KEMBAR78
NSA Interview Task | PDF | Computer Network | Ip Address
Scribd
Upload
20 views3 pages

NSA Interview Task

The document outlines a practical interview task for a Network and Systems Administrator at Egerton University, focusing on establishing network connectivity and security for the new Innovation Hub. Key requirements include configuring VLANs, inter-VLAN routing, DHCP, DNS services, NAT, and implementing an access control list. The submission must include a Packet Tracer file, a network diagram, and concise configuration notes addressing specific design choices and troubleshooting steps.

Uploaded by

katangasuacomprehensiveschool
Copyright
© © All Rights Reserved
We take content rights seriously. If you suspect this is your content, claim it here.
Available Formats
Download as PDF, TXT or read online on Scribd
20 views3 pages

NSA Interview Task

The document outlines a practical interview task for a Network and Systems Administrator at Egerton University, focusing on establishing network connectivity and security for the new Innovation Hub. Key requirements include configuring VLANs, inter-VLAN routing, DHCP, DNS services, NAT, and implementing an access control list. The submission must include a Packet Tracer file, a network diagram, and concise configuration notes addressing specific design choices and troubleshooting steps.

Uploaded by

katangasuacomprehensiveschool
Copyright
© © All Rights Reserved
We take content rights seriously. If you suspect this is your content, claim it here.
Available Formats
Download as PDF, TXT or read online on Scribd
You are on page 1/ 3

Network and Systems Administrator Practical Interview

2nd July 2025

--------------------------------------------------------------------------
Egerton University - Core Innovation Hub Connectivity
Time Limit: 2 hrs

Setting: You are a Network and System Administrator at "Egerton University." Your
immediate task is to establish core network connectivity and basic security within the new
"Innovation Hub" building. This involves configuring essential VLANs, inter-VLAN routing,
core services, and a fundamental security policy.

Tools: Cisco Packet Tracer.

Submission Requirements:

Your submission should be concise and demonstrate your understanding within the time limit:

1. Packet Tracer File (.pkt): The configured network simulation file.

2. Basic Network Diagram (PDF/Image): A clear diagram showing devices, chosen IP


subnets, VLANs, and key interconnections, Label interfaces and their IPs.

3. Concise Configuration Notes: A brief document explaining your design choices and
addressing the specific questions below. Focus on direct answers and essential details.

Scenario & Core Requirements:

The Innovation Hub needs an initial setup to allow students and guests to connect, access an
internal web server, and reach the internet.

Network Topology (Simplified for Time):

• Core Router: Router_Innovation_Hub (connects to simulated "Internet" and internal


networks).

• Single Internal Switch: Switch_Innovation_Hub (all internal VLANs connect


through this switch to the router).
• Servers:

o DHCP_Server_Egerton

o DNS_Server_Egerton

o Web_Server_Internal

• Clients:

o PC_Student (for Student VLAN)

o Laptop_Guest (for Guest VLAN)

o PC_ServerMgmt (for Server/Management VLAN)

IP Addressing Scheme:

Egerton University has assigned you the 172.16.0.0/24 subnet for the Innovation Hub's internal
networks. You must efficiently subdivide this single /24 into smaller subnets for your VLANs.
The inter-router link (to "Internet") will use 192.168.255.0/30.

Specific Requirements:

1. VLANs & Subnets: Create and configure the following VLANs and their
corresponding subnets using the assigned 172.16.0.0/24 block. Allocate addresses to
network devices and client PCs.

o VLAN 10: Students (e.g., 172.16.0.0/27 - your choice)

o VLAN 30: Guest Wi-Fi (e.g., 172.16.0.32/27 - your choice)

o VLAN 99: Servers/Management (e.g., 172.16.0.64/27 - your choice; place


all servers here)

o VLAN 100: Inter-Router Link (between Router_Innovation_Hub and


"Internet" router: 192.168.255.0/30).

2. Inter-VLAN Routing: Implement Router-on-a-stick on Router_Innovation_Hub to


enable communication between all internal VLANs.

3. DHCP Services:

o Configure DHCP_Server_Egerton to provide automatic IP addressing for


VLAN 10 (Students) and VLAN 30 (Guest).

o Exclude the first 5 IP addresses from each DHCP pool for static assignments.

o Ensure DHCP clients receive the correct DNS server address


(DNS_Server_Egerton's IP).

4. DNS Services:
o Configure DNS_Server_Egerton to resolve webserver.Egerton.local to the IP
address of Web_Server_Internal.

5. Network Address Translation (NAT):

o Configure PAT (Port Address Translation) on Router_Innovation_Hub to


allow all internal VLANs (10, 30, 99) to access the "Internet" (simulated by a
generic router connected to the Innovation Hub router).

6. Access Control List (ACL):

o Implement ONE standard or extended ACL to enforce the following policy:

§ Laptop_Guest (in VLAN 30) should ONLY be able to access the


Internet and DNS_Server_Egerton. It must NOT be able to access
Web_Server_Internal or any other devices in VLAN 10 or VLAN 99.

7. Connectivity Verification:

o Show successful pings:

§ From PC_Student to Web_Server_Internal and the "Internet" router.

§ From Laptop_Guest to DNS_Server_Egerton and the "Internet" router.

o Show DNS resolution: From PC_Student resolving webserver.Egerton.local.

o Show blocked access: Attempt to ping Web_Server_Internal from


Laptop_Guest and show it fails.

Concise Configuration Notes (Address these points briefly):

1. IP & VLAN Design: Briefly explain your subnetting choices from the 172.16.0.0/24
block for each VLAN.

2. Inter-VLAN Routing: Briefly describe the Router-on-a-Stick implementation.

3. ACL & Placement: Provide the exact ACL rules you configured and state where
(interface and direction) it was applied, and why you chose that placement.

4. Troubleshooting: If PC_Student couldn't get an IP address, what is the first thing you
would check on the router or switch?

You might also like