Design consultant.

Scenario:

We have client who moving to new premises. 3 floor building with basement. Main communication
room is located at basement.

In this room are connected Internet to ISP, single line and single line to WAN ISP MPLS cloud.

MPLS WAN cloud connection is used to reach two client branches. Tunneled network is used. Internal
WAN routing protocol is OSPF.

Client expecting that will be 100 users per each floor, with possibility to expand working places up 120
users per floor. New premises have 10G fiber lines between floors terminated in basement
communication room.

Client has ready to go Server farm of 6 servers.

1. AD and DNS server, VM ware ESXi machine

2. SMTP server, VM ware ESXi machine
3. Web server, servicing clients website, should be reachable from Internet, VM ware ESXii
machine
4. FTP server, should be reachable from Internet, Bare metal box
5. Internal use DATA server store, bare metal box
6. SAP accountants server, secured, bare metal box.

He mentioned that traffic balance would be shared 80% internal and 20% outside. He wants to see high
speed LAN with resilience and HA. Maximum performance should have achieved in LAN
infrastructure. 99% availability is a must in the LAN.

Server farm should be connected to achieve max performance and HA.

He thinking in future expand his LAN with VoIP and WiFi services.

Security devices HA is a must. For security reason, client expecting use security zones in FW. Inside,
outside, DMZ, FTP, Accountants, Store.

Accountants VLAN should be isolated from other users. and reachable only from Accountants account
in LAN.

Branch office WAN connection will be done later when ISP will install their WAN MPLS CE routers, but
we have to expect this connection in future.

Client wants to see high Level design, and equipment models. Please explain why you choose them.

Please feel free ask additional questions, draw design picture.