Abhinav Vidyalay & Jr. College
Apart From This
Updated: 17-Aug-10
What follows are notes on setting up the LAN especially for internet access. These settings were tested with certain objectives which are also specified. It is for the reference of network personnel. Others are not supposed to change any of these settings unless authorized to do so by the systems administrator. Network & systems people should take care that if any modifications are done to the network the same should also be updated here.
Computers - PC's, Servers, Laptops, etc.
Other Support Devices - Power Supplies, Printers, Switches, etc.
IP Address usage policy
192.168.0.x | Used for |
1 | Emergency ICS router set up on an Win XP machine |
2, 3, 4 | Domain Controllers - DeepSpace, Orion, ... |
5, 6, 7 | Laptops - K, Pro, Krypton |
8, 9, 10 | NAT routers & 2K servers - Saturn, Pi, ... |
11 - 20 | Physical devices such as printers, routers, etc. (Ceres is 15) |
21 - 63 | IT lab machines; 63 is the boundary so that we can use a mask 255.255.255.192 on the router filters to segregate IT lab and other machines (i.e. a Low/High Pass Filter) |
64 - 127 | Space lab machines; 127 is the boundary so that we can use a mask 255.255.255.128 on the router filters to segregate all lab machines from other machines (i.e. a Low/High Pass Filter) |
128 - 255 | All office machines; Random visitors; RRAS obtained address |
Server Roles & Services Config
Server | Role | Services Settings & Other Details |
DeepSpace | Primary Domain Controller | DHCP - Scope: 192.168.0.2 to .63; always update DNS; reservations for all IT lab and Space lab machines as per policy; lease granted for 5 days only DNS - Both forward & reverse zones with Name servers (DC's) as Forwarders; WINS & WINS-R lookup using .2; Recursion allowed WINS - Default settings with no replication partners |
DeepSpace | Web Server | IIS Web - http://deepspace (Internet) & http://deepspace:120 (Intranet: e-Admin) as web sites; Internet site has public site permissions, while e_Admin has custom permissions - staff can view most of it and students can see some of it, while systems see all and only admin have full control; the intranet site has no script authoring / write permissions; server extensions are not configured on either site due to version conflict between Win 2K & FrontPage XP IIS FTP - default FTP sites with anonymous logins allowed; FTP mapped to \\Orion\Home\Public for possible incoming dial-up connections IIS Other - NNTP services enabled using \\deepspace\NNTP |
DeepSpace | Database Server | SQL - Starts with OS and has NT security; Uses between 40 & 100 MB of ; uses Win NT fibers; does not have priority above NT; ANSI options set, others reset; Catalog e_Abhinav spread over 4 Primary files stored in installation directory; SQL database handled using MS Access ADP files or through DAP/ASP interfaces stored in \\deepspace\e_Admin\interface; db_owner is abhinav\kedar, while other admins get security and systems admin controls; teachers, clerks, systems get appropriate rights to the tables and other objects; students have not access; No replication configured; Integrity checks, optimizing and backups occur daily during off-peak hours; shrinking is manual; Alerts are issued to the operator (dbo) through the WinNT messenger service ADP - The Access Database Projects are used to access the SQL DB since they retain the tables, views & stored procedures in the SQL format but allow their designing using the simpler MS Access interface and also for the custom forms, reports and pages; can be customized for the view and access required, viz. teachers planner, scores entry, etc.; stored in \\deepspace\e_Admin\interface |
Orion | Backup Domain Controller | DNS - Both forward & reverse zones with Name servers (DC's) as Forwarders; WINS & WINS-R lookup using .2; Recursion allowed Home & Print Services - The home areas of all staff are on \\orion\home ; For temporary work done by staff such as exam papers, project guidelines, etc. use the folders in \\Orion\Home\Public\ appropriate to the department; The printer spooling to Ceres & Zeus will also occur through Orion |
Saturn | IT Lab Server | IIS Web - http://Saturn (Intranet: AcadWeb) as a web site; It has custom permissions so that staff and students can freely browse it and also write/modify certain areas as per the requirement of various events such as exhibitions, AG's, etc. RRAS_LAN - This service is as used to speed up the internal routing as well as to maintain Low & High Subnets if and as required; Saturn being in the IT lab network is on the Low Subnet and hence this router can be set to filter all packets coming from or going to anywhere else but the network 192.168.0.0 with subnet mask 255.255.255.192 (for the 63 machines in the IT lab and servers etc.) or a subnet mask of 255.255.255.128 (for all lab machines - which only excludes the office machines); the masking can be set only for the lower subnet; This ensures that the filtered out machines do not see this router, however this only reduces traffic as the XP machines can see any other XP machine anyway; The LAN router is also configured to look at remote routers other than itself RRAS_Demand-Dial - The primary router being Pi, this interface has similar settings as Pi, however the service is usually stopped (not disabled but put on manual) |
Pi | Space Lab Server | MML - Windows Media Services and other tools necessary to prepare and deliver MML RRAS_LAN - This service is configured similar to the LAN router on Saturn, except that since there cannot be a band pass filter, all machines in the subnet masked by 255.255.255.128, i.e. the Space machines, are still in the same set as the IT machine; hence in order to specifically enable only the space machines to access the internet; the filters on the LAN routers have to be configured to ignore the packets for the IT & server machines with subnet mask 255.255.255.192; Its therefore easier to let the Saturn have the sole prerogative over filtering access to the internet RRAS - Demand-Dial - Remote routing interface enabled using the Standard Modem ...; The credentials are set and the interface is configured to dial-up to the ISP, using standard options, particularly with the authentication and allowing multi-link for PPP protocol users; The router manager is enabled and the discovery broadcasts are set to default values; The router is authorized to allocate IP addresses to machines and to itself using its internal DHCP rather than the network (to quicken the process) in the range .45 to .63 (for online IT exams) which can be changed to .100 to .128 or beyond provided the filters are setup appropriately; No filters are set for input and output packets; UDP & TCP packets are allowed to remain mapped for not more than 15 min; |
Client Network Settings
| Settings on | Network Pa eter | Setting |
| Client | IP address | Obtain automatically from DHCP |
| Client | DNS server | Obtain automatically |
| Client | Routers/Gateways/WINS | Obtain automatically |
| Client | TCP/IP filters | Disabled |
| DHCP | IP addresses | Reserved |
| DHCP | DNS servers | 192.168.0.9, .8, .5, .2, .3 |
| DHCP | Routers | 192.168.0.9, .8, .5 |
| DHCP | WINS/NBNS servers | 192.168.0.2 |
| DHCP | DNS suffix | abhinav.local |
| DHCP | Name Servers | 192.168.0.2, .3 |
Server Software Policy
Please do not install software other than that given below on any server without the explicit permission of the systems administrator, as it may cause unforeseen glitches and effectively crash the network.
| Software / Type of Software | Installation / Other Special Settings |
| Operating Systems | Win 2K or Win 2003 Server, minimum accessories and other tool installed; latest service packs such as SP4 for Win2K and other security patches |
| Administration / Security Tools | Windows Administration Toolkit; Antivirus (AVG-Network edition); Anti-Spyware; Smart UPS, 3rd Party |
| Office Tools | Office XP (use Office 2K only on machines with Win 2K where development in MS Access or FrontPage is being done to avoid glitches due to version conflicts); MS Project 2003 only on servers always operated by admin / systems personnel; Adobe Acrobat Reader 6.0 for reading PDF's; MathType 5.0 for inserting scientific / math content into documents; |
| Media Tools | Windows Media Player 9.0; Shockwave Flash Viewer for viewing web content; |
| Net & File Mgmt Tools | NIST time check utility to keep the servers up-to-date with international atomic clocks (when you connect to the net); Windows FTP LE for dealing with web-based ftp sites; WinZip 8.0 for file compression; |
Research & Development Tools | SQL 7.0 (only on Database servers); Visual Studio (VB only) |
Client Software Policy
| Software / Type of Software | Role | Installation / Other Special Settings |
| Operating Systems | Office / IT / Space / Kiosk | Win XP or Win 98 (only if XP has glitches on that system), minimum accessories and other tool installed; latest service packs and other security patches |
| Administration / Security Tools | Office / IT / Space / Kiosk | Antivirus (AVG_7.0); Anti-Spyware |
| Office Tools | Office / IT / Space | Office XP; Adobe Acrobat Reader 6.0 for reading PDF's; MathType 5.0 for inserting scientific / math content into documents; Tally 6.3 for accounting and accounts students |
| Office Tools | Kiosk | Office XP (minimum only for support to MS Office Web components); Adobe Acrobat Reader 6.0 for reading PDF's; |
| Media Tools | Office / IT / Space / Kiosk | Windows Media Player 9.0; Shockwave Flash Viewer for viewing web content; |
| Net & File Mgmt Tools | Office / IT / Space | Windows FTP LE for dealing with web-based ftp sites; WinZip 8.0 for file compression; |
Research & Development Tools | IT | Visual Studio (VB only); Logomation (Simply copy the folder to the prog files and create a shortcut onto the desktop) & QBASIC for beginner prog mers; PaintShop Pro for animation; |
Research & Development Tools | Space | Visual Studio (VB only); SpaceCAD for rocket design; SkyMap 3.0 for positional information of heavenly objects; StarryNight for visual astronomy; MathCAD for mathematical simulations, modeling and in general as a visual aid; Other random astronomy software as per requirement (please uninstall when not required for more than a term) |
Maintenance Basics
The following checks should be made by the systems personnel as per the schedules defined so that the machines are always in good shape. However, personal machines or machines shared exclusively between two or three people should be checked by the operators only to avoid the load on the systems personnel. Even though some procedures are automated (i.e. once you or the systems person sets it up that way) yet they should be checked once in a while, since the settings may change due to some glitches or the procedure may have failed due to certain unsolvable errors on your system. The time required per machine is noted below.
| Type of maintenance | Machine Category | Frequency Expected | Method | Time required | Procedure |
| System Health Check Up | All | Bi-Weekly | Manual | ~ 10 min | Event Logs - Virtual Memory check - |
| System State Backups | All | Weekly | Auto | ~ 5 min | Use the Backup utility available in Accessories - System Tools. In Backup Wizard select the option "Only back up the system state data" and give an appropriate filename and destination folder (such that no one accidentally deletes those files). In Advanced back up options give the following parameters: Back up type - Normal, Verify data after backup, Replace the data on the media with this backup. Since we want this backup to run automatically once every week hence instead of running it immediately set it to run later and set the schedule using the Schedule button in the "When to back up" dialog box. |
| Data Backups | Servers | Weekly | Auto | ~ 0.5-1 hr | |
| Hard-Disk Health | All | Bi-Weekly | Manual | ~ 1 hr | Disk Cleanup - ScanDisk - Disk Defrag - |
| Network Performance | All | Monthly | Manual | File Upload Time | |
Current Systems Setup
Computers
| Sr. No. | Location | M/C | CPU/ Type | Chipset | HDD (GB) | RAM (MB) | Type | FDD | CDD | Display Card | Lan Card | Sound Card |
| 19 | DO | Deepspace | P4 1.7GHz | Intel 850MD | 80GB+40 | 512+128 | RD | 1.44MB | NIL | NVIDIA RIVA TNT2 | RealtekRTL8139 | Inbuilt |
| 20 | DO | Orion | Celeron1.8GHz | 40 | 256 | DD | 1.44MB | Samsung 52x | Inbuilt | Inbuilt | Inbuilt | |
| 1 | IT Lab | Saturn | Celeron1.3GHz | 40 | 256 | SD | 1.44MB | CD Writer | Inbuilt | Realtek8139/810x | ||
| 2 | IT Lab | Atlas | PentiumII 350MHz | 10.3 | 128+128 | SD | 1.44MB | NIL | Trident 9420 PCI | SN-3200 | CS4821 Crystal | |
| 3 | IT Lab | Promethius | Celeron 466 MHz | Intel 810 | 20 | 64 | SD | 1.44MB | NIL | Inbuilt | SN-3200 | Inbuilt |
| 4 | IT Lab | Pandora | Celeron 466 MHz | Intel 810 | 4.3 | 64 | SD | NIL | NIL | Inbuilt | SN-3200 | Inbuilt |
| 5 | IT Lab | Epimethius | Celeron 466 MHz | Intel 810 | 2.1+2.1 | 64 | SD | NIL | NIL | Inbuilt | SN-3200 | Inbuilt |
| 6 | IT Lab | Janus | Celeron 466 MHz | Intel 810 | 40 | 64 | SD | 1.44MB | NIL | Inbuilt | SN-3200 | Inbuilt |
| 7 | IT Lab | Mimas | Celeron 466 MHz | Intel 810 | 40 | 64 | SD | 1.44MB | NIL | Inbuilt | SN-3200 | Inbuilt |
| 8 | IT Lab | Enceladus | Celeron 466 MHz | Intel 810 | 40 | 64 | SD | NIL | NIL | Inbuilt | SN-3200 | Inbuilt |
| 9 | IT Lab | Tethys | Celeron 466 MHz | Intel 810 | 2.1+2.1 | 64 | SD | 1.44MB | NIL | Inbuilt | SN-3200 | Inbuilt |
| 10 | IT Lab | Telesto | Celeron 466 MHz | Intel 810 | 40 | 64 | SD | 1.44MB | NIL | Inbuilt | SN-3200 | Inbuilt |
| 11 | IT Lab | Calypso | Celeron 466 MHz | Intel 810 | 40 | 64 | SD | 1.44MB | NIL | Inbuilt | SN-3200 | Inbuilt |
| 12 | IT Lab | Dione | Celeron 333 MHz | 20 | 64 | SD | 1.44MB | NIL | trio 3D / 2x V1.00.28 | SN-3200 | CS4821 Crystal | |
| 13 | IT Lab | Helene | Celeron 466 MHz | Intel 810 | 40 | 64 | SD | 1.44MB | NIL | Inbuilt | SN-3200 | Inbuilt |
| 14 | IT Lab | Rhea | Celeron 466 MHz | Intel 810 | 40 | 64 | SD | 1.44MB | NIL | Inbuilt | SN-3200 | Inbuilt |
| 15 | IT Lab | Titan | Celeron 466 MHz | Intel 810 | 10.3 | 64 | SD | 1.44MB | NIL | Inbuilt | SN-3200 | Inbuilt |
| 16 | IT Lab | Hyperion | Celeron 466 MHz | Intel 810 | 20 | 64 | SD | 1.44MB | NIL | Inbuilt | SN-3200 | Inbuilt |
| 17 | IT Lab | Iapetus | Celeron 300 MHz | Intel 810 | 10 | 96 | SD | NIL | NIL | Inbuilt | Realtek RTL8029 | Inbuilt |
| 18 | IT Lab | Phoebe | Celeron 466 MHz | Intel 810 | 4.3 | 64 | SD | 1.44MB | NIL | Inbuilt | SN-3200 | Inbuilt |
| 21 | Space | Pi | PIV 2.4GHz | Intel 865GV | 80 | 512 | Sata | NIL | NIL | NIL
| NIL
| NIL
|
| 22 | Space | JVAS Bo218+357 | PIII 500 MHz | Intel 810 | 20 | 128 | SD | 1.44MB | NIL | SN-3200 | ||
| 23 | Space | HD56925 | PentiumIII 500MHz | 10 | 128 | SD | 1.44MB | NIL | Realtek8029(AS) | |||
| 24 | Space | PSR1917+21 | PIII 933 MHz | Intel810EB | 20 | 64+64 | SD | 1.44MB | NIL | Inbuilt | SN-3200 | Inbuilt |
| 25 | Space | NGC5194 | PentiumIII 600MHz | Intel 810 EB | 40 | 128 | SD | 1.44MB | NIL | Inbuilt | SN-3200 | Inbuilt |
| 26 | Space | SN1987A | PentiumIII 800 MHz | Intel810E | 8.4 | 128 | SD | 1.44MB | Inbuilt | RealtekRTL8139 | ||
| 27 | Space | M31 | Celeron 1.7GHz | VIA P4M533 | 40 | 128 | DDR | NIL | NIL | Inbuilt | Inbuilt | Inbuilt |
| 28 | Space | HDE226868 | Celeron 1.7GHz | VIA P4M533 | 40 | 128 | DDR | NIL | NIL | Inbuilt | Inbuilt | Inbuilt |
| 29 | Space | 3c273 | Celeron 1.7GHz | VIA P4M533 | 40 | 128 | DDR | NIL | NIL | Inbuilt | Inbuilt | Inbuilt |
| 30 | TO | Uranus | Celeron1.3GHz | 40 | 128 | SD | 1.44MB | NIL | Inbuilt | RealtekRTL8139 | ||
| 31 | IT Lab | Kaon | Celeron 366 MHz | 4.3 | 256 | SD | 1.44MB | NIL | Trident 9420 PCI | SN-3200 | CS4821 Crystal | |
| 32 | AO | Muon | Celeron 466 MHz | Intel 810 | 40 | 64 | SD | 1.44MB | NIL | Inbuilt | SN-3200 | Inbuilt |
| 33 | TO | Proton | Celeron1.8GHz | 40 | 256 | DD | 1.44MB | Creative 48x | Inbuilt | Inbuilt | Inbuilt | |
| 34 | TO | Electron | Celeron 466 MHz | Intel 810 | 2.1 | 64 | SD | 1.44MB | NIL | Inbuilt | SN-3200 | Inbuilt |
| 35 | AO | Neutron | Intel 486 DX-2 | Compaq | 0.63 | 12 | 1.44MB | NIL | Inbuilt | SN-3200 | NIL |
Support Devices
| No. | Type | Name | Qty | Details |
| 1 | Intranet | Hub | 5 | 8 RJ-45 ports & 1 BNC port each |
| 2 | Intranet | Switch | 1 | 8 RJ-45 ports |
| 3 | Intranet | Switch | 3 | 16 RJ-45 ports |
| 4 | Intranet | Cable | UTP with RJ 45 plug for 33 nodes & 2 Servers | |
| 5 | Internet | Modem | 4 | DLink External Modems (Saturn, Pi, Proton & Deepspace) |
| 6 | Accessories | Inkjet Printer | 2 | Icarus(3320 Series HP Printer), Zeus (HP 810C) |
| 7 | Accessories | Dot-matrix printer | 2 | Eros (Epson LX - 300, 80 columns DMP - 24pin), AO - 132 column |
| 8 | Accessories | Printer cum Photo-copier | 1 | Ceres (Toshiba eStudio 160) |
| 9 | Accessories | Speaker | 2 | Creative SBS15, Philips Speaker |
| 10 | Accessories | Scanner | 1 | UMAX-Astra 2000 |
| 11 | Accessories | Mike | 1 | |
| 12 | Accessories | CD Writer | 1 | ASUS |
| 13 | Power | CVT - 1 KVA | 2 | |
| 14 | Power | CVT - 0.5 KVA | 1 | |
| 15 | Power | Stabilizer | 1 | 5 KVA |
| 16 | Power | Invertor - 0.5 KVA | 10 | |
| 17 | Power | Invertor - 0.65 KVA | 2 | |
| 18 | Power | UPS - 0.5KVA | 6 |