1. ILLUSTRATED ACCOMPLISHMENTS 1999 – PRESENT
My name is Tim Loftus.
I am an expert IT Architect & IT Infrastructure Manager with years of hands-on, in-the-
trenches experience.
The following slides illustrate where I have been, what I
have been doing for the past few years and demonstrate
how I can apply my skills and expertise to your advantage.
I would be happy to speak with you, so please don’t
hesitate to contact me.
email: tloftus@freeknowledgenetwork.com
mobile phone: (001)732-740-8329
2. Organization Chart
Liz Claiborne Inc.
Technical Services, Networks (1999)
John Sullivan
CIO
John Goodhart
Director of IT
Timothy R. Loftus
Manager of Technical Services
Administrative
Assistant
Steve Vicens
Data Network Supervisor
Steven Foundakos
LAN Administration Supervisor
Internetwork
Engineer
LAN Administrator
Telecommunications
Senior Analyst
Tim McManus
Macintosh Support
Telecommunications
Senior Analyst
Telecommunications
Junior Analyst
Telecommunications
Billing Analyst
Telecommunications
Programmer
Telecommunications
Wiring Technician
Telecommunications
Wiring Technician
LAN Administrator
LAN Administrator
LAN Administrator
LAN Administrator
LAN Administrator
LAN Administrator
LAN Administrator
Internetwork
Engineer
Internetwork
Engineer
Internetwork
Engineer
Internetwork
Engineer
Internetwork
Engineer
Internetwork
Engineer
Internetwork
Engineer
Telecommunications
Junior Analyst
4. Network Design Illustrations
The following 19 slides were created while performing as an IT Architect
with IBM Global Services between 2000 and 2007.
This is an abbreviated compilation of presentation slides from actual
reports that were presented to IBM client executives between 2001
and 2007. Company names and addresses have been removed or
masked.
Timothy R. Loftus
IT Manager, IBM IT Infrastructure Architect, Avaya IP Telephony Specialist
eMail; tloftus@aol.com
phone; 732-740-8329
Profile; http://www.linkedin.com/in/timloftus
Twitter@Tim_Loftus
5. Network Architecture and Design Methodology
The network architecture development is driven by business requirements (support
business expansion while providing full services to new and existing customers) and
existing constraints (installed terminals, telephone systems, desk top PCs, etc.).
During the assessment, each of the eleven locations visited and surveyed, provided key
information for the development of the new Architecture and Design.
IT Infrastructure
Architecture
Developement
IT Infrastructure
Specified
Design
IT Infrastructure
Detailed
Component Design
Guiding
Principles
Business
Drivers
Current
Environment
Constraints
IT Capabilities
In fr astr u ctu r e
Requ ir em en tst
6. Category ‘A’ Locations in the Network Design
Category ‘A’ locations are unique in that they support full redundancy and fault tolerance to
the frame relay network and to a high speed Internet Service Provider (ISP). Two
locations are planned for Category ‘A’ locations; the Corporate Data Center and in
Glendale, NY. The Data Center was selected for its role as the data processing hub for all
of the company. Glendale was selected for several reasons including the number of PCs
on the LAN and the access to service providers in the New York City area.
Category ‘A’ locations support Internet access, VPN, MS domain controller and DHCP
(Dynamic Host Configuration Protocol) server. Category ‘A’ locations will provide DNS
(Domain Name Server), DHCP and Microsoft domain controllers. Data Center link, router
and switch load balancing is accomplished with the use of the Cisco 11154 Load Balancer
systems in the design. This will allow LAN equipment and ERP system interfaces can be
balanced. Layer 2, load balancing and switching provides a high-speed facility that can
quickly re-converge around device or link failures. Most device failures will be transparent
to users.
Frame Relay Network
SDSERIESCatalyst 3500 XL
PWR
SDSERIESCatalyst 3500 XL
PWR
DSU/CSU
NETGEAR
AT&T
POP
DSU/CSU
T1
T1
V.35
V.35
Cisco 3524XL
10/100 Switches
Currently installed
Netgear 10/100
Switches & Hubs
Digital
PWR
11154 Load Balancer
PWR
11154 Load Balancer
Cisco 11154
Load Balancers
Layer 3 routing
IP/OSPF
Layer 2 switching
ethernet/spanning tree
MestaMed Host
Terminal Mux
192.0.0.1
to Internet
to Internet
File & Print Server
Call Manager Server
SD
CISC O YST EMSS
Cisco 2650 SERIE S
SD
CISC O YST EMSS
Cisco 2650 SERIE S
IP Router
Cisco 2651
7. Category ‘B’
Category ‘B’ locations are mid-size offices of 30 or more employees usually hosting at least
one Microsoft file and print server.
Frame Relay Network
SD
SERIESCatalyst 3500 XL
P WR
DSU/CSU
V.35
IP Router
Cisco 1751
Cisco 3550
10/100 Switch
Layer 3 routing
IP/OSPF
Layer 2 switching
ethernet/spanning tree
IP enabled Terminal Mux
File & Print Server
AT&T
POP
T1 PVC to Easton
SDCISCO Y ST EMSS Cisco
1700
PWR
OK
WIC0
ACT/CH0
ACT/CH1
WIC0
A CT/CH0
ACT/CH1
ETH
ACT
COL
SERIES
ROUTER
SD
SE RIE SCa talyst 35 00 XL
P WR
Cisco 3550
10/100 Switches
Category ‘C’
Category ‘C’ locations are small offices with 6 to 29 employees that do not utilize a central
file and print server
DSU/CSU
T1V.35
Layer 3 routing
IP/OSPF
Layer 2 switching
ethernet/spanning tree
IP enabled Terminal Mux
PVC to Easton
Frame Relay Network
AT&T
POP
IP Router
Cisco 1751
SDCISCO Y STEM SS Cisco
1700
PWR
OK
WIC0
ACT/CH0
ACT/CH1
WIC0
ACT/CH0
ACT/CH1
ETH
ACT
COL
SE RIES
ROUTER
SDS ERIESCatalyst 350 0 X L
PWR
Cisco 3550
10/100 Switches
8. Category ‘D’
Category ‘D’ locations are small offices with less than 5 employees. This category utilizes
the less reliable, but less costly Internet VPN method. Added attention is given to security;
Ds o
1 0
0
1 L
I S
NETGEAR
Digital
MestaMed Host
DSU/CSU
10/100 Switch
ISP Router
Firewall
Proxy / NATSDSERIES
Catalyst3500 XL
PWR
Data CenterDMZ
SDPOWERACTIVITY
Cisco2600
CISCOYSTEMSS
SERIES
NETGEAR
DSU/CSU
ISP Router
Firewall
Proxy / NATSDSERIES
Catalyst3500 XL
PWR
Glendale, NY
DMZ
SDPOWERACTIVITY
Cisco2600
CISCOYSTEMSS
SERIES
Enterprise
Frame Relay
Network
DSU/CSU AT&T
POP
DSU/CSU
T1
T1
V.35
V.35
Layer 3 routing
IP/OSPF
DSU/CSU AT&T
POP
DSU/CSU
T1
T1
V.35
V.35
Layer 3 routing
IP/OSPF
Internet
SDSERIESCatalyst3500 XL
PWR
SDSERIESCatalyst3500 XL
PWR
SDSERIESCatalyst3500 XL
PWR
SDSERIESCatalyst3500 XL
PWR PWR
11154 Load Balancer
PWR
11154 Load Balancer
Cisco 3550
10/100 Switches
Cisco 3550
10/100 Switches
Cisco 11154
Load Balancers
ISP #1
ISP #2
SD
CISCO YSTEMSS
Cisco 2650
SERIES
SD
CISCO YSTEMSS
Cisco 2650
SERIESIP Router
Cisco 2651
SD
CISCO YSTEMSS
C isco 2650
SERIES
SD
CISCO YSTEMSS
C isco 2650
SERIESIP Router
Cisco 2651
10/100 Switch
back up path
FW & VPN Gateway
Cisco PIX
SDCISCOYSTEMSS PIX F irewal l
SERIES
SDCISCOYSTEMSS PIX F irewal l
SERIES
FW & VPN Gateway
Cisco PIX
back up path
VPN
Internet
Build and implement Internet connectivity at the Data Center with a back up connection in
Glendale. The Glendale link can be configured to handle some services (i.e. remote access
VPN or B2B VPN or Web Server Hosting) to distribute traffic volume.
Work with the ISPs to provide inbound fail-over through BGP4 rerouting.
S Y ES
T
T
10. State Government Disaster Recovery Plan Conceptual Illustration;
Data Center
State-wide Multi-Protocol Network
~700 Agency offices with Application users
multi-protocol frame relay
(EIGRP routing)
Public InternetIP /BGP
Qwest
UUNetFiber Optic Metropolitan Area Network
Trumble St CO
Option Three;
External Recovery
I-2
OC-3
OC-3
Public Internet
I-2
multi-protocol point-to-point
East
Data Center
& Network Hub
AT&T
ATM Network
IBM BCRS
Data Center
Alternate Data
Center
SBC ATM Network
SBC Frame Relay Network
11. Nokia
Firewall
Alternate MAN Site (TBD)
Nokia
Firewall
Copper UTP 1000bt ethernet
MM Fiber Gigabit ethernet
SM Fiber MAN (n x 1 Gigabit ethernet)
Copper UTP 10/100 ethernet
External Recovery Center LAN
(Option 3)
(224 10/100 ports)
------- Data Center
Public
Internet
Server
VLAN
Server
VLAN
Cisco CSS
Switch
Cisco CSS
Switch
Cisco
Distribution
Switch
Cisco
Distribution
Switch
Cisco
10/100 Server
Access Switch
Server
VLAN
Server
VLAN
Server
VLAN
Server
VLAN
Cisco
10/100 Server
Access Switch
Total 10/100 Server Ports Required= (77x2) 154
Server
VLAN
Server
VLAN
Server
VLAN
Server
VLAN
Cisco
10/100 Server
Access Switch
Cisco
10/100 Server
Access Switch
(96 10/100 ports) (96 10/100 ports)
Total 10/100 Server Ports Required= (15x2) 30
(48 10/100 ports)(48 10/100 ports)
B1 A1
B2
AB
1. DRS (2)
2. DSS (30)
3. DMR (18)
4. DCF (4)
5. DPW (1)
6.DHMAS (6)
7.DMV (4)
8.SOTS (6)
9.DCP (4)
10.DPH (1)
11.DOT (1)
FW
OC-3 ATM
MCI Network
SBC Network
RTCisco
Router
Cisco
Router
DS-3
DS-3
IBM BCRS
Cisco
10/100 Server
Access Switch
Cisco
10/100 Server
Access Switch
(224 10/100 ports)
Total 10/100 Server Ports Required= (213x2) 426
101 East Drive
CS
State Government Network for Disaster Recovery Plan
12. Product Description QTY Ext QTY Discount Price Ext Price Lead Time
WS-C6509-2GE Change in Orderability 03/25/05 (See PB #2595)6509,SUP1A-2GE 1 2 0 $15,990.00 $31,980.00 15
SC6K-SCVK8-7.1.2 Cat6K Supervisor 1 Flash Image w/CiscoView, Release 7.1.2 1 2 0 $0.00 $0.00
WS-X6K-SUP1A-2GE EOS: 03/25/05 (See PB #2595) 6500 SUP1A Eng,2GE,Enhanced QoS 1 2 0 $5,995.00 $11,990.00 29
WS-X6516-GBIC Catalyst 6500 16-port GigE Mod: Fabric-Enabled (Req. GBICs) 1 2 0 $19,995.00 $39,990.00 22
WS-X6148-RJ45V Catalyst 6500 48-port 10/100 Inline Power, RJ-45 1 1 0 $7,495.00 $7,495.00
WS-CAC-2500W Catalyst 6000 2500W AC Power Supply 2 4 0 $6,000.00 $24,000.00
CAB-AC-C6K-TWLK Power Cord, 250Vac 16A, twist lock NEMA L6-20 plug, US 2 4 0 $0.00 $0.00
WS-C6K-9SLOT-FAN Catalyst 6000 Fan Tray for 9-Slot Systems 1 2 0 $0.00 $0.00
WS-X6K-SUP1A-2GE EOS: 03/25/05 (See PB #2595) 6500 SUP1A Eng,2GE,Enhanced QoS 1 2 0 $0.00 $0.00 29
CON-OSP-WS-C92GE 24x7x4 Onsite Svc, Cat6509 chassis w/ Sup1A-2GE 1 2 0 $6,340.00 $12,680.00
$61,815.00 $128,135.00
SD
S D
SC ISC O YSTEMS
RVI SO R L INK
PORT2
CONS OL E
SWI TCHLO AD
1- 20%
CONS OL E
P
O
RT
1 %
EJE CTP CM C IA
PO RT 1
6K- SUP1- 2G E
WS- X67 24 -SFP
24 PO RT G IG ABIT ETHER NET SFP
STA TU S
1 2 3 4 21 22 23 241 7 1 8 1 9 2 01 3 14 1 5 1 69 10 1 1 1 25 6 7 8
Cisco Catalyst
6509
Core switch
STATU S PHONE
WS- X614 8-G E- TX
47
48
37
38
35
36
25
26
23
24
13
14
11
12
1
2
4 8 P O R T
12119 107 85 63 41 2 242321 2219 2017 1815 1613 14 363533 3431 3229 3027 2825 26 484745 4643 4441 4239 4037 38
10/100/1000
B A S E - T
SW ITCH ING MOD U LE
STATU S PHONE
WS- X614 8-G E- TX
47
48
37
38
35
36
25
26
23
24
13
14
11
12
1
2
4 8 P O R T
12119 107 85 63 41 2 242321 2219 2017 1815 1613 14 363533 3431 3229 3027 2825 26 484745 4643 4441 4239 4037 38
10/100/1000
B A S E - T
SW ITCH ING MOD U LE
STATU S PHONE
WS- X614 8-G E- TX 47
48
37
38
35
36
25
26
23
24
13
14
11
12
1
2
4 8 P O R T
12119 107 85 63 41 2 242321 2219 2017 1815 1613 14 363533 3431 3229 3027 2825 26 484745 4643 4441 4239 4037 38
10/100/1000
B A S E - T
SW ITCH ING MOD U LESTATU S PHONE
WS- X614 8-G E- TX 47
48
37
38
35
36
25
26
23
24
13
14
11
12
1
2
4 8 P O R T
12119 107 85 63 41 2 242321 2219 2017 1815 1613 14 363533 3431 3229 3027 2825 26 484745 4643 4441 4239 4037 38
10/100/1000
B A S E - T
SW ITCH ING MOD U LESTATU S PHONE
WS- X614 8-G E- TX 47
48
37
38
35
36
25
26
23
24
13
14
11
12
1
2
4 8 P O R T
12119 107 85 63 41 2 242321 2219 2017 1815 1613 14 363533 3431 3229 3027 2825 26 484745 4643 4441 4239 4037 38
10/100/1000
B A S E - T
SW ITCH ING MOD U LE
STATU S PHONE
WS- X614 8-G E- TX
47
48
37
38
35
36
25
26
23
24
13
14
11
12
1
2
4 8 P O R T
12119 107 85 63 41 2 242321 2219 2017 1815 1613 14 363533 3431 3229 3027 2825 26 484745 4643 4441 4239 4037 38
10/100/1000
B A S E - T
SW ITCH ING MOD U LE SD
S D
SC ISC O YSTEMS
RVI SO R L INK
PORT2
CONS OL E
SWI TCHLO AD
1- 20%
CONS OL E
P
O
RT
1 %
EJE CTP CM C IA
PO RT 1
6K- SUP1- 2G E
WS- X67 24 -SFP
24 PO RT G IG ABIT ETHER NET SFP
STA TU S
1 2 3 4 21 22 23 241 7 1 8 1 9 2 01 3 14 1 5 1 69 10 1 1 1 25 6 7 8
Cisco Catalyst
6509
Core switch
STATU S PHONE
WS- X614 8-G E- TX
47
48
37
38
35
36
25
26
23
24
13
14
11
12
1
2
4 8 P O R T
12119 107 85 63 41 2 242321 2219 2017 1815 1613 14 363533 3431 3229 3027 2825 26 484745 4643 4441 4239 4037 38
10/100/1000
B A S E - T
SW ITCH ING MOD U LE
STATU S PHONE
WS- X614 8-G E- TX
47
48
37
38
35
36
25
26
23
24
13
14
11
12
1
2
4 8 P O R T
12119 107 85 63 41 2 242321 2219 2017 1815 1613 14 363533 3431 3229 3027 2825 26 484745 4643 4441 4239 4037 38
10/100/1000
B A S E - T
SW ITCH ING MOD U LE
STATU S PHONE
WS- X614 8-G E- TX 47
48
37
38
35
36
25
26
23
24
13
14
11
12
1
2
4 8 P O R T
12119 107 85 63 41 2 242321 2219 2017 1815 1613 14 363533 3431 3229 3027 2825 26 484745 4643 4441 4239 4037 38
10/100/1000
B A S E - T
SW ITCH ING MOD U LESTATU S PHONE
WS- X614 8-G E- TX 47
48
37
38
35
36
25
26
23
24
13
14
11
12
1
2
4 8 P O R T
12119 107 85 63 41 2 242321 2219 2017 1815 1613 14 363533 3431 3229 3027 2825 26 484745 4643 4441 4239 4037 38
10/100/1000
B A S E - T
SW ITCH ING MOD U LESTATU S PHONE
WS- X614 8-G E- TX 47
48
37
38
35
36
25
26
23
24
13
14
11
12
1
2
4 8 P O R T
12119 107 85 63 41 2 242321 2219 2017 1815 1613 14 363533 3431 3229 3027 2825 26 484745 4643 4441 4239 4037 38
10/100/1000
B A S E - T
SW ITCH ING MOD U LE
STATU S PHONE
WS- X614 8-G E- TX
47
48
37
38
35
36
25
26
23
24
13
14
11
12
1
2
4 8 P O R T
12119 107 85 63 41 2 242321 2219 2017 1815 1613 14 363533 3431 3229 3027 2825 26 484745 4643 4441 4239 4037 38
10/100/1000
B A S E - T
SW ITCH ING MOD U LE
Cisco Catalyst 6509 Sample of Specified Configuration and Illustration
13. CISCO CSS
11500
SERIES
CONTENT SERVICES SWITCH
CISCO CSS
11500
SERIES
CONTENT SERVICES SWITCH
Load balancing is round robin across servers
CORE Web Servers
Network
Cisco CSS11500 Cisco CSS11500
Firewall Firewall
Cisco CSS Content Load Balancer Topology
14. OSPF Design Summary
Create three areas globally in addition to Area 0
Area 0 is contained in the Corporate Data Center
No WAN links in Area 0. Area 0 must be the most stable portion of the network
Routers in the Corporate Data Center are the Area Border Routers (ABR)
OSPF areas centered around three global hubs
Data Center
Area 0
North America
Area 1
Europe, Middle
East, Asia
Area 2
Asia-Pacific
Area 3
15. Retail Store Networks
For in-store work zones, a Virtual LAN conceptual design was created that utilizes
four separate virtual LANs, each with different functions and security policies
•Security Functions include;
•Authentication
•Encryption
•Isolation
•Registration
•Description;
•4 separate virtual LANs
•Separation via IP addressing and router
access lists
•Full network equipment redundancy
without compromising security integrity
•Scalability
•Selected equipment supports
up to 32 virtual networks
•Vulnerability / Risk
•Manual configurations can be
modified by authorized personnel
1. POS Virtual Network
2. Store Operations Virtual Network
3. Inventory Virtual Network
4. Guest Virtual Network
16. To secure internal data, the Extranet network segment must be separated from
home network segments. Communications with customer/partner networks
must be carefully managed.
• Utilize the Extranet server operating system security to protect data access
• Implement a firewall between the Extranet and the enterprise network to
restrict access
• Apply filters on routers to prevent one partner from accessing another partner
through the Corporate network.
• Isolate un-trusted access from the enterprise network
• Contain majority of external access to dedicated servers in Extranet domain
• Control and validate access to enterprise assets through the firewall
Extranet
Frame Relay
Network
FTP servers
Firewall
Business
Partner
Data Center
Enterprise
Network
Business
Partner
Business
Partner
Business
Partner
18. University Campus Conceptual Design
Using virtual LANs, student network traffic is kept separate from academic and
administrative traffic to maintain security and streamline throughput.
VLANs are structured in such a way that user groups
can be kept separate. This can allow for a more secure
network computing environment.
All shared computing resources such as file
servers and printers should reside on the same
VLAN as the resource's users to maintain optimal
levels of performance.
Resource virtual cohabitation is especially
important when campus routing is centralized.
Servers are secured through standard
operating system security.
Route between VLANs utilizing manually
coded, static routes. Configure to filter and
block unwanted traffic from crossing into
neighboring VLANs.
Centralized layer 3 switching (routing) provides
for a simple, easily managed static
architecture.
Routing/
Blocking
Method
Office of
Computer Services
VLAN
Academic
Computing
VLAN #1
Academic
Computing
VLAN #2
Academic
Computing
VLAN #3
Administration
VLAN #1
Student Networking
VLAN #1
Student Networking
VLAN #2
Student Networking
VLAN #3
19. University Campus Conceptual Design
Logical VLAN assignments and physical IDF map overlay. Actual IDF to MDF to MDF
connectivity shown as well as the VLANs present in each IDF switch.
• IDF switch VLAN assignments color coded.
• MDFs function as cabling concentration points for IDFs.
OCS
ACAD1
ACAD2
ACAD3
ADMIN
RESNET1
RESNET2
RESNET3
VLAN
legend
West College
Reamer
Campus
Center
Arts
Yulman
Theater
Old Chapel
Nott
Memorial
27 Terrace
Lane
Richmond
South S&E
(CS Lab)
Steinmetz,
Butterfield
Fieldhouse
Olin North
Olin South
North S&E
(ME)
Bailey Hall
Pasta Lab
North S&E
(Physics)
Social
Sciences
South S&E
(Bio, Chem,
Dean)
OCS
Machine
Room
Alumni Gym
(N & S)
Chi Psi HumanitiesLamont
Shaffer
Library
2nd floor
Shaffer
Library
Basement
Smith
Sillman
Whitaker
36 Union
Avenue
17 South
Lane
Feigenbaum
Hall
Grant
Admissions
Psi Upsilon
Dudley
69 Union
Ave.
Edwards
Lenox 1294
Potter
Raymond
Davidson
North
Davidson
South
Fox NorthChester
Arthur
Fox SouthWebster
North
Colonnade
Sillman
Hall
MDF 3
Hickok
MDF 2Arts
MDF 5
Peschel
MDF 1
Library
MDF 4
North
College
Bronner
Becker Wells
Facilities &
Achilles
Rink
McKean
reference
spreadsheets on
previous pages for
port/station details
21. Hub to Branch Cisco VoIP Deployment
Replace PBX Telephone Systems with Cisco AVVID Technology
Cisco IP Telephony Design with Centralized Call Processing conceptual diagram;
22. Small University Campus Avaya VoIP Design
Control LAN ethernet switch
S8720 Media Servers
G650 Media Gateway
S
D
Sma rt-UPS 400
A
M
ER
I
CAN P
OW
ER C
O
NVERS
IO
N
Rosenwald
Kearny
Cooke
S D
Sma rt-UP S40 0
A
M
ER
I
CANP
OW
ER C
O
NVERS
IO
N
C OMP AC T
S Y S T
R P S
S T R T D U P L XS P E E DU T I L
M O D E
Cat al yst 2950S E R I E S
1 2
3
4
5
6
7
8
9
1 0
1 1
1 2
1
2
1 5
1 6
1 7
1 8
1 9
2 0
2 1
2 2
2 3
2 4
1 3
1 4
UPS with
Battery Pack
G650 Media Gateway
Control LAN ethernet switch
Control LAN ethernet switch
S8500 LSP
G650 Media Gateway
UPS with Battery Pack
S
D
Sma rt-UPS 40 0
A
M
ER
I
CANP
OW
ER C
O
NVERS
IO
N
S Y S T R P S
S T R T D U P L XS P E E DU T I L
M O D E
Cat al yst 2950S E R I E S
1 2
3
4
5
6
7
8
9
1 0
1 1
1 2
1
2
1 5
1 6
1 7
1 8
1 9
2 0
2 1
2 2
2 3
2 4
1 3
1 4
S D
Sma rt-UPS 40 0
A
M
ER
I
CAN P
OW
ER C
O
NVERS
IO
N
S Y S T
R P S
S T R T D U P L XS P E E DU T I L
M O D E
Cat al yst 2950S ER I E S
1 2
3
4
5
6
7
8
9
1 0
1 1
1 2
1
2
1 5
1 6
1 7
1 8
1 9
2 0
2 1
2 2
2 3
2 4
1 3
1 4
S Y S T R P S
S T R T D U P L XS P E E DU T I L
M O D E
Cat al yst 2950S ER I E S
1 2
3
4
5
6
7
8
9
1 0
1 1
1 2
1
2
1 5
1 6
1 7
1 8
1 9
2 0
2 1
2 2
2 3
2 4
1 3
1 4
PSTN
23. Regional Retailer Data Center Design; Cisco, Extreme IP Network and Avaya IPT
Alternate IP
WAN Link
PSTN
CAS T1 access
Primary IP
WAN Link
Avaya G650
Media Gateway
Existing IBM
Application Server
Net PC
IP Handsets
Cisco
3845
Router
VRRP Slave
< Virtual IP Address
VRRP Master
Existing Domino e-mail
Server
Cisco
3660
Router
Avaya G650
Media Gateway
eCAS Server
IPSI
IPSI
MedPro
/CLAN
MedPro
/CLAN
USB Diagnostic Modem
Avaya S8720
Media Server
CROSS-OVER Cable
Used for SW
Duplication
Services Port (eth 1)Services Port (eth 1)
iLO NIC
(not used)
USB Diagnostic Modem
iLO NIC
(not used)
Avaya S8720
Media Server
Extreme Summit 200-24
TDM Channels
Telephony System Control LAN
TFTP Server
Existing DHCP Server
Extreme Summit 200-24
LANLAN
HOLDSpeaker
1 2 3
4 5 6
7 8 9
0
ABC DEF
GHI J LK M NO
PQR S T UV W XYZ
CO NFERENCE
#*
ISDN
3xT1
Private IP Network
High Availability Enterprise
Call Processing Center
Avaya MAS
Avaya MSS
24. Avaya Engineering Packages
The following 7 slides were created while performing as a Systems Engineer with
Avaya between 2007 and 2009.
These presentation slides were provided to Avaya clients with Bill of
Material spreadsheets between 2007 and 2009. Company names
and addresses have been removed or masked.
Timothy R. Loftus
IT Manager, IBM IT Infrastructure Architect, Avaya IP Telephony Specialist
eMail; tloftus@aol.com
phone; 732-740-8329
Profile; http://www.linkedin.com/in/timloftus
Twitter@Tim_Loftus
25. McGraw Hill Company, 2 Penn Plaza, 22nd Floor, New York City
The design being implemented is an upgrade from older to current technology. The MGH office at 2 Penn Plaza will migrate from MCC, fiber connect and CM3.1
to G650s, IP Connect and CM5. McGraw Hill is not anticipating new features or functionality with this upgrade.
All 19” cabinets are being provided by McGraw Hill. There is a slight space issue so the customer wants to move cabinets around after implementation. The
intent is to utilize the space being vacated by the MCC cabinets. No exact determination has been made regarding how this will be accomplished. The wall field
is adjacent to the cabinets. See diagram below. The arrangement of cabinets should be discussed with Jim Duffy at McGraw Hill. No ESS or LSPs are
supported by the 2 Penn Plaza system. Media server is S8720. Media servers will receive DAL2.
Juan Alvarez, ATAC System Designer, made the following notes;
* All CM licenses count upgraded to CM5 EE from CM3 EE.
* IP softphone and IP agent licenses were NOT upgraded here.
* Call Center software was NOT upgraded at this point either. Note: 2 Penn Plaza has 5200 CC licenses. It is very unlikely that MGH is using all of them and in
case the want to upgrade CC software, they probably don't want to upgrade the whole count.
* All MCC cabinets replaced with G650
* Systems migrated to IP connect. Single IPSI and single Media Resource per PN. [Later changed to Duplicated for High Reliability]
Project Summary
Overview
Avaya Account Team
Tony DiCaro, Global Account Manager
Karen Larson, Client Executive
Tim Loftus, System Engineer
Jim Hughes, Applications Sales Specialist
Juan Alvarez, ATAC System Designer
Client Location Manager
Jim Duffy, 212-904-3287, Jim_Duffy@mcgraw-hill.com
Existing
S87XX
Cabinet
Existing
MCC
Cabinet
Existing
MCC
Cabinet
Existing
MCC
Cabinet
New
Cabinet
New
Cabinet
New
Cabinet
Station Wallfield
27. G650 Media
Gateway
Bay Face Layout, , 22nd
Floor
19" Cabinets provided by .
G650 Media
Gateway
G650 Media
Gateway
G650 Media
Gateway
G650 Media
Gateway
G650 Media
Gateway
G650 Media
Gateway
G650 Media
Gateway
G650 Media
Gateway
G650 Media
Gateway
G650 Media
Gateway
G650 Media
Gateway
COM PACT
S8710 Media Server
C 363T
CONSOLE
RO UTSYS PW R
L NK C OL T x Rx F DX Hsp dL AG
14 16 18 20 22 24
13 15 17 19 21 2351 52 1 3 5 7 9 11
2 4 6 8 10 12
C 363T
CONSOLE
RO UTSYS PW R
L NK C OL T x Rx F DX Hsp dL AG
14 16 18 20 22 24
13 15 17 19 21 2351 52 1 3 5 7 9 11
2 4 6 8 10 12
COM PACT
S8710 Media Server
G650 Media
Gateway
G650 Media
Gateway
G650 Media
Gateway
30. Technical Specifications
1) Floor Load cannot be calculated since the placement of these servers and gateways may not necessarily be distributed as drawn in the
diagram.
2) 1 foot of clearance is required in the rear and 18” in the front for system cooling.
3) Mounts in 19” EIA rack/cabinet (provided by McGraw Hill)
4) Recommended clearance for maintenance is 8 square feet
5) Convertible design.
6) The heat dissipation is dependent on the mode the UPS is operating in. Please see the reference chart at: http://avayaups.com/avaya/
Products/700_specs.asp for the specifics
Product Code Qty Description MPG Location
------------------ ------- ------------------------------------------------------------------------ ----- ------------
185446 AVAYA COMMUNICATIONS SOLUTION Z9
184716 1 CM S8700 MULTI CONNECT MODEL UPG IG 2 Penn Plaza
195250 4 IPSI2 CP TN2312BP RHS IG 2 Penn Plaza
203027 1 VAL CIRCUIT PACK TN2501AP A1 2 Penn Plaza
203071 6 IP 320 MEDIA RESOURCE TN2602AP A1 2 Penn Plaza
207944 1 CM5.0 S87XX UPG SFTW LIC DA 2 Penn Plaza
212337 1 INTGR MGMT R5.0 ASA VAM CLIENT CM LIC DB 2 Penn Plaza
212338 1 INTGR MGMT R5.0 NMC CM LIC DB 2 Penn Plaza
212339 1 INTGR MGMT R5.0 VMM CM LIC DB 2 Penn Plaza
214250 1 AAN CM5 CONVERGED NET ANALYZER ENTITLE DB 2 Penn Plaza
214251 1 AAN CM5 ADAPTIVE PATH ENTITLE DB 2 Penn Plaza
215536 3262 CMEE R5 1001+ MULTI UPG LIC SSU DA 2 Penn Plaza
405362641 15 PWR CORD USA A1 2 Penn Plaza
700178056 2 CABLE GREEN 25 METER A1 2 Penn Plaza
700178072 2 CABLE RED 25 METER A1 2 Penn Plaza
700394497 6 BUS TERMINATOR CP AHF110 RHS A1 2 Penn Plaza
700394950 15 G650 MEDIA GATEWAY RHS IG 2 Penn Plaza
700397284 12 G600/G650 TDM LAN CABLE KIT RHS A1 2 Penn Plaza
700406432 210 CABLE ASSY B25A 50FT RHS A1 2 Penn Plaza
700437189 2 CM5.0 LINUX UNITY SFTW CD UPG A1 2 Penn Plaza
700439672 1 ADMINISTRATION TOOLS R5.0 CD DB 2 Penn Plaza
700439680 1 NETWORK MANAGEMENT R5.0 CD DB 2 Penn Plaza
700439706 1 R5.0 ADMIN TOOLS INSTALL & UPG DOC DB 2 Penn Plaza
700439714 1 VOIP MONITORING MANAGER R5.0 CD DB 2 Penn Plaza
700439722 1 R5.0 VOIP MNTR MGMT INSTALL & UPG DB 2 Penn Plaza
700439730 1 R5.0 ENTPRS NTWK MGMT INSTALL & UPG DB 2 Penn Plaza
214370 1 CM5.0 US DOCUMENTATION A1 2 Penn Plaza
195476 1 SOFTWARE SUPPORT COMMUNICATION MGR MODEL Z9 2 Penn Plaza
204062 3262 SSU CMEE R5.X LIC 1001+ 3YAN DA 2 Penn Plaza
MS Word
Document - Minimum V intage Report
31. Current PIPS Group or NEW Name or Description
Existing
IP Address
New
IP Address Mask IP Gateway LAN DESCR
IP Node Names procr
IP Node Names default 0.0.0.0
IP Node Names cmssec 152.159.5.21
CAT HOSTs Information services-ppp 10.1.78.50
CAT HOSTs Information localhost.localdomain localhost 127.0.0.1
IP Node Names cmspri 151.108.28.58
CAT HOSTs Information 2PennPlazaActive 151.108.58.20 No Change 2PP VOICE -- Routable
CAT HOSTs Information 2PennPlazaSvr1 151.108.58.21 No Change 2PP VOICE -- Routable
CAT HOSTs Information 2PennPlazaSvr2 151.108.58.22 No Change 2PP VOICE -- Routable
IP Interface Information C-LAN 02C11 TN799 D CLAN 1 151.108.58.23 No Change 255.255.255.192 151.108.58.1 2PP VOICE -- Routable
IP Interface Information C-LAN 02D20 TN799 D CLANCMS1 1 151.108.58.24 No Change 255.255.255.192 151.108.58.1 2PP VOICE -- Routable
IP Interface Information C-LAN 03D10 TN799 D CLANCMS2 1 151.108.58.25 No Change 255.255.255.192 151.108.58.1 2PP VOICE -- Routable
IP Interface Information C-LAN 01E18 TN799 D cmslink 1 151.108.58.26 No Change 255.255.255.192 151.108.58.1 2PP VOICE -- Routable
IP Interface Information C-LAN 01D16 TN799 D clan-1d16-audix 1 151.108.58.27 No Change 255.255.255.192 151.108.58.1 2PP VOICE -- Routable
IP Interface Information C-LAN 01A06 TN799 D clan-1a06-cdr 1 151.108.58.28 No Change 255.255.255.192 151.108.58.1 2PP VOICE -- Routable
IP Interface Information MEDPRO 02C12 TN2302 Medpro 1 151.108.58.31 No Change 255.255.255.192 151.108.58.1 2PP VOICE -- Routable
IP Interface Information VAL 01A19 TN2501 val-1a19 151.108.58.35 No Change 255.255.255.192 151.108.58.1 2PP VOICE -- Routable
IP Interface Information VAL 02D19 TN2501 val-2d19 151.108.58.36 No Change 255.255.255.192 151.108.58.1 2PP VOICE -- Routable
IP Node Names AUDIX1 151.108.58.37 No Change 2PP VOICE -- Routable
IP Node Names microcall 151.108.58.38 No Change 2PP VOICE -- Routable
IP Node Names pollcat 151.108.58.39 No Change 2PP VOICE -- Routable
NEW CIRCUIT PACK REQUIRES IP ADDR VAL CIRCUIT PACK TN2501AP pn1 151.108.58.## 2PP VOICE -- Routable
NEW CIRCUIT PACK REQUIRES IP ADDR IP 320 MEDIA RESOURCE TN2602 pn1 151.108.58.## 2PP VOICE -- Routable
NEW CIRCUIT PACK REQUIRES IP ADDR IP 320 MEDIA RESOURCE TN2602 pn1 151.108.58.## 2PP VOICE -- Routable
VIRTUAL REQUIRES IP ADDR Media Resource PN1 Active 151.108.58.## 2PP VOICE -- Routable
NEW CIRCUIT PACK REQUIRES IP ADDR IP 320 MEDIA RESOURCE TN2602 pn2 151.108.58.## 2PP VOICE -- Routable
NEW CIRCUIT PACK REQUIRES IP ADDR IP 320 MEDIA RESOURCE TN2602 pn2 151.108.58.## 2PP VOICE -- Routable
VIRTUAL REQUIRES IP ADDR Media Resource PN2 Active 151.108.58.## 2PP VOICE -- Routable
NEW CIRCUIT PACK REQUIRES IP ADDR IP 320 MEDIA RESOURCE TN2602 pn3 151.108.58.## 2PP VOICE -- Routable
NEW CIRCUIT PACK REQUIRES IP ADDR IP 320 MEDIA RESOURCE TN2602 pn3 151.108.58.## 2PP VOICE -- Routable
VIRTUAL REQUIRES IP ADDR Media Resource PN3 Active 151.108.58.## 2PP VOICE -- Routable
Replace Cajun with MGH Cisco ipsi-A01a 168.152.254.1 New MGH Subnet "A" - Non routable now Secure Control LAN A
Replace Cajun with MGH Cisco S87xx 2PennPlazaActive-cna 168.152.254.200 New MGH Subnet "A" - Non routable now Secure Control LAN A
Replace Cajun with MGH Cisco S87xx 2PennPlazaSvr1-cna 168.152.254.201 New MGH Subnet "A" - Non routable now Secure Control LAN A
Replace Cajun with MGH Cisco S87xx 2PennPlazaSvr2-cna 168.152.254.202 New MGH Subnet "A" - Non routable now Secure Control LAN A
Replace Cajun with MGH Cisco ups-a 168.152.254.239 New MGH Subnet "A" - Non routable now Secure Control LAN A
Replace Cajun with MGH Cisco Cajun enet-switcha1 168.152.254.240 New MGH Subnet "A" - Non routable now Secure Control LAN A
NEW CIRCUIT PACK REQUIRES IP ADDR IPSI2 CP TN2312BP RHS pn2 control A New MGH Subnet "A" - Non routable now Secure Control LAN A
NEW CIRCUIT PACK REQUIRES IP ADDR IPSI2 CP TN2312BP RHS pn3 control A New MGH Subnet "A" - Non routable now Secure Control LAN A
Replace Cajun with MGH Cisco ipsi-A01b 168.152.255.1 New MGH Subnet "B" - Non routable now Secure Control LAN B
Replace Cajun with MGH Cisco S87xx 2PennPlazaActive-cnb 168.152.255.200 New MGH Subnet "B" - Non routable now Secure Control LAN B
Replace Cajun with MGH Cisco S87xx 2PennPlazaSvr1-cnb 168.152.255.201 New MGH Subnet "B" - Non routable now Secure Control LAN B
Replace Cajun with MGH Cisco S87xx 2PennPlazaSvr2-cnb 168.152.255.202 New MGH Subnet "B" - Non routable now Secure Control LAN B
Replace Cajun with MGH Cisco ups-b 168.152.255.239 New MGH Subnet "B" - Non routable now Secure Control LAN B
Replace Cajun with MGH Cisco Cajun enet-switchb1 168.152.255.240 Replace Cajun with MGH Cisco Secure Control LAN B
NEW CIRCUIT PACK REQUIRES IP ADDR IPSI2 CP TN2312BP RHS pn2 control B New MGH Subnet "B" - Non routable now Secure Control LAN B
NEW CIRCUIT PACK REQUIRES IP ADDR IPSI2 CP TN2312BP RHS pn3 control B New MGH Subnet "B" - Non routable now - maybe futureSecure Control LAN B
CAT HOSTs Information 2PennPlazaSvr1-dup 192.11.13.13 No Change Private Internal
CAT HOSTs Information 2PennPlazaSvr2-dup 192.11.13.14 No Change Private Internal
CAT HOSTs Information services-laptop 192.11.13.5 No Change Private Internal
CAT HOSTs Information services-if 192.11.13.6 No Change Private Internal
IP Addressing Requirements
32. QR Code for my web site where I provide my story as well as my
technology management philosophies.
http://www.freeknowledgenetwork.com/about-the-owner.html
2009
I established a Limited Liability Corporation in NJ to establish myself as a top IT resource.
The following 5 slides illustrate my most recent activity.
33. BUSINESS ARCHITECTURE = What is the mission of the business?
Study the Mission Statement and conduct interviews ('What are we doing?")
How is the business executing the mission? ('How are we doing it?')
How is the business providing value to the customer? (perception of the business)
ANALYSIS
Can the IT Architecture be utilized to benefit, improve or even change the Business Architecture?
Can the IT Architecture be utilized to improve the business customer's experience?
Develop the end state the VISION
GAPS
1. Can the vision be supported by current IT operations staff? Can the staff
be supplemented?
2. Can we get from where we are to the VISION and can the staff get us there?
3. What will the cost be?
4. What will the timeframe be?
5. What will be the success indictors that can be
measured and reported? When and how often?
6. What tools are needed?
Create a PLAN to address GAPS
Include;
1. Business processes
2. resource utilization (internal & external)
3. budgets
4. time lines
EXECUTE
1. Acquire necessary tools
2. Create external requirements (talent and
hardware)
3. Build measurements
4. Report measurements to the business
5. Establish documentation
6. Establish Operational procedures
7. Upon completion, set up a schedule with
the business to re-take measures
Business Architecture Analysis
1. Develop the VISION 2. Create a plan 3. Execute
34. A client was experiencing routing issues that prevented communications on the HQ LAN.
Graphic for the client’s campus LAN recommendation supporting IP Traffic (IPT & Data Communications)
Edgewater
VOICEDATA
Carrier
Links to
Internet
Management Switch
VLANmgt / VLANdata2
server server
Suggested VLAN design
in accordance with stated
requirements
VLANipt
VLANdata5
VLANmgt
VLANipt
VLANdata5
VLANmgt
VLANipt
VLANdata3
VLANmgt
VLANipt
VLANdata3
VLANmgt
Timothy R. Loftus
Free Knowledge Network
February 2, 2012
VLAN names changed so they do not
have any relation to IP addresses
VLAN 101 – Network Management -
Name changed to VLANmgt
VLAN 102 – Servers/Other network
devices - Name changed to VLANdata2
VLAN 103 – Administrative/Health Center
Name changed to VLANdata3
VLAN 104 – Residential Use - Name
changed to VLANdata4
VLAN 105 – Guest Access - Name
changed to VLANdata5
VLAN 106 – Security/Access Control - Not
used in design (VLANmgt can be utilized)
VLAN 107 – VOIP - Name changed to
VLANipt
VLANipt
VLANdata3
VLANmgt
VLANmgt
VLANipt
VLANmgt
VLANdata2
VLANdata3
VLANdata4
VLANdata5
IPT
PBX
VLANmgt
VLANipt
Router
VLAN NAME
IP NETWORKS
BELONGING TO
VLAN
VLANipt
all telephone IP
subnet addresses
VLANdata1
10.6.90.0
10.6.93.0
10.6.96.0
10.6.99.0
VLANdata3
10.6.91.0
10.6.94.0
10.6.97.0
10.6.100.0
VLANdata4
10.6.1.0
10.6.2.0
10.6.106.0
VLANdata5
other addresses as
required
35. Cloud Sourcing (contract work)
Dissatisfied with the current hosted IPT service, my client requested a consultative
analysis and recommendation. The following activities and output followed:
1. Troubleshoot the current service
2. Produced a PowerPoint report of findings
3. Recommended a course of action
4. Telephony and data RFQs were completed and sent to six bidders
5. Selected four cloud provider bidders to compete for the service
6. Meetings and negotiations were conducted with each bidder at the client’s office
7. After negotiations final responses were reviewed and a recommendation was
presented to the client
8. With the client - a cloud service provider was selected for voice and data services
9. implementation/cutover was completed within 8 weeks
Free Knowledge Network, LLC
March – August, 2012
36. Client Service Investigative Report: Page 5 of 8 graphically illustrates current issues that must be addressed.
Telephony Network Topology Map (Summary)
* Multiple Internet networks traversed (5) / BGP gateways traversed (4)
* Routers traversed for a one-way trip is estimated at 26 – this high number will introduce jitter
* There can be no guarantees for delay and jitter across multiple network gateways and routers
*The exact location of the SIP gateway is undetermined
Verizon
Alter
Telia
Dallas
Internet
Service
Provider
Level3
Texas
173.192.18.132
Chicago
213.248.72.174
NYC
213.155.130.35
NYC
152.63.3.6
152.63.20.97
Dallas,TX
66.228.118.65
66.228.118.137
66.228.118.141
66.228.118.137
173.192.18.254
173.192.18.212
173.192.18.254
4.59.36.93
4.69.145.254
4.69.145.126
4.69.151.154
4.69.151.130
4.69.151.142
4.59.32.37
10.25.25.1
173.70.25.1
130.81.109.116
130.81.29.8
PBX Windows Server
American Clean Energy
Free Knowledge Network
Timothy R Loftus
Filename: Amcleanenergy IPT1.ppt
March 30, 2012
152.63.19.177
157.130.255.206
Client
37. Published Author
‘Success Strategies for Technology Management’ is available in paperback ($19.95) or Kindle ($9.99)
http://www.amazon.com/s/ref=nb_sb_noss?url=search-alias%3Dstripbooks&field-keywords=timothy%20r%20loftus
38. Published Author
My eBook ‘How to Figure It Out’ is available in Kindle format ($1.99)
http://www.amazon.com/How-Figure-Out-Strategies-ebook/dp/B00BGY1SRS/ref=sr_1_1?s=books&ie=UTF8&qid=1363112945&sr=1-
1&keywords=How+to+Figure+It+Out%3A+IT+Network+Trouble%3F+%22Just+be+the+ball%22
39. Thank you for taking time to view my presentation.
I enjoy meeting new people and reconnecting with old acquaintances
to just talk about things.
Visit my web pages at freeknowledgenetwork.com
Contact me anytime at trloftus@freeknowledgenetwork.com
or mobile phone 732-740-8329
