Project

Report
On
BANKING AND ATM NETWORK
(TECHNOLOGY:CCNA)

Bachelor of Technology (Information Technology)

(Session: 2009-2012)

Page 1
Project Submitted To:
Project Submitted By: Er.
Kapil Saini SONIA(3509384-L) (Asst
Prof, CSE & IT Deptt) PARDEEP(3509388-L)

CONTENTS
CONTENTS

S No Component Page Number

1 Acknowledgement 3
2 Declaration 4
3 About technology 5

4 Introduction 7
5 Requirements 9
6 Network Schematic 10
7 IP Addressing 11
8 Router Configuration 13
9 Routing Protocol 15

10 Network Address Translation (NAT) 17

11 Device configuration 21
12 Results 22
13 46

Page 2
 ACKNOWLEDGEMENT
ACKNOWLEDGEMENT

It is my pleasure to acknowledge the help that I had received from different individuals during my
project completion.
My first sincere appreciation and gratitude goes to respected Dr. R. K. Kohli, the Director-
Principal of Technology Education & Research Integrated Institute Kurukshetra for the
encouragement and unstinted support given by him.

I would like to acknowledge the continuous guidance and incessant support rendered by Mr.
Sumit Aggarwal, Head of the Department of I. T. not only for this project but also in my overall
career development.

Also, it gives me immense pleasure to express my sincere and wholehearted sense of gratitude to
my esteemed Er. Kapil Saini (Assistant Professor) for their invaluable and untiring guidance
and supervision throughout this session. To derive benefits of their enormous experience, it is a
matter of great privilege for me.

I am grateful to Mr. Satnam Singh (Project Guide), Alpha Technologies Pvt. Ltd. for his
guidance, inspiration and constructive suggestions that helped me in the preparation of this
project.

I also take this opportunity to express my sincere thanks and full appreciation to Mr. Vinay
Mohan Sharma (Training Head), Alpha Technologies Pvt. Ltd., who extended his wholehearted
cooperation; moral support and rendering ungrudging assistance whenever and wherever need
arisen. I am very thankful to him.

I want to convey my heartfelt gratitude to Mr. Pankaj Arora who has helped me in the
successful completion of this project.

Moral, intellectual and very frequently required support from all the faculty members is also
hereby acknowledged.

Page 3
 Sonia , Pardeep

DECLARATION
DECLARATION

I hereby certify the work which is being presented in the project entitled “Banking & ATM
Networking” by “SONIA & PARDEEP,” in partial fulfillment of requirements for the award of
degree B.Tech (INFORMATION TECHNOLOGY) submitted in the Department of
INFORMATION TECHNOLOGY at Technology Education & Research Integrated Institute,
Kurukshetra under Kurukshetra University, Kurukshetra is carried out during a period from Aug.
2011 to Dec. 2011 under the supervision of “Er. Kapil Saini, Assistant Professor, Department of
Information Technology, TERII, Kurukshetra. The matter presented in this project has not been
submitted by me in any other University/ Institute for the award of B.Tech. Degree.

O
O
Kurukshetra Sonia(3509384-l)
R
R
Pardeep(3509384-l)
G
G
Page 4
A
A
 NN
II
ABOUT
ABOUTTHE
THETECHNOLOGY
TECHNOLOGY SS
Cisco Certified Network Associate (CCNA®) validates the ability to
install, configure, operate, and troubleshoot medium-size route and AA
switched networks, including implementation and verification of
connections to remote sites in a WAN. CCNA curriculum includes basic
mitigation of security threats, introduction to wireless networking
TT
concepts and terminology, and performance-based skills. This new
curriculum also includes (but is not limited to) the use of these
II
protocols: IP, Enhanced Interior Gateway Routing Protocol (EIGRP),
Serial Line Interface Protocol Frame Relay, Routing Information Protocol
OO
N
Version 2 (RIPv2), VLANs, Ethernet, access control lists (ACLs).

N
SOFTWARE USED: PACKET TRACER 5.0 PP
RR
OO
FF
Page 5

II
 LL
INTRODUCTION
INTRODUCTION
EE
The following case study is used to illustrate the process and documentation required for a
network design. This case study presents a scenario in which the Banks & ATM has hired a
Network Consultant Group to design their network. In order to help organization this project, the
scenario has been broken into eight phases listing requirements for each phase. A worksheet is to
be completed for each part. A formal report, similar to what would be given to the banks, will
need to be created after all tasks have been completed.

This case study requires that you accomplish the following:

1. Use the resources provided, diagram and narrative, to set up the physical network.

2. Set up an IP subnetting scheme

3. Configure the routers as required.

4. Set up and configure the switches and VLANS as required.

5. Verify and troubleshoot all connections.

6. Provide detailed documentation in the appropriate format.

7. Provide a written final report

Page 6
 REQUIREMENTS
REQUIREMENTS

The Banks & ATM has provided a partially completed logical diagram of the required network.

The company has also provided networking equipment for development and demonstration.

 The company consists of 3 remote locations. One being the main building and other two
locations on a remote site.
 The main building consists of 6 departments with the following requirement:

Department Number Remarks

BANKS 120 Size can vary up to 255
ATM 120 Size can vary up to 255
CONTYROL 120 Size can vary up to 255

 8 servers that distributed in all locations

 The following ip address to be used for connection with SERVER
 198.168.0.1
 198.168.0.2
 198.168.0.3
 198.168.0.4
 198.168.0.5
 198.168.0.6
 198.168.0.7
 198.163.0.1
 198.163.0.2
 198.163.0.3
 198.163.0.4
 198.163.0.5
 198.163.0.6
 198.163.0.7

 Following address are used for internal addressing.

 10.0.0.0
 20.0.0.0
 30.0.0.0
 40.0.0.0
 11.0.0.0
 21.0.0.0

Page 7
 31.0.0.0
 41.0.0.0
 Use VLSM for IP addressing.
 Device details

DEVICE MODEL NUMBER

Router 2811 4
Switches 2960 10
Server - 11

Page 8
NETWORK STRUCTURE

Page 9
 IP
IPADDRESSING
ADDRESSING

An IP (Internet Protocol) address is a unique identifier for a node or host connection on an IP

network. An IP address is a 32 bit binary number usually represented as 4 decimal values, each
representing 8 bits, in the range 0 to 255 (known as octets) separated by decimal points. This is
known as "dotted decimal" notation.

Address Classes
There are 5 different address classes. You can determine which class any IP address is in by
examining the first 4 bits of the IP address.
· Class A addresses begin with 0xxx, or 1 to 126 decimal.
· Class B addresses begin with 10xx, or 128 to 191 decimal.
· Class C addresses begin with 110x, or 192 to 223 decimal.
· Class D addresses begin with 1110, or 224 to 239 decimal.
· Class E addresses begin with 1111, or 240 to 254 decimal.
Addresses beginning with 01111111, or 127 decimal, are reserved for loopback and for internal
testing on a local machine Class D addresses are reserved for multicasting. Class E addresses are
reserved for future use.

Subnetting
Subnetting an IP Network can be done for a variety of reasons, including organization, use of
different physical media (such as Ethernet, FDDI, WAN, etc.), preservation of address space, and
security. The most common reason is to control network traffic. In an Ethernet network, all nodes
on a segment see all the packets transmitted by all the other nodes on that segment. Performance
can be adversely affected under heavy traffic loads, due to collisions and the resulting
retransmissions. A router is used to connect IP networks to minimize the amount of traffic each
segment must receive.

Subnet Masking
Applying a subnet mask to an IP address allows you to identify the network and node parts of the
address. Performing a bitwise logical AND operation between the IP address and the subnet
mask results in the Network Address or Number.

DHCP
The Dynamic Host Configuration Protocol (DHCP) is an Internet protocol for automating the
configuration of computers that use TCP/IP. DHCP can be used to automatically assign IP
addresses, to deliver TCP/IP stack configuration parameters such as the subnet mask and default

Page 10
router, and to provide other configuration information such as the addresses for printer, time and
news servers.

Page 11
 INTERNAL
INTERNALIP
IPADDRESSING
ADDRESSING

Number of Network Subnet Max In Use Network

host Mask Number of Name
Address (Yes/No)
addresses Hosts
required Possible

30 10.0.0.0 /27 30 Yes PNB Control

60 10.0.0.32 /26 30 Yes PNB Bank

6 10.0.0.66 /29 30 Yes PNB ATM

30 20.0.0.0 /27 30 Yes SBI Control

25 20.0.0.32 /24 30 Yes SBI Bank

24 20.0.0.64 /24 30 Yes SBI ATM

20 30.0.0.0 /24 30 Yes HDFC control

30 30.0.0.32 /27 30 Yes HDFC BANK

30 30.0.0.64 /27 30 Yes HDFC ATM

255 40.0.0.0 /27 30 Yes ICICI Bank

NOTE:
 Overlapping subnets in sales, marketing department etc is note done as more hosts can be
accommodated in the given domain whenever required
 All devices are assigned ip address using DHCP

SERVER
SERVERADDRESSING
ADDRESSING

Page 12
SERVER IP ADDRESS LOCATION
DNS 198.168.0.6 CENTER
HTTP 198.168.0.2
HTTP 198.168.0.3 CENTER
HTTP 198.168.0.4 CENTER

HTTP 198.168.0.5 CENTER

FTP 198.168.0.7 CENTER
TFTP 198.168.0.8 CENTER
HTTP 198.163.0.2 CENTER

HTTP 198.163.0.3
HTTP 198.163.0.4 CENTER

HTTP 198.163.0.5 CENTER

DNS 198.163.0.6 CENTER

TFTP 198.163.0.7 CENTER

Router Configuration :
NORTH BANKING ROUTER (DCE Speed 64000)
Interface/Sub Description and Network Interface IP Subnet Mask
Purpose Number address
Interface

Type/Number

S0/3/0 Link to PNB 192.168.0.0 192.168.0.1 /30

S0/3/1 Link to SBI 192.168.0.4 192.168.0.5 /30

Se0/0/0 Link to HDFC 192.168.0.8 192.168.0.9 /30

Se0/1/0 Link to ICICI 192.168.0.12 192.168.0.13 /30

Fa0/0 Link to servers 198.168.0.0 198.168.0.1 /30

PNB ROUTER (DTE)

Page 13
 Interface/Sub Description and Network Interface IP Subnet Mask
Purpose Number address
Interface

Type/Number

SE0/1 Link To Bank 193.168.0.32 193.168.0.33 /27

Se0/2 Link to north banking 192.168.0.0 192.168.0.2 /30

Se0/3 Link to Contorl 193.168.0.0 193.168.0.1 /27

Se0/0 Link to ATM 193.168.0.65 193.168.0.65 /27

BANK ROUTER (DTE)

Interface/Sub Description and Network Interface IP Subnet Mask
Interface Purpose Number address
Type/Number
SE0/2 Link to PNB 193.168.0.4 193.168.0.6 /30

Fa0/0 Link to Switch 10.0.0.32 10.0.0.1 /27

CONTROL ROUTER (DTE)

Interface/Sub Description and Network Interface IP Subnet Mask
Interface Purpose Number address
Type/Number
SE0/2 Link to PNB 193.168.0.0 193.168.0.1 /30

Fa0/0 Link to Switch 10.0.0.0 10.0.0.1 /27

ATM ROUTER (DTE)

Interface/Sub Description and Network Interface IP Subnet Mask

Interface Purpose Number address
Type/Number
SE0/2 Link to PNB 193.168.0.8 193.168.0.9 /30

Fa0/0 Link to Switch 10.0.0.64 10.0.0.65 /27

SBI ROUTER (DTE)

Page 14
Interface/Sub Description and Network Interface IP Subnet Mask
Interface Purpose Number address
Type/Number
S0/2 Link to North bank 192.168.0.4 192.168.0.5 /30

Se0/3 Link to Bank 193.168.0.12 193.168.0.13 /27

Se0/1 Link to Control 193.168.0.16 193.168.0.17 /27

Se0/0 Link to Atm 192.168.0.20 193.168.0.21 /27

CONTROL ROUTER (DTE)

Interface/Sub Description and Network Interface IP Subnet Mask
Interface Purpose Number address
Type/Number
SE0/2 Link to SBI 193.168.0.12 193.168.0.13 /30

Fa0/0 Link to Switch 20.0.0.0 20.0.0.1 /27

BANK ROUTER (DTE)

Interface/Sub Description and Network Interface IP Subnet Mask
Interface Purpose Number address
Type/Number
SE0/2 Link to SBI 193.168.0.16 193.168.0.17 /30

Fa0/0 Link to Switch 20.0.0.32 20.0.0.33 /27

ATM ROUTER (DTE)

Interface/Sub Description and Network Interface IP Subnet Mask
Interface Purpose Number address
Type/Number
SE0/2 Link to SBI 193.168.0.20 193.168.0.21 /30

Fa0/0 Link to Switch 20.0.0.64 20.0.0.65 /27

HDFC ROUTER (DTE)

Interface/Sub Description and Network Interface IP Subnet Mask
Interface Purpose Number address
Type/Number
S0/2 Link to North bank 192.168.0.8 192.168.0.9 /30

Se0/3 Link to Bank 194.168.0.0 194.168.0.1 /27

Se0/1 Link to Control 194.168.0.4 194.168.0.5 /27

Se0/0 Link to Atm 194.168.0.8 194.168.0.9 /27

CONTROL ROUTER (DTE)

Page 15
 Interface/Sub Description and Network Interface IP Subnet Mask
Interface Purpose Number address
Type/Number
SE0/2 Link to HDFC 194.168.0.0 194.168.0.1 /30

Fa0/0 Link to Switch 30.0.0.0 30.0.0.1 /27

BANK ROUTER (DTE)

Interface/Sub Description and Network Interface IP Subnet Mask
Interface Purpose Number address
Type/Number
SE0/2 Link to PNB 193.168.0.4 194.168.0.5 /30

Fa0/0 Link to Switch 10.0.0.0 10.0.0.1 /27

ATM ROUTER (DTE)

Interface/Sub Description and Network Interface IP Subnet Mask
Interface Purpose Number address
Type/Number
SE0/2 Link to PNB 194.168.0. 194.168.0.5 /30

Fa0/0 Link to Switch 10.0.0.0 10.0.0.1 /27

ICICI ROUTER
(DTE)
Interface/Sub Description and Network Interface IP Subnet Mask
Interface Purpose Number address
Type/Number
S0/2 Link to North bank 192.168.0.8 192.168.0.5 /30

Se0/3 Link to Bank 194.168.0.12 193.168.0.13 /27

Se0/1 Link to Control 194.168.0.16 193.168.0.17 /27

Se0/0 Link to Atm 194.168.0.20 193.168.0.21 /27

CONTROL ROUTER (DTE)

Page 16
 Interface/Sub Description and Network Interface IP Subnet Mask
Interface Purpose Number address
Type/Number
SE0/2 Link to HDFC 194.168.0.12 194.168.0.13 /30

Fa0/0 Link to Switch 40.0.0.0 30.0.0.1 /27

BANK ROUTER (DTE)

Interface/Sub Description and Network Interface IP Subnet Mask
Interface Purpose Number address
Type/Number
SE0/2 Link to PNB 194.168.0.4 194.168.0.5 /30

Fa0/0 Link to Switch 40.0.0.32 40.0.0.33 /27

ATM ROUTER (DTE)

Interface/Sub Description and Network Interface IP Subnet Mask
Interface Purpose Number address
Type/Number
SE0/2 Link to PNB 194.168.0.20 194.168.0.21 /30

Fa0/0 Link to Switch 40.0.0.64 40.0.0.65 /27

SOUTH BANKING (
DCE Speed 64000)
Interface/SubInterface Description and Purpose Network Interface IP Subnet
Number address Mask
Type/Number

S0/1/1 Link to SBI 192.163.0.4 192.163.0.5 /30

SE0/1/0 Link to PNB 192.163.0.0 192.163.0.1 /30

SE0/0/0 Link to HDFC 192.163.0.8 192.163.0.8 /30

SE0/3/0 Link to ICICI 192.163.0.12 192.163.0.13 /30

SE0/3/1 Link to Server 198.163.0.0 198.163.0.1 /30

Page 17
 PNB ROUTER (DTE)
Interface/Sub Description and Network Interface IP Subnet Mask
Purpose Number address
Interface

Type/Number

SE0/1 Link To Control 122.168.0.32 122.168.0.33 /27

Se0/2 Link to South banking 192.16.0.0 192.168.0.2 /30

Se0/3 Link to Bnak 122.168.0.0 122.168.0.1 /27

Se0/0 Link to ATM 122.168.0.64 12.168.0.65 /27

BANK ROUTER (DTE)

Interface/Sub Description and Network Interface IP Subnet Mask
Interface Purpose Number address
Type/Number
SE0/0 Link to PNB 122.168.0.0 122.168.0.2 /30

Fa0/0 Link to Switch 11.0.0.32 11.0.0.33 /27

CONTROL ROUTER (DTE)

Interface/Sub Description and Network Interface IP Subnet Mask
Interface Purpose Number address
Type/Number
SE0/2 Link to PNB 122.168.0.64 122.168.0.65 /30

Fa0/0 Link to Switch 11.0.0.64 11.0.0.65 /27

ATM ROUTER (DTE)

Interface/Sub Description and Network Interface IP Subnet Mask

Interface Purpose Number address
Type/Number
SE0/2 Link to PNB 122.168.0.0 122.168.0.1 /30

Fa0/0 Link to Switch 11.0.0.0 11.0.0.0 /27

SBI ROUTER (DTE)

Page 18
Interface/Sub Description and Network Interface IP Subnet Mask
Interface Purpose Number address
Type/Number
S0/2 Link to South bank 192.163.0.4 192.163.0.6 /30

Se0/3 Link to Bank 122.168.0.14 122.168.0.12 /27

Se0/1 Link to Control 122.168.0.16 122.168.0.17 /27

Se0/0 Link to Atm 122.168.0.20 122.168.0.21 /27

CONTROL ROUTER (DTE)

Interface/Sub Description and Network Interface IP Subnet Mask
Interface Purpose Number address
Type/Number
SE0/2 Link to SBI 122.168.0.12 122.168.0.13 /30

Fa0/0 Link to Switch 21.0.0.32 21.0.0.33 /27

BANK ROUTER (DTE)

Interface/Sub Description and Network Interface IP Subnet Mask
Interface Purpose Number address
Type/Number
SE0/2 Link to SBI 122.168.0.16 122.168.0.17 /30

Fa0/0 Link to Switch 21.0.0.0 21.0.0.1 /27

ATM ROUTER (DTE)

Interface/Sub Description and Network Interface IP Subnet Mask
Interface Purpose Number address
Type/Number
SE0/2 Link to SBI 122.168.0.20 122.168.0.21 /30

Fa0/0 Link to Switch 21.0.0.64 21.0.0.65 /27

HDFC ROUTER (DTE)

Interface/Sub Description and Network Interface IP Subnet Mask
Interface Purpose Number address
Type/Number
S0/2 Link to South bank 192.163.0.8 192.163.0.9 /30

Se0/3 Link to Bank 122.122.0.0 122.122.0.1 /27

Se0/1 Link to Control 122.122.0.4 122.122.0.5 /27

Se0/0 Link to Atm 122.122.0.8 122.122.0.9 /27

CONTROL ROUTER (DTE)

Page 19
 Interface/Sub Description and Network Interface IP Subnet Mask
Interface Purpose Number address
Type/Number
SE0/2 Link to HDFC 122.122.0.4 122.122.0.5 /30

Fa0/0 Link to Switch 31.0.0.4 31.0.0.5 /27

BANK ROUTER (DTE)

Interface/Sub Description and Network Interface IP Subnet Mask
Interface Purpose Number address
Type/Number
SE0/2 Link to PNB 122.122.0.0 122.122.0.1 /30

Fa0/0 Link to Switch 31.0.0.0 31.0.0.1 /27

ATM ROUTER (DTE)

Interface/Sub Description and Network Interface IP Subnet Mask
Interface Purpose Number address
Type/Number
SE0/2 Link to PNB 122.122.0.8 122.122.0.9 /30

Fa0/0 Link to Switch 31.0.0.64 31.0.0.65 /27

ICICI ROUTER (DTE)

Interface/Sub Description and Network Interface IP Subnet Mask
Interface Purpose Number address
Type/Number
S0/2 Link to North bank 122.122.012 122.122.0.13 /30

Se0/3 Link to Bank 122.122.0.20 122.122.0.21 /27

Se0/1 Link to Control 122.122.0.16 122.122.0.17 /27

Se0/0 Link to Atm 122.122.0.12 122.122.0.13 /27

CONTROL ROUTER
(DTE)

Page 20
Interface/Sub Description and Network Interface IP Subnet Mask
Interface Purpose Number address
Type/Number
SE0/2 Link to HDFC 122.122.0.16 122.122.0.17 /30

Fa0/0 Link to Switch 41.0.0.32 41.0.0.33 /27

BANK ROUTER (DTE)

Interface/Sub Description and Network Interface IP Subnet Mask
Interface Purpose Number address
Type/Number
SE0/2 Link to PNB 122.122.0.12 122.122.13 /30

Fa0/0 Link to Switch 41.0.0.0 41.0.0.1 /27

ATM ROUTER (DTE)

Interface/Sub Description and Network Interface IP Subnet Mask
Interface Purpose Number address
Type/Number
SE0/2 Link to PNB 122.122.0.20 122.122.0.21 /30

Fa0/0 Link to Switch 41.0.0.64 41.0.0.65 /27

ROUTING
ROUTINGPROTOCOL
PROTOCOL

Page 21
Routing is the act of moving information across an internetwork from a source to a destination.
Routing involves two basic activities: determining optimal routing paths and transporting
information groups (typically called packets) through an internetwork.

Routing protocols use metrics to evaluate what path will be the best for a packet to travel. A
metric is a standard of measurement, such as path bandwidth, that is used by routing algorithms
to determine the optimal path to a destination. To aid the process of path determination, routing
algorithms initialize and maintain routing tables, which contain route information. Route
information varies depending on the routing algorithm used.

Routing algorithms fill routing tables with a variety of information. Destination/next hop
associations tell a router that a particular destination can be reached optimally by sending the
packet to a particular router representing the "next hop" on the way to the final destination. When
a router receives an incoming packet, it checks the destination address and attempts to associate
this address with a next hop.

Routing algorithms often have one or more of the following design goals:

• Optimality
• Simplicity and low overhead
• Robustness and stability
• Rapid convergence
• Flexibility
Types of routing :
STATIC ROUTING ALGORITHMS are hardly algorithms at all, but are table mappings
established by the network administrator before the beginning of routing. These mappings do not
change unless the network administrator alters them. Algorithms that use static routes are simple
to design and work well in environments where network traffic is relatively predictable and
where network design is relatively simple.

DYNAMIC ROUTING ALGORITHMS which adjust to changing network circumstances by

analyzing incoming routing update messages. If the message indicates that a network change has
occurred, the routing software recalculates routes and sends out new routing update messages.
These messages permeate the network, stimulating routers to rerun their algorithms and change
their routing tables accordingly.

The various routing protocol that can be used

are:

Page 22
 1. RIP (routing information protocol) is a distance vector routing protocol. It sends
complete routing table out to all other members in an interval of 30 seconds. It uses hop
count as a metric and by default hop count is set to 15.
2. IGRP is a distance vector Interior Gateway Protocol (IGP). IGRP uses a composite
metric that is calculated by factoring weighted mathematical values for internetwork
delay, bandwidth, reliability, and load. Network administrators can set the weighting
factors for each of these metrics, although great care should be taken before any default
values are manipulated.

3. EIGRP Key capabilities that distinguish EIGRP from other routing protocols include
fast convergence, support for variable-length subnet mask, support for partial updates,
and support for multiple network layer protocols.
A router running EIGRP stores all its neighbors' routing tables so that it can quickly adapt
to alternate routes. If no appropriate route exists, EIGRP queries its neighbors to discover
an alternate route.
EIGRP does not make periodic updates. Instead, it sends partial updates only when the
metric for a route changes.
4. OSPF is a link-state routing protocol that calls for the sending of link-state
advertisements (LSAs) to all other routers within the same hierarchical area. Information
on attached interfaces, metrics used, and other variables is included in OSPF LSAs. As
OSPF routers accumulate link-state information, they use the SPF algorithm to calculate
the shortest path to each node.
Property 1 Property 2 Property 3 Property 4 Property 5 Property 6 Total
Routing
Supports Scalable Uses Has view Easy to Proprietary
Protocol
VLSM multicast of configure
updates complete
toplology

RIP V1 - - - - - - 2

RIP v2 - - - - - - 4

IGRP - - - - - - 2

EIGRP - - - - - - 3

OSPF + + + + - + 5

Our configuration
*****OSPF protocol in all routers with process id 10 in single area 0*****

Page 23
 VLAN
VLAN
.

VLAN is a switched network that is logically segmented by functions, project teams, or applications
without regard to the physical location of users. For example, several end stations might be grouped as a
department, such as engineering or accounting. When the end stations are physically located close to
one another, you can group them into a LAN segment. If any of the end stations are in different buildings
(not the same physical LAN segment), you can then group them into a VLAN.

You can assign each switch port to a VLAN. Ports in a VLAN share broadcast traffic. Ports that
do not belong to that VLAN do not share the broadcast traffic.

VLANs provide the following features:

• Simplification of end-station moves,

adds, and changes
When an end station is physically moved to a new location, its attributes can be reassigned from
a network management station through Simple Network Management Protocol (SNMP) or
through the user interface menus. When an end station is moved within the same VLAN, it
retains its previously assigned attributes in its new location. When an end station is moved to a
different VLAN, the attributes of the new VLAN are applied to the end station.

• Controlled traffic activity

VLANs allow ports on the same or different switches to be grouped so that traffic is confined to
members of only that group. This feature restricts broadcast, unicast, and multicast traffic
(flooding) only to ports included in a certain VLAN. The management domain is a group of
VLANs that are managed by a single administrative authority.

• Workgroup and network security

You can increase security by segmenting the network into distinct broadcast domains. To this
end, VLANs can restrict the number of users in a broadcast domain. You can also control the size
and composition of the broadcast domain by controlling the size and composition of a VLAN.

Page 24
 NETWORK
NETWORKADDRESS
ADDRESSTRANSLATION
TRANSLATION(NAT)
(NAT)

NAT allows an Internet Protocol (IP) network to maintain public IP addresses separately from
private IP addresses. NAT is a popular technology for Internet connection sharing. It is also
sometimes used in server load balancing applications on corporate networks.

In it's most common configuration, NAT maps all of the private IP addresses on a home network
to the single IP address supplied by an Internet Service Provider (ISP). This allows computers on
the home LAN to share a single Internet connection. Additionally, it enhances home network
security by limiting the access of external computers into the home IP network space.

NAT works by snooping both incoming and outgoing IP datagrams. As needed, it modifies the
source or destination address in the IP header (and the affected checksums) to reflect the
configured address mapping. NAT technically supports either fixed or dynamic mappings of one
or more internal and external IP addresses.

Network Address Translation allows a single device, such as a router, to act as agent between the
Internet (or "public network") and a local (or "private") network. This means that only a single
unique IP address is required to represent an entire group of computers to anything outside their
network.

The shortage of IP addresses is only one reason to use NAT. Two other good reasons are:

 Security
 Administration

Page 25
 DEVICE
DEVICECONFIGURATION
CONFIGURATION

North BANKING:-
Rou Router#sh run

Building configuration...

Current configuration : 1317 bytes

version 12.4

no service timestamps log datetime msec

no service timestamps debug datetime msec

no service password-encryption

interface FastEthernet0/0

ip address 198.168.0.1 255.255.255.224

duplex au

to

speed auto

interface FastEthernet0/1

no ip address

duplex auto

speed auto

shutdown

interface Serial0/0/0

no ip address

shutdown

Page 26
interface Serial0/0/1

no ip address

shutdown

interface Serial0/1/0

bandwidth 325435

ip address 192.168.0.9 255.255.255.252

clock rate 64000

interface Serial0/1/1

bandwidth 325435

ip address 192.168.0.13 255.255.255.252

clock rate 64000

interface Serial0/2/0

no ip address

shutdown

interface Serial0/2/1

no ip address

shutdown

interface Serial0/3/0

bandwidth 4545

ip address 192.168.0.1 255.255.255.252

clock rate 64000

interface Serial0/3/1

bandwidth 4545

ip address 192.168.0.5 255.255.255.252

Page 27
clock rate 64000

interface Vlan1

no ip address

shutdown

router ospf 100

log-adjacency-changes

network 192.168.0.0 0.0.0.3 area 0

network 192.168.0.4 0.0.0.3 area 0

network 192.168.0.8 0.0.0.3 area 0

network 192.168.0.12 0.0.0.3 area 0

network 198.168.0.0 0.0.0.3 area 0

network 198.168.0.0 0.0.0.31 area 0

ip classless

line con 0

line vty 0 4

login

end

ters

PNB SERVER:-

Router#SH run

Building configuration...

Current configuration : 894 bytes

version 12.2

no service timestamps log datetime msec

Page 28
no service timestamps debug datetime msec

no service password-encryption

hostname Router

interface FastEthernet0/0

no ip address

duplex auto

speed auto

shutdown

interface FastEthernet0/1

no ip address

duplex auto

speed auto

shutdown

interface Serial0/0

ip address 193.168.0.5 255.255.255.252

clock rate 64000

interface Serial0/1

ip address 193.168.0.9 255.255.255.252

clock rate 64000

interface Serial0/2

ip address 192.168.0.2 255.255.255.252

interface Serial0/3

ip address 193.168.0.1 255.255.255.252

clock rate 64000

router ospf 100

Page 29
log-adjacency-changes

network 192.168.0.0 0.0.0.3 area 0

network 193.168.0.0 0.0.0.3 area 0

network 193.168.0.4 0.0.0.3 area 0

network 193.168.0.8 0.0.0.3 area 0

ip classless

line con 0

line vty 0 4

login

end

SBI SERVER:-

Router#Sh run

Building configuration...

Current configuration : 1116 bytes

version 12.2

no service timestamps log datetime msec

no service timestamps debug datetime msec

no service password-encryption

hostname Router

ip dhcp excluded-address 20.0.0.1

ip dhcp pool abc2

network 20.0.0.0 255.255.255.224

default-router 20.0.0.1

dns-server 198.168.0.6

interface FastEthernet0/0

Page 30
ip address 20.0.0.1 255.255.255.224

ip nat inside

duplex auto
speed auto

interface FastEthernet0/1

no ip address

duplex auto

speed auto

shutdown

interface Serial0/0

no ip address

shutdown

interface Serial0/1

no ip address

shutdown

interface Serial0/2

ip address 193.168.0.14 255.255.255.252

ip nat outside

interface Serial0/3

no ip address

shutdown

router ospf 100

log-adjacency-changes

network 20.0.0.0 0.0.0.31 area 0

Page 31
network 193.168.0.12 0.0.0.3 area 0

ip nat pool contorl 193.168.0.13 193.168.0.14 netmask

255.255.255.252

ip nat inside source list 1 pool contorl

ip classless

access-list 1 permit 20.0.0.0 0.0.0.31

access-list 10 deny any

access-list 10 permit 20.0.0.32 0.0.0.31

line con 0

line vty 0 4

login

end

HDFC ROUTER:-

Router#sh run
Building configuration...

Current configuration : 929 bytes

version 12.2

no service timestamps log datetime msec

no service timestamps debug datetime msec

no service password-encryption

hostname Router

interface FastEthernet0/0

no ip address

Page 32
duplex auto

speed auto

shutdown

interface FastEthernet0/1

no ip address

duplex auto

speed auto

shutdown

interface Serial0/0

bandwidth 67767

ip address 194.168.0.5 255.255.255.252

clock rate 64000

interface Serial0/1

bandwidth 78989

ip address 194.168.0.9 255.255.255.252

clock rate 64000

interface Serial0/2

ip address 192.168.0.10 255.255.255.252

interface Serial0/3

ip address 194.168.0.1 255.255.255.252

clock rate 64000

router ospf 100

log-adjacency-changes

network 192.168.0.8 0.0.0.3 area 0

network 194.168.0.0 0.0.0.3 area 0

network 194.168.0.4 0.0.0.3 area 0

Page 33
network 194.168.0.8 0.0.0.3 area 0

ip classless

line con 0

line vty 0 4

login

end

ICICI ROUTER:-

Router#SH RUN

Building configuration...

Current configuration : 920 bytes

version 12.2

no service timestamps log datetime msec

no service timestamps debug datetime msec

no service password-encryption

hostname Router

interface FastEthernet0/0

no ip address

duplex auto

speed auto

shutdown

interface FastEthernet0/1

no ip address

duplex auto

speed auto

Page 34
shutdown

interface Serial0/0

ip address 194.168.0.21 255.255.255.252

clock rate 64000

interface Serial0/1

ip address 192.168.0.14 255.255.255.252

interface Serial0/2

ip address 194.168.0.13 255.255.255.252

clock rate 64000

interface Serial0/3

bandwidth 234445

ip address 194.168.0.17 255.255.255.252

clock rate 64000

router ospf 100

log-adjacency-changes

network 192.168.0.12 0.0.0.3 area 0

network 194.168.0.12 0.0.0.3 area 0

network 194.168.0.16 0.0.0.3 area 0

network 194.168.0.20 0.0.0.3 area 0

ip classles

line con 0

line vty 0 4

login

end

SOUTH SERVER:-

Page 35
SOUTHBANK#SH RUN

Building configuration...

Current configuration : 1266 bytes

version 12.4

no service timestamps log datetime msec

no service timestamps debug datetime msec

no service password-encryption

hostname SOUTHBANK

interface FastEthernet0/0

ip address 198.163.0.1 255.255.255.224

duplex auto

speed auto

interface FastEthernet0/1

no ip address

duplex auto

speed auto

shutdown

interface Serial0/0/0

ip address 192.163.0.13 255.255.255.252

clock rate 64000

interface Serial0/0/1

bandwidth 6743876

ip address 192.163.0.9 255.255.255.252

clock rate 64000

interface Serial0/1/0

Page 36
bandwidth 345356

ip address 192.163.0.1 255.255.255.252

clock rate 64000

interface Serial0/1/1

ip address 192.163.0.5 255.255.255.252

clock rate 64000

interface Serial0/2/0

no ip address

shutdown

interface Serial0/2/1

no ip address

shutdown

interface Serial0/3/0

no ip address

shutdown

interface Serial0/3/1

no ip address

shutdown

interface Vlan1

no ip address

shutdown

router ospf 100

log-adjacency-changes

network 192.163.0.0 0.0.0.3 area 0

Page 37
network 192.163.0.4 0.0.0.3 area 0

network 192.163.0.8 0.0.0.3 area 0

network 192.163.0.12 0.0.0.3 area 0

network 198.163.0.0 0.0.0.31 area 0

ip classless

no cdp run

line con 0

line vty 0 4

login

end

PNB SERVER :-

Router#sh run

Building configuration...

Current configuration : 993 bytes

version 12.2

no service timestamps log datetime msec

no service timestamps debug datetime msec

no service password-encryption

hostname Router

interface FastEthernet0/0

no ip address

duplex auto

speed auto

shutdown

interface FastEthernet0/1

Page 38
no ip address

duplex auto

speed auto

shutdown

interface Serial0/0

bandwidth 4534

ip address 122.168.0.5 255.255.255.252

clock rate 64000

interface Serial0/1

bandwidth 7674

ip address 122.168.0.9 255.255.255.252

clock rate 64000

interface Serial0/2

ip address 192.163.0.2 255.255.255.252

interface Serial0/3

bandwidth 766734

ip address 122.168.0.1 255.255.255.252

clock rate 64000

router ospf 100

log-adjacency-changes

network 122.168.0.0 0.0.0.3 area 0

network 122.168.0.4 0.0.0.3 area 0

network 122.168.0.8 0.0.0.3 area 0

network 192.163.0.0 0.0.0.3 area 0

network 12.168.0.12 0.0.0.3 area 0

Page 39
ip classless

no cdp run

line con 0

line vty 0 4

login

end

SBI SERVER:-

SBIBANK#sh run

Building configuration...

Current configuration : 950 bytes

version 12.2

no service timestamps log datetime msec

no service timestamps debug datetime msec

no service password-encryption

hostname SBIBANK

interface FastEthernet0/0

no ip address

duplex auto

speed auto

shutdown

interface FastEthernet0/1

no ip address

duplex auto

Page 40
speed auto

shutdown

interface Serial0/0

bandwidth 43545

ip address 122.168.0.17 255.255.255.252

clock rate 64000

interface Serial0/1

bandwidth 3454546

ip address 122.168.0.21 255.255.255.252

clock rate 64000

interface Serial0/2

ip address 192.163.0.6 255.255.255.252

interface Serial0/3

ip address 122.168.0.13 255.255.255.252

clock rate 64000

router ospf 100

log-adjacency-changes

network 122.168.0.12 0.0.0.3 area 0

network 122.168.0.16 0.0.0.3 area 0

network 122.168.0.20 0.0.0.3 area 0

network 192.163.0.4 0.0.0.3 area 0

ip classless

no cdp run

line con 0

line vty 0 4

Page 41
login

end

HDFC SERVER:-

HDFCBANK#sh run

Building configuration...

Current configuration : 966 bytes

version 12.2

no service timestamps log datetime msec

no service timestamps debug datetime msec

no service password-encryption

hostname HDFCBANK

interface FastEthernet0/0

no ip address

duplex auto

speed auto

shutdown

interface FastEthernet0/1

no ip address

duplex auto

speed auto

shutdown

interface Serial0/0

bandwidth 354435

ip address 122.122.0.1 255.255.255.252

clock rate 64000

Page 42
interface Serial0/1

bandwidth 78433

ip address 122.122.0.5 255.255.255.252

clock rate 64000

interface Serial0/2

bandwidth 34566

ip address 192.163.0.10 255.255.255.252

interface Serial0/3

bandwidth 35455

ip address 122.122.0.9 255.255.255.252

clock rate 64000

router ospf 100

log-adjacency-changes

network 122.122.0.0 0.0.0.3 area 0

network 122.122.0.4 0.0.0.3 area 0

network 122.122.0.8 0.0.0.3 area 0

network 192.163.0.8 0.0.0.3 area 0

ip classless

line con 0

line vty 0 4

login

end

ICICI SERVER:-

ICICIBANK#SH RUN

Building configuration...

Page 43
Current configuration : 954 bytes

version 12.2

no service timestamps log datetime msec

no service timestamps debug datetime msec

no service password-encryption

hostname ICICIBANK

interface FastEthernet0/0

no ip address

duplex auto

speed auto

shutdown

interface FastEthernet0/1

no ip address

duplex auto

speed auto

shutdown

interface Serial0/0

ip address 122.122.0.13 255.255.255.252

clock rate 64000

interface Serial0/1

bandwidth 22345

ip address 122.122.0.17 255.255.255.252

clock rate 64000

Page 44
interface Serial0/2

ip address 192.163.0.14 255.255.255.252

interface Serial0/3

bandwidth 6568778

ip address 122.122.0.21 255.255.255.252

clock rate 64000

router ospf 100

log-adjacency-changes

network 122.122.0.12 0.0.0.3 area 0

network 122.122.0.16 0.0.0.3 area 0

network 122.122.0.20 0.0.0.3 area 0

network 192.163.0.12 0.0.0.3 area 0

ip classlesS

no cdp

line con 0

line vty 0 4

login

end

RETSULT
RETSULT
HTTP SERVER:-

Page 45
-

Page 46
DNS SERVER:-

Page 47
FTP:-

TFTP:-

Page 48
WEB BROWSING:-

WEB BROWSING:-

Page 49
Page 50
COMMUNICATION BETWEEN TWO PC’S AND NAT
TRANSLATION

Page 51
PING TO PC WITHOUT NAT

DHCP IP ADDRESS:-

REFRENCES
REFRENCES
Page 52
 CCNA Study Guide Sixth Edition Todd Lammle

 CISCO study material www.cisco.com

Page 53