:Specifications :Jacks to all rooms in the building .Two jacks into: Every hotel room .

.Four jacks into: All administrative offices .Twelve jacks into: All general-purpose rooms .Entirely UTP Class 5 wiring .High speed fiber connection between equipment cabinets .Locking equipment cabinets .Uninterruptable power supplies for each cabinet .Security features have to taken into consideration .Wireless connection to all open spaces Network Layout: The length of the hotel requires the use of three separate cabinets, one of them "the main cabinet" will be located in Mail Room to serve the first floor "Lobby" of the hotel; by connect all administrative offices, and all general-purpose rooms by CAT 5 or CAT 6 UTP cables to the jocks (RJ45) in the offices and the rooms, and Wireless Access Point which will be in open areas. and the other two cabinets will be located in Room (0) in the second floor to serve the quest rooms by CAT 5 or CAT 6, and our opinion to use two cabinets here to offer high quality service to the quest rooms, and by these two cabinets the maintains will be easier for any case, and one of them will serve the rooms (1-21), and other cabinet will serve the rooms (22-41), and all cabinets will connected together by a high speed fiber cables. The main cabinet which in Mail Room will be a free standing cabinet, will be connect to the outside through an ISDN line and to other two cabinets by a high speed fiber connection which will be located in Room (0), the cabinet which serve the rooms (121) will be wall mounted, cabinet, and the cabinet which serve the rooms (22-41) be wall mounted cabinet. The Mail Rooms which has the main cabinet, and the Room (0) which has other two cabinets, should have temperature 21 Celsius degree, and we can get this temperature easily by the central air condition which exist in the hotel; and the reason for that temperature is keeping the cabinets in good conditions, and the rooms must be has locked doors, and make them under control by 2 cameras which managed by IT manager. The main cabinet will contain the router, the firewall and the wireless LAN controller. This cabinet will connect all the jacks (RJ45), wireless access point (WAP) in the first floor by CAT 5 or CAT 6 UTP cables.

Half of the jacks (RJ45) in the hotel will be for Ethernet and other half of jacks (RJ45) will be for Internet. Network Design: According to the specification to build the hotel network infrastructure, must be connected with three equipment cabinets. And as we are designers, we'll show below what equipments which will be in the main cabinet: The Router. The Core Switch. The Wireless LAN Controller. The Firewall.

Each cabinet which exist in the room (0) in second floor will has switch to offer Ethernet and Internet to all Quest Rooms.

Network Infrastructure Equipment 1. Router A hardware device designed to take incoming packets, analyzing the packets and then directing them to the appropriate locations, moving the packets to another network, converting the packets to be moved across a different network interface, dropping the packets, or performing any other number of other actions.

A router has a lot more capabilities than other network devices such as a hub or a switch that are only able to perform basic network functions.

The router which we use in our network Cisco 3945E Integrated Services Router (ISR)

The Cisco 3945E Integrated Services Router (ISR) delivers highly secure data, voice, video, and application services to large branch offices. Cisco 3945E features include: Modular Services Performance Engine (SPE) 250 for even higher performance as WAN environments evolve 4 integrated 10/100/1000 Ethernet ports with 2 SFP ports 4 service module slots 3 Enhanced High-Speed WAN Interface Card slots 3 onboard digital signal processor (DSP) slots

Power Dual integrated power supplies Fully integrated power distribution to modules supporting 802.3af Power over Ethernet (PoE) A universal IOS image helps you deploy new IOS services quickly

Security Embedded hardware-accelerated VPN encryption for secure connectivity Integrated threat control using Cisco IOS Firewall, Zone-Based Firewall, IPS, and Content Filtering Identity management using authentication, authorization, and accounting (AAA) and public key infrastructure

Unified Communications

High-density packet voice DSP module, optimized for voice and video

support Standards-certified VoiceXML browser services Cisco Unified Border Element capabilities for up to 2500 sessions Support for Cisco Unity Express voicemail, Cisco Communications Manager Express, and Survivable Remote Site Telephony

Core Switch: A network switch is a small hardware device that joins multiple computers together within one local area network (LAN) . Technically, network switches operate at layer two (Data Link Layer) of the OSI model. Network switches appear nearly identical to network hubs, but a switch generally contains more intelligence (and a slightly higher price tag) than a hub. Unlike hubs, network switches are capable of inspecting data packets as they are received, determining the source and destination device of each packet, and forwarding them appropriately. By delivering messages only to the connected device intended, a network switch conserves network bandwidth and offers generally better performance than a hub. Form the switch we inter connect the jack and other devices here we have 45 guest rooms, 13 administrative rooms and 5 general purpose rooms, for the rooms we have to give two jacks, four for the administrative offices and twelve jacks and for all general purpose rooms in total we need 202 jacks for the entire hotel. The switch requirements should be 30 ports and if in the future more will be needed, the router can be expanded with more ports. The core switch which in the main cabinet will be connected with all 92 (RJ45), and 5 (WAP) in the first floor by CAT 5 or CAT 6 UTP cable. And will be connected with other tow cabinets by a high speed fiber cables.

The switch will be used in our network is the Cisco SM-D-ES3G-48-P module board for Cisco router 2911/K9 and is shown below:

The specification for Cisco SM-D-ES3G-48-P : 48 Gb Ethernet ports 2 Small Form-Factor Pluggable (SFP) ports Best-of-class Ethernet switching High-density Gigabit Ethernet support

Layer 2/3 switching in hardware Multicast routing IPv6 routing, and access control list (ACL) in hardware advanced quality of service (QoS) Enhanced Interial Gateway Routing Protocol (EIGRP) Border Gateway Protocol (BGP) Power over Ethernet (up to 1014 watts per chassis, 20 watts per port)

WLAN Controller Cisco Wireless LAN Controllers are responsible for system wide wireless LAN functions, such as security policies, intrusion prevention, RF management, quality of service (QoS), and mobility. They work in conjunction with Cisco Access Points and the Cisco Wireless Control System (WCS) to support business-critical wireless applications. From voice and data services to location tracking, Cisco Wireless LAN Controllers provide the control, scalability, security, and reliability that network managers need to build secure, enterprise-scale wireless networks-from branch offices to main campuses.

Cisco Wireless LAN Controllers smoothly integrate into existing enterprise networks. They communicate with Controller-based Access Points over any Layer 2 (Ethernet) or Layer 3 (IP) infrastructure using the Lightweight Access

Point Protocol (LWAPP). These devices support automation of numerous WLAN configuration and management functions across all enterprise locations.

Because the Cisco Wireless LAN Controllers support 802.11a/b/g and the IEEE 802.11n draft 2.0 standard, organizations can deploy the solution that best meets their individual requirements. Organizations can offer robust coverage with 802.11 a/b/g or deliver greater performance with up to 9x the throughput and unprecedented reliability using 802.11n and Cisco's NextGeneration Wireless Solutions.

We use in our Cisco module NME-AIR-WLC12-K9 for the Cisco 2911/K9 can control up to 12 Access Points while currently the need is for 5 AP:

The features for Cisco module NME-AIR-WLC12-K9: Interference detection and avoidance (RF power and channel assignment will be adjusted to the planned) Load balancing (high speed load balancing can be used to connect a user to multiple access points for better coverage and data rates)

Coverage hole detection and correction (part of the RF management is the ability to handle power levels, power can be increased to cover holes or reduced to protect against cell overlapping) Business-class RF security and WLAN security policy monitoring Wireless intrusion prevention system (IPS) capabilities Award-winning Radio Frequency (RF) management Support for Voice over Wi-Fi and Location services Quality of service (QoS) Layer 3 fast secure roaming for WLANs

Wireless standards: IEEE 802.11a, 802.11b, 802.11g, 802.11d, 802.11h, and 802.11n

Security standards: Wi-Fi Protected Access (WPA) IEEE 802.11i (WPA2 and Robust Security Network [RSN]) RFC 1321 MD5 Message-Digest Algorithm RFC 2104 HMAC: Keyed Hashing for Message Authentication RFC 2246 Transport Layer Security (TLS) Protocol Version 1.0 RFC 3280 Internet X.509 public key infrastructure (PKI) certificate and certification revocation list (CRL) profile

Encryption standards:

WEP and Temporal Key Integrity Protocol Message Integrity Check (TKIPMIC): RC4 40, 104, and 128 bits (both static and shared keys) Secure Sockets Layer (SSL) and TLS: RC4 128-bit and RSA 1024- and 2048bit AES: Counter Mode with CBC-MAC (CCM) and Counter Mode with Cipher Block Chaining Message Authentication Code Protocol (CCMP)

Firewall A firewall is used to protect the network from unauthorised access. It must inspect the traffic and packets passing through and should permit legitimate communication to .pass while denying any suspected unwanted transmission The Cisco 3945Integrated Services Router has build-in firewall features that can be activated through licensing. The Cisco IOS Firewall found in Cisco router 3945E is a powerful stateful firewall that can inspect data up to the transport layer of the OSI .model :The main features of Cisco IOS firewall are zone-based firewalling HTTP application inspection instant messaging inspection peer-to-peer application inspection flexible packet matching Protects against threat mitigation of worms, malware, viruses and other network and application-layer threats and exploits

The Cisco 3945E Integrated Services Router offers also a content filtering solution via .licensing of Cisco IOS Content Filtering With an always updated database, the Cisco IOS Content Filtering can block access to websites containing malware, malicious code, phishing attacks, and spyware and so the hotel network will stay safe from such exploits that can harm the customers or the .administrative offices Access Switch An access switch enables the server to access the network, the Internet or other servers for data or storage for data. The access-layer network infrastructure consists of modular switches, fixed-configuration 1 or 2 RU switches, and integral blade server switches.

Switches provide both Layer 2 and Layer 3 features fulfilling the various server broadcast domain or administrative requirements. Dell recommends deploying access switches in pairs to provide redundant connectivity to servers. The access switch which in each cabinet in second floor will be connected with all (RJ45) in the second floor. The access switch in 1st cabinet will connect all 42 (RJ45) which in rooms ( 1-21), and the access switch in 2nd cabinet will connect all 42 (RJ45) which in rooms ( 21-41), by CAT 5 or CAT 6 UTP cable.

Cisco Catalyst 2960S-48TS-S Ethernet Switch - 48 Port - 2 Slot - 48 x 10/100/1000Base-T - 2 x SFP (mini-GBIC) Slot

Features for Cisco Catalyst 2960S (WS-C2960-48TS- S): The Cisco Catalyst 2960S-48TS-S Ethernet Switch is the leading Layer 2 edge, providing improved ease of use, highly secure business operations, improved sustainability, and a borderless network experience. The Cisco Catalyst 2960-S Switch includes new Cisco FlexStack switch stacking capability with 1 and 10 Gigabit connectivity, and Power over Ethernet Plus (PoE+) with the Cisco Catalyst

2960-S Switch offering fast Ethernet access connectivity and PoE capabilities. The Cisco Catalyst 2960-S is fixed-configuration access switches designed for enterprise, mid-market, and branch office networks to provide lower total cost of ownership. support, Quality of Service (QoS), Link Aggregation Control Protocol (LACP), Port Security, MAC Address Notification, Remote Switch Port Analyzer (RSPAN). IEEE 802.3, IEEE 802.3u, IEEE 802.3z, IEEE 802.1D, IEEE 802.1Q, IEEE 802.3ab, IEEE 802.1p, IEEE 802.3x, IEEE 802.3ad (LACP), IEEE 802.1w, IEEE 802.1x, IEEE 802.1s, IEEE 802.3ah, IEEE 802.1ab (LLDP). Wireless Access Points wireless access point (WAP) is a device that allows wireless devices to connect to a wired network using Wi-Fi, Bluetooth or related standards. The WAP usually connects to a router (via a wired network) if it's a standalone device, or is part of a router itself. We use Cisco AIR-LAP1262N-E-K9 in our network, and we need 5 WAP of Cisco AIR-LAP1262N-E-K9, as shown below.

The features for Cisco AIR-LAP1262N-E-K9: Auto-sensing per device, power over Ethernet (PoE), MIMO technology, Wi-Fi Multimedia (WMM) support, Cisco M-Drive technology. IEEE 802.11b, IEEE 802.11a, IEEE 802.11g, IEEE 802.11n. Note: all 5 WAP will be connected with the core switch which in the main cabinet by CAT 5 or CAT 6 UTP cables. This model requires external antenna and it was chosen so that it will be placed hidden inside suspended ceiling. The antenna that was chosen in order to be a discreet

as possible inside the hotel is the Cisco AIR-ANT2451NV-R Omnidirectional antenna :(2.4 & 5Mhz) with 2.5-3.5dBi gain

Patch Panels All the cabling from the Ethernet Jacks should be terminated inside the cabinets on patch panels and the ones that will need to be activated will be patched to the switch .using patch cords The Panduit DP6 PLUS UTP Patch Panels are CAT 6 compatible patch panels that .can host 24 ports on 1U space and can be fitted in 19in cabinets

We need 3 patch panels, one in each cabinet, For the main cabinet it was calculated that 97 ports are needed for the jacks and APs, .therefore 3 Panduit DP6 PLUS UTP Patch Panels are needed For each cabinet in 2nd floor was calculated that42ports are needed for the jacks, .therefore 6 Panduit DP6 PLUS UTP Patch Panels are needed The fiber cable that will connect the two cabinets must be also terminated in fiber patch panels .

The Corning LANS 19in Patch Panel (LANS-112-E4-03Q-S7B) requires 1U for 12 multimode fibres (50 m) with LC connectors. One fibre patch panel must be .installed in each cabinet

Cabinets and UPS:

Cables and Patch Cords Copper Cables The data cable that will be used is strongly advised to be CAT 6 cable which can be used for Gigabit Ethernet communication up to 100m. It contains four twister wire pairs. The total cable length needed for the project is estimated below: Distance (m) 21 26 21 18,5 16 11 11 16 16 21 36 16 RJ45 QTY 12 4 4 4 4 4 4 4 4 4 12 1 Cable (m) 252 104 84 74 64 44 44 64 64 84 432 16

Area Reservation Office Executive Assistant Manager Director of Front Office Assistant Directors of Front Office Secretary Mail Room Training room Baggage room Assistant Manager Phones area Registration AP1

AP2 AP3 Kitchen Lobby Bar Buffet Coffee Shop Lounge bar Retail stores AP4 AP5 AP6

31 51 46 46 31 36 71 66 51 31 66 Totals:

1 1 4 8 4 4 4 8 1 1 1 98

31 51 184 368 124 144 284 528 51 31 66 3188

For the patching between the patch panels and the equipment there will be needed some patch cables 1,5m long. Those should be CAT6 cables with RJ45 jack connectors at both ends. Since there are total five 24ports patch panels, 120 patch cords are needed.

Fibre optic cables

For the connection between the two cabinets, a 50/125 multimode fibre cable is needed (OM3). This means that he cable should have 50 m core diameter and 125 m cladding diameter. The cable distance between the cabinets is around 20-30m. because, the Mail Room in the left side of the 1st floor, and the Room (0) in the middle of the 2nd floor, that means we don't need other router. For the connections from the fibre patch panels, 8 pigtails are needed of 2m with LC connectors at both ends (LC-LC).