Network Design Lecture 1 PDF

Summary

This lecture covers network design, including three key processes: analysis, architecture, and design. It discusses different aspects of network design, including traffic flow, requirements, risks, topology, and equipment choices. The lecture also touches on the importance of hierarchy and diversity in network design, and the methodologies involved (including Cisco's PPDIOO).

Full Transcript

Gathering and Analyzing
Requirements
Lec1
Dr. Mustafa Al-Sayed
Information Flows Between Network Analysis,
Architecture, and Design
To design a new network or extending an existing one, there are three
processes:
A- Analysis process
1- flows; specify the expected traffic flow
2- requirements; user &business requirements
3- risks; expected risks
B- Architecture process
1- topology; structure of the needed network
2- relationships between network functions (e.g., privileges, routing, and
addressing; what are privileges of each node, and which nodes are locally
accessible and which are public)
C- Design process
1- what is the needed equipment (switches, routers….)
2- which vendors
3- which location
Inputs To and Outputs From the Network
Analysis Process
Inputs (after listening to users and
understanding their needs)
what is the current state of the existing network
what are the existing problems
what are the requirements of users, applications, and
devices
Outputs:
description of problems
description of requirements
description of risks
description of traffic flows
specifying/mapping which apps and devices are
needed
Inputs To and Outputs From the Network
Architecture Process
Inputs To and Outputs From the Network
Design Process
Inputs:
Network Design process uses information
from the Network Architecture Process.
Outputs:
which vendors for devices
which providers for services (services for
monitoring network, security, performance…..)
which brands for equipment
physical drawing of network
 Tactical and Strategic Significance

Network projects should have a plan that includes current, near-term, and long-
term targets, e.g., a one-year/three-year/five-year project plan.
 The Cyclic and Iterative Nature of the Three
Processes

These Tactical and Strategic plans are iterative and should be regularly reviewed, on
the order of twice yearly (every 6 months), once per year, or every two years,
depending on your plan.
Process Iterations Evolve Toward the Long-
Term Target

At each iteration the current, near-term, and long-term targets are reviewed
 Hierarchy and Diversity
 All of these processes (analysis, architecture, and design) center around two important characteristics of
networks:
1. Hierarchy is the degree of concentration/size/density of networks or traffic flows at
interconnection points within the network, as well as, the number of tiers of interconnection
points within the network. In sum, Hierarchy provides the structure:
o number of nodes: to measure the traffic flow
o number of layers: to measure broadcasting
2. Diversity balances this structure by interconnecting the network at different levels in the design
to provide greater performance. In sum, Diversity allows redundancy or interconnectivity
“connect with each other”:
o some links may be repeated to reduce traffic load on a specific point
 Hierarchy and Diversity in a Network

 This is a tree structure for a network:
Circles representing networks or routers
Lines representing the communications links between networks and/or routers.
Leaves represent the end networks, devices, or users all occur at the same level of hierarchy.
 In this figure there are four levels of hierarchy and two levels of diversity.
 Hierarchy Added to a Network
(from a flat structure to a routed structure)

 An example of adding hierarchy to a network
is changing from a flat structure to a routed
structure.
 This may be done to reduce the size of the
broadcast domain or the number of devices
reached by a broadcast message.
 Adding routing to the network breaks a
broadcast domain into a number of smaller
broadcast domains, and traffic flows are
concentrated at routers.
Diversity Added to a Network

 A content delivery network (CDN) is an example of
adding diversity to a network.
 A CDN bypasses/avoids the core/inner of a network,
where congestion/ overcrowding, and directly
connects devices or networks lower in the hierarchy.
 This provides better performance but can also affect
the network hierarchy by modifying its routing
behavior.
Understanding Business Goals (1)

Meet with Stakeholders:
o key stakeholders including executives, department heads, and IT personnel to understand their
objectives and the organization vision. Discuss how the network supports current and future goals
(e.g., expansion plans, new services, remote workforce support).

Identify Business Drivers:
o Determine the primary reasons for the network upgrade or redesign (e.g., improve performance,
enhance security, support new applications).
o Understand the critical applications and services that rely on the network infrastructure.

Budget and Resource Constraints:
o Gain insights into budget limitations and resource availability for the network project.
o Understand any regulatory or compliance requirements that may impact network design decisions.
Analyzing Technical Requirements (2)

Current Network Assessment:
o Including network topology, equipment inventory ‫ﻋﻤ ﻞ ﺟ ﺮﺩ ﻟﻼﺟﻬ ﺰﺓ ﺍﻟﻤﻮﺟ ﻮﺩﺓ‬, and performance metrics
(bandwidth utilization, latency, packet loss).
o Identify any existing issues or bottlenecks that need to be addressed.

Future Growth and Scalability:
o Determine the organization’s growth projections/expectations and scalability requirements over the
next few years.
o Consider factors such as increasing user base, data volume growth, and expansion into new geographic
locations.

Performance and Reliability:
o Define performance metrics (e.g., minimum bandwidth requirements, latency thresholds) that the new
network design must meet.
o Assess requirements for network availability, redundancy, and failover ‫ ﺗﺠ ﺎﻭﺯ ﺍﻟﻔﺸ ﻞ‬capabilities to ensure
business continuity.
Assessing User Requirements (3)

User Profiles and Needs:
o Identify different user groups within the organization (e.g., executives, sales team, IT staff) and their
specific network requirements.
o Understand the types of devices (desktops, laptops, mobile devices) and applications used by each
group.

Quality of Service (QoS) Requirements:
o Determine if there are specific applications (e.g., VoIP “Voice over Internet Protocol”, video conferencing, ERP
systems “enterprise resource planning (ERP) allows you to manage various business aspects, such as company finances”) that
require prioritized bandwidth and low latency.
o Define QoS policies “prioritize critical traffic”.

Security and Compliance:
o Gather security requirements related to data protection, access control, and compliances ‫ﺍﻟﺘﺰﺍﻣﺎﺕ‬.
o Identify any specific security protocols or technologies (firewalls, VPNs, encryption) that must be
implemented.
Documentation and Validation (4)

Documenting Requirements:
o Compile all gathered information into a comprehensive requirements document that outlines business
goals, technical requirements, and user needs.
o Ensure stakeholders review and approve the document to confirm.

Validation and Feedback:
o Present the proposed network design and requirements document to stakeholders for validation and
feedback.
o Incorporate/enter any additional requirements or modifications based on stakeholder input.
Network Design Methodologies / Cisco's PPDIOO Network Cycle
 PPDIOO stands for Prepare, Plan, Design, Implement, Operate, and Optimize.
 PPDIOO is a Cisco network construction methodology that has the following phases:
1. Prepare: based on the current state of the company.
If the company has no network, they should develop their
business requirements.
If there is an existing network, they should update the existing.

2. Plan: also based on the current state of the company
If no current network exists, then this project plan should include
the allocation of resources (financial/physical) for the design and
implementation phases, the development of a network security
plan, and the development of a project schedule.
If there is an existing network, then the project plan is updated,
but only after an audit of the existing infrastructure, sites and
operational environment is completed.
Network Design Methodologies / Cisco's PPDIOO Network Cycle

3. Design:
The company develops (or updates) a comprehensive network design that meets information gathered
from the previous two phases.
The design will provide a network that is able to manage the everyday tasks that are required of it and
meet or exceed all expected availability, reliability, security, scalability, and performance metrics.

4. Implement:
It is good to setup and configure a test bed that simulate the different parts of the network design.
This method allows the implementers the ability to find any potential problems;
If found, these problems are resolved inside this test bed before full scale implementation.
Once any issues are solved in the test bed, a full scale implementation can start
Once the network has been implemented, a series of tests should be run to ensure that the operation of
the new network is as expected and designed.
Network Design Methodologies / Cisco's PPDIOO Network Cycle

5. Operate
The company is operating without making major changes to the network.
During this phase, the company monitors the network performance
management, trouble management, security management, and capacity...etc..
6. Optimize
The Optimize phase can happen at any time after a network is operational.
If any changes are recommended, then the phases start again from the
beginning.
Network Traffic Analysis (NTA)
Service Requests, Offerings, and Metrics
 Service Metrics
 For service performance requirements and characteristics to be useful, they must be configurable,
measurable, and verifiable within the system.
 Service metrics are meant to be measurable quantities, they can be used to measure thresholds and limits
of service.
 Thresholds and limits are used to distinguish whether performance is in conformance (adheres to) or
nonconformance (exceeds) with a service requirement.
Threshold is a value for a performance that is a boundary between two regions of conformance and,
when crossed, will generate an action.
Limit is a boundary between conforming and nonconforming regions. Crossing a limit is more serious
than crossing a threshold, and the resulting action is usually more serious (e.g., dropping of packets to
bring performance back to conformance).
Performance Limits and Thresholds
What is Network Traffic Analysis?

Network traffic analysis is the process of monitoring network data to gain insights into how and
where network traffic flows. It is important for ensuring:

1. Network availability (risk management)

2. Network performance (identify bottlenecks, optimize resource usage)

3. Network security (detecting security threats such as distributed denial-of-service (DDoS)
attacks, malware…etc.)

4. Network Troubleshooting (quickly identify and resolve network issues)

5. Network Capacity Planning (traffic analysis provides insights into current and future usage)
Network Traffic Measurement

Quantifying the amount and types of data moving across a network at a given time
 enables network administrators to:
How much network capacity utilization? To understand load on it for
planning network resource upgrades to avoid over utilization.
Identifying Traffic Patterns: analyze usage patterns to identify peak
usage times, popular services or applications...etc.
Troubleshooting and Security: quickly identify and resolve
anomalies‫ﺷ ﺬﻭﺫ‬, performance issues, or security threats. For example,
unusual spikes in traffic could indicate a DDoS attack or other
malicious activity.
Bandwidth Monitoring, Management, and Fair Usage: identifying
high-bandwidth users or applications and implementing appropriate
Quality of Service (QoS) policies.
Methods and Tools for Network Traffic Measurement

Two key methodologies:
1. Volume-based Measurement: quantifies the amount of data transmitted
across the network during a specific period.
 E.g., SNMP (Simple Network Management Protocol)-based monitoring tool for monitoring
traffic volumes and performances of network devices.
2. Flow-based Measurement: network traffic is analyzed based on “flows”,
where a flow represents a set of data packets sharing common properties such
as source IP, destination IP, and protocol.
 E.g., NetFlow, IPFIX, and sFlow tools provide insights into traffic patterns.
Methods and Tools for Network Traffic Measurement