindda a short notice contest, Only 4 days to work on it? C'mon guys.

User avatar
stretch
Post Whore
Posts:
1254
Joined:
Sat Sep 22, 2007 5:58 am

Mon Apr 28, 2008 12:33 pm

I've received five entries so far, and comments in the thread seem to indicate there are others in the works.

I really think it was kindda a short notice contest, Only 4 days to work on it? C'mon guys.

I purposefully kept the deadline short so interest in the contest doesn't fade out. And honestly, it's not a huge task... a couple people submitted their entries the same day the contest was announced.

'
Next

Return to Forum Lobby

Who is online

Users browsing this forum: No registered users and 82 guests