Project Report for Excise & Taxation Department, KPK

Draft version: Final

Project Proposal for Excise & Taxation

Department, KPK

[Directorate Of IT, KPK Peshawar] Page 1

 Project Report for Excise & Taxation Department, KPK
Draft version: Final

Portfolio

Team Members Designation Qualifications

Mr. Mujeeb-ur-Rehman Project Manager BS(IT), MCP,
CCNA, CCNP

Mr. M. Imran Assist. Project Manger BS(CS), CCNA,

MCSE

Mr. M. Faisal Infrastructure Specialist BS (CS) , MCSE

Mr. Faheem Khan System Analyst BS (Electrical

Eng)

Mr. Umer Nazif Shah System Engineer BS(IT),

MCITP,Linux
Mr. Habib Shah Network Engineer
BS (IT), CCNA
Mr. Waqas Ali Operation & Support BS (Electrical
Eng)

Ms. Mehreen Shah Customer Relation BS(CS)

Manager
Ms. Noor-ul-Huda BS(CS)
Assist. CRM

[Directorate Of IT, KPK Peshawar] Page 2

 Project Report for Excise & Taxation Department, KPK
Draft version: Final

CONTENTS

Glossary...................................................................................... 04

1. Project Overview………………………………………………………………………….. 05
1.1 Connected Districts…………………………………………………………………..… 05

2. Exiting IT Infrastructure………………………………………………………..…..… 06

3. Current Resources………………………………………………………………………. 06
3.1 Hardware Resources………………………………………………………………........ 06
3.2 Software Resources……………………………………………………………………... 06
3.3 Human Resource……………………………………………………………………........ 07

4. Current Network Issues………………………………………………………………………… 07

5. Proposed Network Architecture for E & T Dptt…………………………………… 08

5.1 OU’s, Groups & Users……………………………………………………………………… 09

6. Proposed Solutions……………………………………………………………………………… 10

6.1 VPN…………………………………………………………………………………………….... 10
6.1.1 Requirements for VPN Server...…………………………………………… 10
6.1.2 District Level Requirements………………………………………………... 11
6.1.3 Benefits of Suggested Solution…………………………………………..… 11

6.2 FTP……………………………………………………………………………………………….…. 11
6.2.2 FTP Requirements…………………………………………………………………… 11
6.2.3 FTP Installation……………………………………………………………………….. 12
6.2.2 FTP Pros ……………………………………………………………………………..…. 12

7. Project Deployment Plan……………………………………………………………………. 13

7.1 For VPN Network Deployment………………………………………………….. 13
7.2 For FTP Configurations……………………………………………………………… 14

[Directorate Of IT, KPK Peshawar] Page 3

 Project Report for Excise & Taxation Department, KPK
Draft version: Final

Glossary

 DSL:
DSL stands for Digital Subscriber Line. It provides WAN services.

 NPS:
NPS stands for Network Policy Server. It is used for authenticating
clients.

 NIC:
NIC stands for Network Interface Card. it is used at data link layer. IP
address is assigned to this card.

 VPN:
VPN stands for virtual private network. It is used for secure tunneling
over the public network (internet).

 RADIUS:
RADIUS stands for Remote Authentication Dial In User Service. It
used for authentication purpose.

 PAP:
PAP stands for Password Authentication Protocol. In this method
Password travels in plain text format.

 CHAP:
CHAP stands for Challenge Handshake Authentication Protocol. In
this method password does not travel in clear plain-text format.

[Directorate Of IT, KPK Peshawar] Page 4

 Project Report for Excise & Taxation Department, KPK
Draft version: Final

1. Project Overview
Directorate of IT (DoIT), Department of ST&IT is the governing organization
for the computerization of all the Government Departments in Khyber Pakhtunkhwa.

Excise & Taxation is tax collecting agency of the Provincial Government

Khyber Pakhtunkhwa. It was created & established in November 2000.The property tax
of Peshawar is divided into two circles, administrated by ETO-II & ETO-III.

In November 2005, DoIT initiated a project for the computerization of Excise

& Taxation Department.

At present Software Application has been developed & successfully deployed at

Directorate of Property Tax and the following districts of KPK are attached to the
Directorate of Property Tax.

1.1 Connected Districts

Out of 25 districts of KPK, 16 districts are currently connected to the network, which are as
follows:

 Abbottabad
 Bannu
 Batagram (currently not operational)
 Charsada
 DI Khan
 Hangu
 Haripur
 Kohat
 Karak
 Lakki Marwat
 Mardan
 Mansehra
 Nowshera
 Peshawar
 Swabi
 Tank (currently not operational)

[Directorate Of IT, KPK Peshawar] Page 5

 Project Report for Excise & Taxation Department, KPK
Draft version: Final

2. Existing IT Infrastructure

The details of the Current Network Infrastructure are as follow

 In the Head Office i.e. ETO II there are 3 servers in the server room, out of
which 1 server is not in working condition whereas the other 2 servers are
running the Software application & the backup server respectively.
 There is workgroup environment in LAN.
 No internet facility is available in the head office as well as at the district
offices.
 In each office at the districts level they have provided servers (not designed
servers, just desktop computers) for running server application of their
database software. And client computer for running client application of their
database software.

3. Current Resources
The hardware, software & the human resources in use are as follows:

3.1 Hardware Resources

 The ETO II i.e. the Head office, has wired network (workgroup
environment), with two D-Link switches, of 16 & 24 ports.
 There are 3 Dell Power Edge servers, running the following services; PHP/
MySQL, Oracle and backup services. PHP/ MySQL server is currently
offline & the current database in operation is the Oracle.
 There are 6 client computers with printer locally installed used by the DEOs
(Data entry operators).

3.2 Software Resources

 Windows Server 2003 is installed on the servers

 Windows XP SP2 is installed on the client systems
 PHP/MySQL server 6i & Oracle 9i is installed.
 No internet facility in the head office & in branch offices

[Directorate Of IT, KPK Peshawar] Page 6

 Project Report for Excise & Taxation Department, KPK
Draft version: Final

3.3 Human Resources

 MIS Manager (Position Vacant)

 Database Administrator (Position Vacant)
 Network Administrator
 Accounts Assistant
 Server Room Attendant
 20 Data entry Operators

4. Current Network Issues

 No connectivity between the head office ETO-II & branch offices in the
districts for online transfer of data.
 Manual transfer of data is a costly & time consuming process.
 Most of the district level staff has very minimum level of computer literacy.
Computer personnel are even unable to attach file with email.
 A data replication b/w branch & head office is done manually through USB.
 Currently, in use database is offline.

[Directorate Of IT, KPK Peshawar] Page 7

 Project Report for Excise & Taxation Department, KPK
Draft version: Final

5. Proposed Network Architecture for Excise & Taxation

Department

[Directorate Of IT, KPK Peshawar] Page 8

 Project Report for Excise & Taxation Department, KPK
Draft version: Final

5.1 OU’s (Organizational Units), Users & Groups Configuration

We have to create an OU named ETO on head office DC. The OU,

ETO will contain the following child OUs:

 ETO users
 ETO computers
 ETO districts

5.1.1 ETO Users:

This OU will contain ETO II users and two groups:

 Data entry operators group

 Administrators group

Group I will contain only data entry operators and group II will contain administrators like
MIS manager, DBA etc.

5.1.2 ETO Computers:

This OU will contain all the computers accounts of ETO II LAN.

5.1.3 ETO Districts:

We have to create 16 users each one representing a district. We have to create

one group named ETO_district and add all the 16 users to this group. We will allow this
ETO_district group in NPS network policy.

[Directorate Of IT, KPK Peshawar] Page 9

 Project Report for Excise & Taxation Department, KPK
Draft version: Final

6. Proposed Solutions
Solution No.1
6.1 VPN (Virtual Private Network)

VPN stands for Virtual Private Network. Securely connecting from remote
computer to local network is called VPN.

6.1.1 VPN Protocols

SSTP (Secure Socket Tunneling Protocol): it uses SSL (secure socket layer) channel
of HTTPs for encryption. It is new to windows 2008.the client must have Windows
Vista with SP1. It requires Web Server Certificate for VPN Server.

6.1.2 Requirements for VPN server

 Separate Server
 Windows Server 2008 R2 Operating system
 2 NIC cards on Server
 4 MB Internet bandwidth
 NPS (Network Policy Server) for authentication

6.1.3 District Level Requirements

 Windows operating system at least XP with SP2

 1 MB DSL connection or at least 512 kb
 Multilink modem connection (if DSL not available and 1 modem is not
Enough)

[Directorate Of IT, KPK Peshawar] Page 10

 Project Report for Excise & Taxation Department, KPK
Draft version: Final

6.1.4 Benefits

 Cost effective: Only we have to pay is the internet bandwidth

connection charges.
 Secure: VPN protocols provide security to the data by high level
encryption algorithms.
 Ease of Management: VPN clients can easily access the remote
server by just dialing the VPN dial up connection.
Solution No.2
6.2 FTP (File Transfer Protocol)

FTP stands for File Transfer Protocol, we will configure FTP server
where the remote users will upload their data in their own folder, which will not be
accessible by the other users, for that we will need a public IP. The remote users will
have only write permission that is the remote users will only store their data on FTP
server and will not be able to read anything from there.

6.2.1 FTP Requirements

 Windows server 2008 R2
 Public IP
 Internet connection at the client side at least 512 kb

6.2.2 FTP installation

 Selecting IIS role from server manager.
 Selecting FTP at the bottom of the page.
 Making a new FTP site after installation.
 Selecting 3rd option that users folder will be separated using active
directory.

The clients at the remote site will just type ftp:\\ ip_of_ftp_server in the browser, and
they will be prompted to enter their user name and password.

[Directorate Of IT, KPK Peshawar] Page 11

 Project Report for Excise & Taxation Department, KPK
Draft version: Final

6.2.3 FTP Pros

 Easier Access
FTP is simple & easily accessible. Users at different
districts level can simply enter the IP address of the FTP server in the
browser & will access the ftp server.
 Centralized Storage
It provides centralized storage for data. All district users can
store their data at a single centralized location.
 Security
Users at District level will copy data in their relevant folder;
they will only be able to write their data but will not read data from it.
District level users will not be allowed to access other district’s data.

7 Project Deployment Plan

7.1 For VPN Network Deployment

[Directorate Of IT, KPK Peshawar] Page 12

 Project Report for Excise & Taxation Department, KPK
Draft version: Final

7.2 For FTP Configurations

[Directorate Of IT, KPK Peshawar] Page 13