Upload
tyrone-neal
View
225
Download
3
Tags:
Embed Size (px)
Citation preview
+
+ +
+
CONSOLIDATIONThe Technical Side - 5 Year View
Nate Gambill & Corey Spade - Network Engineers - St. Joseph County Schools
CONSOLIDATION - Not a 4 letter word
Actually it’s a 13 letter word.Consider another 13 letter word:
COLLABORATION
CONSOLIDATION=COLLABORATIONCOLLABORATION=COOPERATION
BACKGROUND
6 School Districts1 ISD
3 Network Administrators
Every other net engineer is:
1 - Less Intelligent than I am2 - A Crazy Tech Nazi3 - An opinionated IDIOT4 - Way behind me in skills
WHY are we here?$$$ - NO
Prestige - NOStudents and StaffMake a Difference !
First Step
Network VLAN / IP Structure
10.0.0.0-10.15.255.255 192.168.0.1 /248 192.168.0.2 /248 2000
10.16.0.0-10.31.255.255 192.168.16.1 /248 192.168.16.2 /248 2016
10.32.0.0-10.47.255.255 192.168.32.1 /248 192.168.32.2 /248 2032
10.48.0.0-10.63.255.255 192.168.48.1 /248 192.168.48.2 /248 2048
10.64.0.0-10.79.255.255 192.168.64.1 /248 192.168.64.2 /248 2064
10.80.0.0-10.95.255.255 192.168.80.1 /248 192.168.80.2 /248 2080
10.96.0.0-10.111.255.255 192.168.96.1 /248 192.168.96.2 /248 2096
10.112.0.0-10.127.255.255 192.168.112.1 /248 192.168.112.2 /248 2112
10.128.0.0-10.143.255.255 192.168.128.1 /248 192.168.128.2 /248 2128
10.144.0.0-10.159.255.255 192.168.144.1 /248 192.168.144.2 /248 2144
10.160.0.0-10.175.255.255 192.168.160.1 /248 192.168.160.2 /248 2160
School Data Network Start End Mask VLAN GW VLAN Id
Servers Data 10.0.0.1 10.0.15.255 255.255.240.0 10.0.0.1 101
Admin Building Data 10.0.16.1 10.0.31.255 255.255.240.0 10.0.16.1 102
Site 1 Data 10.0.32.1 10.0.47.255 255.255.240.0 10.0.32.1 103
Site 2 Data 10.0.48.1 10.0.63.255 255.255.240.0 10.0.48.1 104
Site 3 Data 10.0.64.1 10.0.79.255 255.255.240.0 10.0.64.1 105
Future Expansion 10.0.80.1 10.0.95.255 255.255.240.0 10.0.80.1 106
Future Expansion 10.0.96.1 10.0.111.255 255.255.240.0 10.0.96.1 107
Future Expansion 10.0.112.1 10.0.127.255 255.255.240.0 10.0.112.1 108
Future Expansion 10.0.128.1 10.0.143.255 255.255.240.0 10.0.128.1 109
School Wireless WLAN1 +7 Start End Mask VLAN GW VLAN Id
RESERVED 10.7.0.1 10.7.15.255 255.255.240.0 10.7.0.1 171
Admin Building WLAN1 10.7.16.1 10.7.31.255 255.255.240.0 10.7.16.1 172
Site 1 WLAN1 10.7.32.1 10.7.47.255 255.255.240.0 10.7.32.1 173
Site 2 WLAN1 10.7.48.1 10.7.63.255 255.255.240.0 10.7.48.1 174
Site 2 WLAN1 10.7.64.1 10.7.79.255 255.255.240.0 10.7.64.1 175
Future Expansion 10.7.80.1 10.7.95.255 255.255.240.0 10.7.80.1 176
Future Expansion 10.7.96.1 10.7.111.255 255.255.240.0 10.7.96.1 177
Future Expansion 10.7.112.1 10.7.107.255 255.255.240.0 10.7.112.1 178
Future Expansion 10.7.128.1 10.7.143.255 255.255.240.0 10.7.128.1 179
School Wireless WLAN1 +7 Start End Mask VLAN GW VLAN Id
RESERVED 10.9.0.0 10.9.15.255 255.255.240.0 10.9.0.0 191
Admin Building Public 10.9.16.0 10.9.31.255 255.255.240.0 10.9.16.0 192
Site 1 Public WLAN 10.9.32.0 10.9.47.255 255.255.240.0 10.9.32.0 193
Site 2 Public WLAN 10.9.48.0 10.9.63.255 255.255.240.0 10.9.48.0 194
Site 3 Public WLAN 10.9.64.0 10.9.143.255 255.255.240.0 10.9.64.0 195
Future Expansion 10.9.80.0 10.9.95.255 255.255.240.0 10.9.80.0 196
Future Expansion 10.9.96.0 10.9.111.255 255.255.240.0 10.9.96.0 197
Future Expansion 10.9.112.0 10.9.127.255 255.255.240.0 10.9.112.0 198
Future Expansion 10.9.128.0 10.9.143.255 255.255.240.0 10.9.128.0 199
QUESTIONS
1- WHY am I angry?
2- In the grand scheme, does it matter?
3- Really worth fighting for MY idea?
CORE BELIEF
CONVICTION
PREFERENCE
HABIT
Next Step
IP Standards
Device Type Octet 4 Start Octet 4 EndFIREWALLS 2 6Terminal Server - Tech 7 8TBA - Spare 9Domain Controllers 10 19TBA - Spare 20 24Mail Services - SMTP 25TBA - Spare 26Mail Services - SPAM 27 28TBA - Spare 29Application Servers 30 39Student Information System 40 49Terminal Server - Student 50 59Terminal Server - Staff 60 69Terminal Server - Applications 70 79
Device Type Octet 4 Start Octet 4 EndWeb Server / Apps / Caching 80 86Print Servers 87 89StoneWare 90 99Antivirus Server 100 104IDM / IDM Database 105 109Food Service Server 110Library Server 111Finance Apps 112 113TBA Apps 114 118Utility Server 119Help Desk / Etc 120 129Batteries/UPS 130 139File Servers 140 149Dell iDRAC/HP LightsOut 150 164
Device Type Octet 4 Start Octet 4 EndDB Servers - MS and MYSQL 165 179Local Time Clock / Security 180 184Video Servers 185 189Content Filters 190 194Mobile Device Management 195 199Mgmt – ZenWorks, SCCM 200 203Network Monitoring 204 206Syslog 207 208Management - IMC Altiris 209 210Environmental Monitoring 211 214VOICE Servers / etc. 215 219Vmware Servers 220 229SAN Hosts / SAN Switches 230 239Backup, NAS, Veeam 240 249
Next Step
Naming Standards
STAFF
Naming StandardFirst initial of first name and last name. If more than one individual with that login combination, add the next letter of the first name until the login is unique.
Password Standard● Staff can change their password at anytime● A minimum of 8 alpha/numeric with 3 of the following 4 characters. ● Upper, Lower, Number, Symbol. Cannot include more than 2 consecutive
characters of their first, last, or user name. ● (Windows Complex Password Requirements)● Mandatory change every 180 days
STUDENTS
First initial of first name, full last name and last two digits of their SIS generated student number. If there are more than one individual with that login combination, increment the number on the end. Should we reach 999 users with the same first initial and last name, add a letter of their first name.
Password StandardStudents can change their password at anytimeA minimum of 8 alpha/numeric with 3 of the following 4 characters. Upper, Lower, Number, Symbol. Cannot include more than 2 consecutive characters of their first, last, or user name. (Windows Complex Password Requirements)Do not force password changes.
Equipment Identification (Computers, Switching)
All labels should be the same color and size. The standard for a label is a yellow background with black text on it. It is also broken down into 4 sections. Below are each section and what they represent.
AAA-BB-CCCC-DDD
AAA - 3 Characters identifying the School District (standard code)
BB - 2 Characters identifying the Building inside the District
CCCC - 4 Characters identifying the Room inside a building
DDD - 3 Characters identifying the number and type of device
Equipment Identification (Computers, Switching)
THR-HS-S102-02M
STU-ES-135-T1
MEN-HS-CART-01M
Alternate Method
THR-HS-ASMITH
Laptop or mobile device not specifically assigned to a physical space.
Switching
Patching
Infrastructure
JACK and PATCH CABLE COLORS
Firewalls
Content Filtering
Packet Shaping
Anti Virus
Servers
Storage
$$$
MONEY
$$$
Making it Happen
Entire IP Changes in Districts
Active Directory Configuration / User Accounts
Reimage ALL Desktops, File Server Transfers
Printers, Copiers, Wireless, Facilities BCUs
Making it Happen
CHECKLISTS
E-Mail Migrations
Preparation, Preparation, Preparation
CommunicateCommunicate
Communicate
Apologize
Be Patient
INDEX District - Not Ebola, but close !
What we learned...
Next Districts
Questions
Comments
(no tomatoes please)