1.
Remote network access goals and objectives
Required telecommunication plan for the Larger Grocery Retail store is discussed in the
previous sections and fro the basic evaluation of the communication requirements identified it
is clear that, further remote network administration and control has the significant role. Based
on the case study considered, it is assumed almost 5000 retail stores are being operated under
a centralized administration and server control; now providing remote access to other retail
store from any other store was the key objective set in this context. IT Professionals have the
access to remote locations of the retail stores, where further enhancements are discussed over
the current section and the main objectives and goals are as provided below
To provide remote access to all the retail stores using typical Cisco VPN
configurations
To provide cloud based solutions like SaaS, NaaS and PaaS to prevent the risk
situations while loss or disaster of the current remote access controls
To implement the IPSec for the current network
To identify and plan the associated risks and threats prior to configure and install the
remote access to all the retail stores of Larger Grocery Ltd.
2. Network design to support the remote access
From the proposed remote access to all the retail stores as shown above, it is clear that,
typical Cisco based remote operations, hardware and software configurations are
implemented over the design.
3. Risks and Security Concerns
Remote access and the corresponding security is provided using the Cisco architecture,
hardware and software configurations as shown and in this section, potential risks and
2
security threats as associated are discussed in brief. With respective to the security
compliance, proposed network design includes the key components like firewalls, switches,
routers and additional security components as well. Additional security components include
the firewall routers with detailed policies and rules and IDS (Intruder Detection System),
where they are installed and configured over the key areas of retail stores like Internet edge,
Data centre, Contact centre and Store.
Around 12 wireless access points are installed and configured for the proposed remote
architecture and were supported with the Cisco WCS (Wireless Control System). Cisco IOS
software is also configured over the key remote access components, such that, each and every
ISR routers are protected against potential threats like Intruders and thus a centralized
communication is possible in this context. Network connection failures are one of the
common risks associated with the proposed remote access and control architecture and thus
HSRP (Hot Standby Routing Protocol) is used to make sure the required levels of scalability,
network availability and network resilience during the network downtime or link failure
cases.
4. Analysis
Two WAN connections like Primary and Alternative connections are added to the centralized
branch and they are again connected to the Servers or DC over the centralized management
system. Rest of the hardware and network infrastructure components like Cisco ISR (used for
Internet Security), Catalyst Switches (used for distributed access), management VLAN are
connected using PPP_1000 connectivity.
Wireless controllers and the corresponding configurations are connected to the remote branch
office locations, where the IT professionals can use the controls and access the centralized
servers using both the workstations and mobile devices using the wireless connectivity as
well. Following are the key advantages with the proposed remote access for the retail store
Entire network availability and application access is enhanced due to the parallel
paths configured
Due to the parallel device design, network resilience can also be achieved
Due to the number of end points over the wireless components, new connections and
greater access layer protection is possible with the advent of WCS design followed