You are on page 1of 13

M hnh mng Campus v ng dng thc t

Li Vn Hi
Trng i hc Khoa hc T nhin
Lun vn ThS. ngnh: Bo m ton cho my tnh v h thng tnh ton
M s: 60 46 35
Ngi hng dn: TS. L Trng Vnh
Nm bo v: 2012
Abstract. Kin trc mng campus: Gii thiu mng Campus; Mng Campus truyn
thng; Cc m hnh mng Campus; M hnh mng ba lp ca Cisco; M hnh
Modular trong thit k mng Campus; Mng LAN o (Virtual LAN - VLAN).
Nghin cu thc trng h thng thng tin ca Trng i hc iu dng Nam
nh: T chc, chc nng trng i hc iu Dng (HD) Nam nh; T chc
qun l v Cng ngh thng tin (CNTT); V cc nh hng pht trin nh Trng;
H thng phn mm v CSDL; H tng mng; H tng my ch; H thng an ninh,
bo mt. Thit k mng cho Trng i hc iu dng Nam nh: Tm tt v cc
phn mm trong tng lai ca nh trng; Thit k h tng my ch; Thit k h
tng mng cc b; Phn chia cc VLAN; Vn an ninh h thng.
Keywords. Ton tin; Mng Campus; Kin trc mng; H thng thng tin

Content
M U
Ngy nay vi mt lng ln v thng tin, nhu cu x l thng tin ngy cng cao. Mng my
tnh hin nay tr nn qu quen thuc i vi chng ta, trong mi lnh vc nh khoa hc, qun
s, quc phng, thng mi, dch v, gio dc... Hin nay nhiu ni mng tr thnh mt
nhu cu khng th thiu c. Ngi ta thy c vic kt ni cc my tnh thnh mng cho
chng ta nhng kh nng mi to ln nh:
S dng chung ti nguyn: Nhng ti nguyn ca mng (nh thit b, chng trnh,
d liu) khi c tr thnh cc ti nguyn chung th mi thnh vin ca mng u c
th tip cn c m khng quan tm ti nhng ti nguyn u.
Tng tin cy ca h thng: Ngi ta c th d dng bo tr my mc v lu tr
(backup) cc d liu chung v khi c trc trc trong h thng th chng c th c
khi phc nhanh chng. Trong trng hp c trc trc trn mt trm lm vic th
ngi ta cng c th s dng nhng trm khc thay th.
Nng cao cht lng v hiu qu khai thc thng tin: Khi thng tin c th c s
dng chung th n mang li cho ngi s dng kh nng t chc li cc cng vic vi
nhng thay i v cht nh:
p ng nhng nhu cu ca h thng ng dng kinh doanh hin i.
Cung cp s thng nht gia cc d liu.
Tng cng nng lc x l nh kt hp cc b phn phn tn.

Tng cng truy nhp ti cc dch v mng khc nhau ang c cung cp trn
th gii.
Vi nhu cu i hi ngy cng cao ca x hi nn vn k thut trong mng l mi quan
tm hng u ca cc nh tin hc. V d nh lm th no truy xut thng tin mt cch
nhanh chng v ti u nht, trong khi vic x l thng tin trn mng qu nhiu i khi c th
lm tc nghn trn mng v gy ra mt thng tin mt cch ng tic.
Hin nay vic lm th no thit k mt h thng mng tt, an ton vi li ch kinh t cao
ang rt c quan tm. Mt vn t ra c rt nhiu gii php v cng ngh, mt gii php
c rt nhiu yu t cu thnh, trong mi yu t c nhiu cch la chn. Nh vy a ra
mt gii php hon chnh, ph hp th phi tri qua mt qu trnh chn lc da trn nhng u
im ca tng yu t, tng chi tit rt nh.
gii quyt nhng vn trn, lun vn ny trnh by cch thit k mng Campus theo
cng ngh ca Cico v sau p dng l thuyt vo thc tin thit k mng campus cho
trng i hc iu dng Nam nh. Cu trc ca lun vn c t chc nh sau:
Chng 1: Kin trc mng campus.
Chng 2: Thc trng h thng thng tin ca Trng i hc iu dng Nam nh.
Chng 3: Thit k mng cho Trng i hc iu dng Nam nh.
Chng 1.
KIN TRC MNG CAMPUS
1
1.1. Gii thiu mng Campus
Internet thay i cuc sng chng ta, vi s gia tng s lng ca cc dch v giao dch
trc tuyn, gio dc, v gii tr, iu ny thc y chng ta tm ra nhiu phng php
truyn thng vi nhau.
Lin mng (internetworing) l s truyn thng gia mt hay nhiu mng, gm c nhiu my
tnh kt ni li vi nhau. Lin mng my tnh ngy cng ln mnh h tr cho cc nhu cu
truyn thng khc nhau ca h thng u cui. Mt lin mng i hi nhiu giao thc v tnh
nng cho php s m rng. Cc lin mng ln gm c 3 thnh phn nh sau:
Mng Campus: gm c cc user kt ni cc b trong mt hay mt nhm cc
ta nh.
Mng WAN: kt ni cc mng Campus li vi nhau.
Kt ni t xa: lin kt cc nhnh v cc user n l ti mng Campus hay
Internet.
Hnh 1.1 l mt v d v mt lin mng in hnh:

1.

Chng ny s dng cc ti liu tham kho [1-6, 8]

Thit k mt lin mng l mt cng vic th thch nng lc i vi ngi thit k. thit
k mt lin mng c tin cy v c tnh m rng, th ngi thit k phi hiu r v ba thnh
phn quan trng ca mt lin mng vi nhng i hi thit k khc nhau.
1.2.
Mng Campus truyn thng
Trong cc nm 1990, mng Campus truyn thng bt u l mt mng LAN v ln dn. Tuy
nhin, cc LAN khng th ln dn mi mi, m n mt ln no , chng ta cn phi cn
phn on mng (chia mng thnh cc khu vc hay min cho d qun l) duy tr kh nng
hot ng ca mng sao cho: thi gian p ng (tr li) cn c m bo vi cc chc nng
ca mng. Thm na, phn ln cc ng dng phi c lu tr v chuyn tip c mt iu
cn thit na l cht lng cc dch v ty.
1.2.1. Vn kh nng hot ng ca mng v gii php
Tnh sn sng v kh nng hot ng l hai vn chnh i vi mng Campus truyn thng.
Tnh sn sng b nh hng bi s lng user c gng truy cp mng cng mt thi im,
cng vi tin cy ca chnh mng . Kh nng hot ng trong mng Campus truyn
thng bao gm cc vn nh: ng , bng thng, broadcast, multicast.
ng (Collision)
ng l: hin tng cc tn hiu pht t hai my gy nhiu ln nhau. Hai tn hiu gy
nhiu ln nhau cn gi l xung t.
Min ng (Collision Domain): y l mt vng c kh nng b ng do hai hay nhiu
my tnh cng gi tn hiu ln mi trng truyn thng.
Min qung b (Broadcast Domain): y l mt vng m gi tin pht tn hay qung b (gi
tin broadcast) c th i qua c. Trong min qung b c th bao gm nhiu min ng .
Bng thng (Bandwidth)

rng.

Khong cch.
Broadcast v multicast
VLAN cng l mt gii php, nhng VLAN ch l min broadcast vi ng bin o. Mt
VLAN l mt nhm cc thit b trn cc phn on mng khc nhau, l mt min
broadcast bi ngi qun tr mng. Li ch ca VLAN l v tr vt l khng cn l nhn t
xc nh cng (port) m ta s thm vo mt thit b trong mng. Ta c th thm mt
thit b vo bt k port no ca switch v ngi qun tr mng s gn port cho VLAN.

Lu l ch c router hoc switch lp 3 mi c th truyn thng gia cc VLAN khc


nhau.
1.2.2. Lut 80/20
Lut 80/20 c ngha l 80% lu lng ca user l trn on mng cc b (cc phn on
mng), cn li 20% hoc t hn l qua router hoc bridge n cc on mng khc. Nu nhiu
hn 20% lu lng qua thit b phn on mng, th pht sinh vn v kh nng hot ng
ca mng. Hnh 1.2 sau biu din mt mng 80/20 truyn thng.
Bi v ngi qun tr mng chu trch nhim thit k v thc hin, nn h ci tin kh nng
hot ng ca mng trong mng 80/20 bng cch chc chn rng tt c cc ti nguyn mng
cho user c cha bn trong on mng cc b. Ti nguyn bao gm my ch, my in, th
mc dng chung, phn mm, v cc ng dng.
Lut mi 20/80
Ngy nay, thay v phn tn cc my ch, chng c tp trung li to thnh trang tri my
ch (server farm) kim sot dch v mng c tnh bo mt, gim chi ph v d qun tr, nn
lut 80/20 tr nn li thi v khng cn lm vic trong mi trng ny na. Trong mi trng
nh vy, tt c lu lng phi qua backbone (ng trc) ca Campus, ngha l ta c lut mi
20/80, trong 20% l lu lng trn on mng cc b v 80% l lu lng qua on mng
ly cc dch v mng. Hnh 1.3 biu din mng 20/80 mi.
VLAN (Virtual LAN)
Vi lut 20/80 c nhiu user hn cn truyn qua min broadcast, v iu ny gy thm gnh
nng cho vic nh tuyn hoc chuyn mch lp 3. Bng cch s dng VLAN, bn trong m
hnh mng Campus, ta c th iu khin c lu lng v user truy cp d dng hn trong
mng Campus truyn thng. VLAN lm gim min broadcast bng cch s dng router hoc
switch thc hin cc chc nng lp 3. Hnh 1.4 biu din lm th no to VLAN trong
mng.
1.3.
Cc m hnh mng Campus
Mt mng Campus gm c nhiu LAN trong mt hoc nhiu ta nh, tt c cc kt ni nm
trong cng mt khu vc a l. Thng thng cc mng Campus gm c Ethernet, Wireless
LAN, Fast Ethernet, Fast EtherChannel, Gigabit Ethernet v FDDI.
Sau y l cc m hnh mng c dng phn loi v thit k mng Campus:

M hnh mng chia s (Shared Network Model).

M hnh phn on LAN (LAN Segmentation Model).

M hnh lu lng mng (Network Traffic Model).

M hnh mng d on trc (Predictable Network Model).


1.3.1. M hnh mng chia s
1.3.2. M hnh phn on LAN
Ngoi ra ta cn phn on LAN bng switch. Switch cung cp kh nng thc thi cao hn vi
bng thng chuyn dng trn mi port (khng chia s bng thng). Ngi ta gi switch l
multi- bridge. Mi port ca switch l mt min ng ring l v khng truyn ng qua
port khc, tuy nhin cc frame broadcast v multicast vn trn qua tt c cc port ca switch.
phn chia min broadcast ta s dng VLAN bn trong mng chuyn mch. Mt switch s
chia cc port mt cch logic thnh cc on ring bit. VLAN l mt nhm cc port vn chia
s mi trng truyn ca on LAN. Vn v VLAN s c tm hiu r phn sau.
1.3.3. M hnh lu lng mng
thit k v xy dng thnh cng mng Campus th ta phi hiu lu lng sinh ra bi vic
s dng cc ng dng cng vi lung lu lng i v n t ton th user. Tt c cc thit b
s truyn d liu qua mng vi cc kiu d liu v ti khc nhau.
Cc ng dng nh: email, word, print, truyn file, v duyt web, s mang cc kiu d liu
bit trc t ngun n ch. Tuy nhin cc ng dng mi hn nh video, TV, VoIP c
kiu lu lng kh on trc c.

Gn li ti nguyn sn c mang cc user v cc server li gn vi nhau.


Chuyn cc ng dng v cc file n cc server khc nhau bn trong mt
nhm.

Chuyn cc user mt cch logic (VLAN) hoc vt l gn nhm ca n.

Thm nhiu server m c th mang ti nguyn li gn cc nhm tng ng.


1.3.4. M hnh mng d on trc
Lung lu lng trong mng Campus c th phn thnh ba loi, da v tr cc dch v mng
lin quan n ngi dng u cui. Bng 1.1 cho bit danh sch cc kiu lu lng ny,
cng vi phm vi ca n.
Lp Access, Distribution v Core l ba lp ca m hnh thit mng ba lp ca Cisco m ta s
tm hiu trong phn tip theo.
1.4.
M hnh mng ba lp ca Cisco
Ta c th thit k mng Campus mi lp h tr cc lung lu lng hoc dch v nh
cp trong bng 1.1. Cisco a ra m hnh thit k mng cho php ngi thit k to mt
mng lun l bng cch nh ngha v s dng cc lp ca thit b mang li tnh hiu qu,
tnh thng minh, tnh m rng v qun l d dng.
M hnh ny gm c ba lp: Access, Distribution, v Core. Mi lp c cc thuc tnh ring
cung cp c chc nng vt l ln lun l mi im thch hp trong mng Campus. Vic
hiu r mi lp v chc nng cng nh hn ch ca n l iu quan trng ng dng cc
lp ng cch qu trnh thit k.
1.4.1. Lp truy cp (Access)
Lp truy cp xut hin ngi dng u cui c kt ni vo mng. Cc thit b trong lp
ny thng c gi l cc switch truy cp, v c cc c im sau:

Chi ph trn mi port ca switch thp.

Mt port cao.

M rng cc uplink n cc lp cao hn.

Chc nng truy cp ca ngi dng nh l thnh vin VLAN, lc lu lng v


giao thc, v QoS.

Tnh co dn thng qua nhiu uplink.


1.4.2. Lp phn phi (Distribution)
Lp phn phi cung cp kt ni bn trong gia lp truy cp v lp nhn ca mng Campus.
Thit b lp ny c gi l cc switch phn pht, v c cc c im nh sau:

Thng lng lp ba cao i vi vic x l gi.

Chc nng bo mt v kt ni da trn chnh sch qua danh sch truy cp hoc
lc gi.

Tnh nng QoS.

Tnh co dn v cc lin kt tc cao n lp Core v lp Access.


1.4.3. Lp nhn (Core)
Lp nhn ca mng Campus cung cp cc kt ni ca tt c cc thit b lp phn phi. Lp
nhn thng xut hin phn xng sng (backbone) ca mng, v phi c kh nng chuyn
mch lu lng mt cch hiu qu. Cc thit b lp nhn thng c gi l cc backbone
switch, v c nhng thuc tnh sau:

Thng lng lp 2 hoc lp 3 rt cao.

Chi ph cao

C kh nng d phng v tnh co dn cao.

Chc nng QoS.


1.5.
M hnh Modular trong thit k mng Campus
Ta c th chia mng Campus thnh cc phn c bn sau:

Khi chuyn mch (switch): l mt nhm cc switch thuc lp Access v


lp Distribution.

Khi li (core): l backbone ca mng Campus.


Cc khi lin quan khc c th tn ti mc d n khng gp phn vo ton b chc nng ca
mng Campus, nhng n c thit k tch bit v thm vo thit k mng. Cc khi ny
gm c:

Khi Server Farm

Khi qun l (Management)

Khi Enterprise bin (Enterprise Edge):

Khi nh cung cp dch v bin (Service Provider Edge):.


1.5.1. Khi Switch

Kiu lu lng.

Tng dung lng chuyn mch lp 3 ti lp Distribution.

S ngi c kt ni n switch ca lp Access.

Ranh gii a l ca mng con hoc VLAN.

Kch thc ca min Spanning Tree.


Vic thit k mt khi Switch ch da vo s ngi dng hoc s trm cha trong khi
thng khng ng lm. Thng thng khng qu 2000 user c t bn trong mt khi
Switch. Tuy nhin vic c lng kch thc ban u cng em li nhiu li ch v vy ta
phi da vo cc yu t sau:

Loi lu lng v hot ng ca n.

Kch thc v s lng ca cc nhm lm vic (workgroup).


1.5.2. Khi nhn (Core)
Mt khi core c yu cu kt ni 2 hoc nhiu hn cc khi switch trong mng
Campus. Bi v lu lng t tt c cc khi Switch, cc khi Server Farm, v khi Enterprise
bin phi i qua khi nhn, nn khi nhn phi c kh nng v tnh n hi chp nhn c.
Nhn l khi nim c bn trong mng Campus, v n mang nhiu lu lng hn cc khi
khc.
Collapsed core
Khi Collapsed Core l s phn lp ca lp nhn, c che lp trong lp phn phi. y,
cc chc nng ca c lp phn phi v nhn u c cung cp trong cng cc thit b
switch. iu ny thng thy trong mng Campus nh hn m khng xc nhn s tch ri
ca lp nhn.
Dual Core
Mt Dual Core kt ni hai hay nhiu khi Switch d phng, nhng khi Core khng th
c tnh m rng khi c nhiu khi Switch c thm vo. Hnh 1.10 minh ha khi Dual
Core. Ch rng khi Core ny xut hin nh l mt module c lp v khng c ghp
vo trong bt k khi hoc lp no.
1.5.3. Cc khi building khc
c c nhng iu cn thit trn, ta c th nhm cc ti nguyn vo cc khi building
ging nh l m hnh khi switch. Cc khi ny cng c switch ca lp Distribution v c
cc kt ni d phng ni trc tip vo lp Core, n cng cha cc ti nguyn ca Enterprise.
Hu ht cc khi building u c trong mng Campus va v ln
Khi Server Farm
Cc my ch ring c cc kt ni mng n n mt trong cc switch ca lp phn phi. Nu
mt my ch d phng c s dng, th n nn kt ni n switch lun phin ca phn phi.
Khi qun l

Khi Switch qun l mng thng c lp phn phi kt ni vo cc switch ca khi nhn. V
cc cng c ny c dng pht hin li xy ra ti thit b v cc kt ni, nn li ch ca
n rt quan trng. Cc kt ni d phng v switch d phng u c s dng.
Khi Enterprise bin
Khi nh cung cp dch v bin
1.6.
Mng LAN o (Virtual LAN - VLAN)

Vn v bng thng: trong mt s trng hp mt mng Campus lp 2 c th


m rng thm mt s building na, hay s user tng ln th nhu cu s dng bng thng cng
tng, do bng thng cng nh kh nng thc thi ca mng s gim.

Vn v bo mt: bi v user no cng c th thy cc user khc trong cng mt


flat network, do rt kh bo mt.

Vn v cn bng ti: trong flat network ta khng th thc hin truyn trn nhiu
ng i, v lc mng rt d b lp, to nn broadcast storm nh hng n bng thng
ca ng truyn. Do khng th chia ti (cn gi l cn bng ti).
1.6.1. Cc kiu thnh vin ca VLAN (VLAN Membership)
Khi VLAN c cung cp switch lp Access, th cc u cui ngi dng phi c mt vi
phng php ly cc thnh vin n n. C 2 kiu tn ti trn Cisco Catalyst Switch l:

Static VLAN.

Dynamic VLAN.
Static VLAN
Kiu thnh vin Static VLAN thng c qun l trong phn cng vi mch tch hp ng
dng c bit ASIC (Application Specific Intergrated Circuit) trong switch. Kiu ny cung
cp kh nng hot ng tt v tt c vic nh x cc port c lm mc phn cng v vy
khng cn c bng truy tm phc tp.
Dynamic VLAN
Dynamic VLAN cung cp thnh vin da trn a ch MAC ca thit b ngi dng u cui.
Khi mt thit b kt ni n mt port ca switch, switch phi truy vn n c s d liu
thit lp thnh vin VLAN. Ngi qun tr mng phi gn a ch MAC ca user vo mt
VLAN trong c s d liu ca VMPS (VLAN Membership Policy Server). Hnh 1.12 biu
din Dynamic VLAN vi bng a ch MAC
1.6.2. Trin khai VLAN
thc thi VLAN, ta phi xem xt s thnh vin ca VLAN, thng thng s VLAN s ph
thuc vo kiu lu lng, kiu ng dng, phn on cc nhm lm vin ph bin v cc yu
cu qun tr mng.

End-to-end VLA

Local VLAN
End-to-end VLAN
Local VLAN
Chng 2.
THC TRNG H THNG THNG TIN
CA TRNG I HC IU DNG NAM NH
2.1. T chc, chc nng trng HD Nam nh2
Trng i hc iu dng Nam nh (HD) c c cu t chc v chc nng ca mt
trng i hc theo quyt nh 24/2004/Q-TTg ban hnh ngy 26 thng 02 nm 2004 ca
th Tng Chnh ph qui nh chc nng, nhim v, quyn hn, trch nhim v ch qun

2.

T chc, chc nng trng HD Nam nh [K yu 50 (2010) nm


thnh lp Trng i hc iu dng Nam nh]

l ca mt trng i hc trc thuc B Gio dc v o to. Hnh di y m t c cu t


chc ca Trng HD Nam nh:
2.2. T chc qun l v CNTT
Phng CNTT ph trch cung cp h tr CNTT cho tt c phng, ban, b mn. Vic h tr
bao gm mua sm phn cng, pht trin cng c phn mm, thit lp cc mng LAN, x l
cc li phn cng/phn mm. Do thiu ngun nhn lc, Phng CNTT khng c chia thnh
cc b phn ring bit. Cc cn b CNTT ph trch nhiu lnh vc nh ng dng, CSDL,
mng, phn cng, qun tr h thng, v.v. Vic phn chia nhim v c phn cng tng nm.
Lp k hoch Ngn sch CNTT
Ngun nhn lc CNTT
Thiu ngun lc
Phng CNTT khng c ngun lc phn cng vo cc b phn chuyn mn ring; mt
ngi thng phi kim nhim nhiu cng vic v khng c v tr d phng cho cc v tr ch
cht
o to
Hng nm, Trng H D thc hin hng lot kho o to chnh qui, ti chc, o to li
cn b, trong hc vin phi hc cc mn tin hc c s v tin hc ng dng. Cc mn
hc ny c yu cu thc hnh ti phng my ca nh trng.
2.3. V cc nh hng pht trin nh Trng
Trng H D pht trin hng ti mt trng i hc hng u trong ngnh Y t v iu
dng vi qui m o to i hc v sau i hc kt hp vi bnh vin thc hnh. V vy,
xy dng bn k hoch pht trin h tng CNTT p ng cc nhu cu v dy hc v qun l
l mt trong nhng chin lc ca nh trng. Xy dng kin trc pht trin tng th h
thng CNTT ca nh trng l mt yu cu cp bch.
2.4. H thng phn mm v CSDL
2.4.1. Phn mm ng dng
Cc phn mm ng dng ti trng rt hn ch c v s lng v cht lng . Bng di y
cho thy danh mc cc ng dng hin ang c nh trng s dng
Cc ng dng ch chy trn cc my n l v chia s d liu ngang hng.
2.4.2. Phn mm h thng
H thng phn mm h thng ca nh trng theo dng Microsoft. Tt c cc my trm v
my ch u dng cc phin bn khng c bn quyn.
2.5. H tng mng
2.5.1. C s vt cht v mi trng hot ng
Cc phng ban, b mn ca nh trng tp trung trong nh Hiu b 9 tng vi kin trc mt
bng nh sau:
Tng 1 gm c 18 phng: 2 phng ca phng TCCB, 4 phng ca phng o to i hc v
Sau i hc, 3 phng ca phng VTTTB, 3 phng ca phng cng tc HSSV, 3 phng ca
phng HCQT,1 phng Vn th, 1 Phng truyn thng, 1 phng hi tho
Tng 2 gm c 14 phng: 1 phng Hiu trng, 4 phng ph hiu ph, 1 phng tip khch, 1
phng hp, 1 phng hi tho, 1 phng ca vn phng ng y, 3 phng ca phng ti chnh
k ton, 1 phng ca phng TCCB.
Tng 3 gm c 14 phng:11 phng ca Th vin, 3 phng ca phng Cng ngh thng tin.
Tng 4 gm c 20 phng: 2 phng ca b mn GDTT, 1 phng ca b mn Lut tm l, 1
phng ca b mn Tm thn kinh, 1 phng ca b mn Gio dc Quc phng, 2 phng ca
b mn iu dng chuyn khoa h Ngoi, 1 phng ca Trung tm qun l sinh vin v k
tc x, 2 phng ca b mn iu dng Ni, 2 phng ca b mn iu dng Ngoi, 2
phng ca b mn iu dng Nhi, 2 phng ca phng Nghin cu Khoa hc, 2 phng ca
phng Hp tc Quc t.

Tng 5 gm c 13 phng: 4 phng ca b mn Ton Tin, 5 phng ca b mn Ngoi ng, 4


phng ca Trung tm Kho th v m bo cht lng.
Tng 6 gm c 15 phng: 5 phng ca b mn Sinh vt, 10 phng ca b mn Ha - Ha
sinh.
Tng 7 gm c 17 phng: 3 phng ca b mn Mc L nin, 5 phng ca b mn Vi sinh
vt K sinh trng, 6 phng ca b mn Y t cng ng 1 phng ca b mn iu dng
ph sn, 1 phng ca Vn phng ng y, 1 phng Vn phng on thanh nin. 1 phng Vn
phng cng on.
Tng 8 gm c 16 phng: 7 phng ca b mn Gii phu M, 2 phng ca b mn Truyn
nhim, 6 phng ca b mn Sinh l Sinh l bnh, 1 phng ca b mn iu dng Sn
ph.
Tng 9 gm c 14 phng: 8 phng ca b mn Dc, 6 phng ca b mn Y hc c truyn.
2.5.2. Mng cc b
Mng phng, mt min ng .
o Ch c 1 ng ni Internet, (ng u ni WAN, 1 cng FastEthernet u
vi Switch ln, Switch ni vi 9 Switch khc ca 9 tng nh, mi tng Switch
ny li ni vi cc Switch ny li ni vi cc my ca phng ban, b mn.
o Tt c cc PC trong h thng c cng 1 Subnet Mask IP v cng mt Default
Gateway, Min li khng gii hn c, Kh nng bo mt km, Lng ph v
lu lng, Kh khn cho qun tr mng, qun l h thng,
Cc phn mm ang c s dng: k ton DAS (Dynamic Accouting System),
Eliplike th vin, VSU qun l o to
o u l ng dng destop chy ring l v chia s CSDL chung.
o Khng c bo mt mng, ch s dng account v password,
2.6. H tng my ch
Phn ny s m t h tng my ch hin c gm cu hnh phn cng, chc nng v mi
trng my ch.
S lng my ch
Trng i hc iu dng Nam nh hin c trang 01 my ch IBM-3.2(2 CPU) Ghz,
1GB RAM, 50 GB HDD v 01 my ch IBM-3.4Ghz (8 CPU), 3.25 GB RAM, 280 GB HDD
+ External HDD 500 GB.
Chc nng ca my ch
V cc ng dng Trng i hc iu dng Nam nh u c kin trc 1 hoc 2 lp, nn
khng c my ch ng dng v my ch web. V cng khng c cc my ch qun l v
truyn thng.
Mi trng vn hnh
Trng i hc iu dng Nam nh khng c mi trng my ch tch bit theo thit k
xy dng ban u. Mt phn khng gian ca phng CNTT c tch thnh mt khu vc
to phng my ch.
Phng my ch, 2 cn b CNTT ph trch qun tr mng c th ra/vo phng my ch.
Khng c thit b bo chy, thit b chng chy, my pht in, thit b chng sc in cho
mi trng my ch hoc cho ton b mi trng lm vic.
Phn mm h thng
Tt c cc my ch Trng i hc iu dng Nam nh ang chy h iu hnh MS
Windows 2003 server. Cc my ch ang kt ni internet nhng hu ht khng c bn quyn,
nn cc bn v li mi khng c cp nht.
Nhn xt
Kin trc mng ca Trng i hc iu dng Nam nh l phng v vy, mng khng
c phn on v khng c cc server ring bit cho cc mc ch khc nhau. C th, ch c

h thng server phc v tc nghip. Khng c h thng server d phng (backup) chy khi
h thng server phc v tc nghip b li. Khng c h thng server phc v vic o to
hoc th nghim cc phn mm mi. Khng c h thng server qun l vic truy nhp mng.
2.7. H thng an ninh, bo mt
2.7.1. An ninh vt l
Vic truy cp vo cc my ch khng c gim st. Vic truy nhp vo phng my ch
c m cho tt c cc cn b CNTT.
2.7.2. An ninh CSDL
Nh trng ang thiu mt m hnh d liu v cc quy tc bo mt km theo. Bo mt d
liu hin ti da hon ton vo chc nng ca mi ng dng.
2.7.3. An ninh ng dng
Mi ng dng duy tr mt b ti khon ngi dng c xc nh trc vi quyn truy cp
c cp theo cc chc nng ca phn mm. Qun tr ng dng s dng cc chc nng ca
phn mm to v qun l ti khon ngi dng. Tn v mt khu truy nhp l c ch duy
nht xc thc ngi dng. Thng tin ny c lu tr ti ch trong bn CSDL ng dng
c m ho.
2.7.4. An ninh mng
Mng LAN ca nh trng c cu trc phng iu c ngha l khng c thit k phn
mng. Trong mng LAN phng, tt c cc my trm trc tip kt ni cng nhau; cc my ch
v cc my trm c t trong cng khng gian lm vic. Worms, Trojans hoc viruses c
th d thm nhp t my ny sang my khc.
Chng 3.
THIT K MNG CAMPUS
CHO TRNG H D NAM NH
3.1. Tm tt v cc phn mm trong tng lai ca nh trng
Phn mm qun l cc hot ng ca nh trng s c u t trong tng lai theo qui m
ca mt trng i hc. Vic u t s c thc hin qua nhiu nm.
3.1.1. H thng ng dng
H thng phn mm qun l (PMQL) ca nh trng s l h thng tch hp, s dng c s
d liu thng nht v tp trung x l. H thng PMQL bao gm cc phn h c m t
trong s di y.
3.1.2. Yu cu h tng my ch
o Nhm my ch qun l v gim st h thng
o Nhm my ch cung cp cc dch v h tng cn bn (xc thc/nh danh,
chia s file v in n, sao lu d phng)
o Nhm my ch chy cc ng dng qun l ni b
o Nhm my ch cung cp cc dch v trao i vi bn ngoi (web, mail, proxy,
tng la)
3.1.3. Yu cu h tng mng
vn hnh c h thng PMQL mi tp trung th iu kin tin quyt l phi xy dng
c h tng mng n nh thng sut trong nh trng.
3.2. Thit k h tng my ch
3.2.1. Phn hoch cc vng h tng my ch
Vng My ch: Bao gm cc my ch phc v cho cc hot ng chnh. Trong mt mi
trng y , vng ny phi bao gm cc mi trng my ch khc nhau nh Mi trng
vn hnh (production), Mi trng d phng (backup), Mi trng o to / kim th
(training / testing). Vng ny c thit k bao gm ton b tt c cc my ch ca cc mi
trng trn v c t trong cng mt VLAN.

Vng Truy cp: thuc phm vi hot ng ca cc phng nghip v, cha cc my trm lm
vic.
3.2.2 Gii php mi trng tr s xut
m bo s hot ng lin tc v an ninh ca h thng my ch chy cc ng
dng tp trung, cn thit phi duy tr mi trng t my ch ring tch ri khi mi trng
lm vic v trang b mt s thit b h tr nh sau
B lu in: Cn b sung thm b lu in 3KVA cho mi h thng my ch
My pht in: Cn trang b mi 01 my pht in h tr cho mi trng my ch
trong trng hp mt in cc b.
Bo chy: Cn trang b h thng bo chy ti ch, lp t cho mi trng my ch
3.3. Thit k h tng mng cc b
3.3.1. Tiu chun mng
Mng cc b ca nh phc v cc nhu cu trao i / chia s ti nguyn cc b gia cc phng
v l h tng chy cc ng dng nghip v cho ton b cc n v nh trng. V c bn v
tr cc phng ban vn s c s thay i v m rng khi nh. Do vy mng cn t c cc
yu cu sau khi thit k
- C hiu sut cao trn on kt ni li. Tiu chun xut l Gigabit Ethernet vi cp
CAT5e tr ln, cc switch thuc phn on ny cn h tr cng 1000Base-T. Cc phn on
khc c th duy tr chun Fast Ethernet vi s n nh v chi ph tit kim.
- Cho php chia mng thnh cc phn on mng ring bit m bo an ninh v
gim xung t d liu, tng hiu sut mng. Cc switch cn h tr VLAN to cc mng
cc b o gia cc nhm ngi dng phng ban khc nhau.
C kh nng m rng cc nt mng m khng nh hng ti kin trc thit k.
Nguyn tc kin trc 3 lp mng ca Cisco c th c p dng.
3.3.2. H tng mng cc b
Trong thit k mi trc phn phi s gm 01 switch t ti mi tng ca ta nh, kt ni cho
y ti cp core switch ca mng, m bo tnh sn sng ngay c mt trong hai ng kt
ni gp s c.
B ngn nga thm nhp (IPS Instrusion Prevention System): lc theo thi gian thc cc
gi tin mc cao pht hin v ngn nga cc cuc tn cng vo h thng.
Tng la (firewall): Thit lp cc quy nh v cc di a ch v cng c cho php
thm nhp h thng.
B nh tuyn (router): chuyn hng gi d liu ra/vo gia mng cc b v pha
bn ngoi.
Trong m hnh ca h thng PMQL mi c thit k x l tp trung ti cp tnh thng qua
h tng mng. Tnh kt ni ca h thng mng tr nn mt yu t quan trng.
3.3.3. S sn
H thng cp UTP c d kin i ni trn cao i vi cc on ngoi phng lm vic (trong
mng nha 60x40mm) v i di chn tng trong phng lm vic (mng nha (39x18mm).
Cc switch s c gn trn cao ti cc gc nh hoc v tr ph hp thc t trnh tm va chm
thng xuyn v nh hng thi tit, nhiu in.
Cc u nt mng ti phng lm vic l cc outlet i cch chn tng khong 20-25cm. Ti
khi core, cc switches s c t trong t v u ni thng qua patch panel.
Thit b Firewall (bc tng la)
Mc ch to ra cc lut ngn chn cc kt khng c php vo h thng mng ca nh
trng. Chn cm cc trang Web c hi. Qun l vic truy nhp internet.
Server Domain control:

Dng cung cp DHCP v qun l h thng my tinh ca trng. Trn server ci t h


thng Domain control . V ci t h thng File server cho cc phng ban, khoa chia s s
liu v .
Server Database:
Server ny dng ci t h thng phn mm qun l o to, cng thng tin in t ca
nh trng, Mail server ca trng v cc phn mm ng dng khc
3.4. Phn chia cc VLAN
VLAN1: Dng cho h thng ti chnh ca nh trng, bao gm cc trm ca phng ti v qun tr, k tc x.
VLAN2: Dng cho o to, bao gm cc phng o to, cng tc chnh tr sinh vin, khoa
hc v cng ngh
VLAN3: B mn CNTT v phng thc hnh my tnh
VLAN4: Cc b mn chuyn mn
Trong tng lai, khi b mn tr thnh khoa, c th thit lp tng VLAN ring cho cc khoa.
Thm na, khi c bnh vin thc hnh, chng ta hon ton c th m rng v thit k cc
VLAN ring cho n v ny.
3.5 Vn an ninh h thng
3.5.1 Tng la
Nguyn tc chung khi thit k mng cho mt trung tm d liu l phi to h thng tng la
hai lp. Lp trong cng hot ng ti khi core bo v cc my ch ca mi trng vn
hnh khi s xm nhp khng c php t cc mi trng kt ni khc. Lp pha ngoi nm
ngay sau b nh tuyn kt ni vi cc mng din rng khc nhm bo v s thm nhp t
bn ngoi vo trong mng ca trung tm.
3.5.2 Ngn nga xm nhp
H thng ngn nga xm nhp c t on gia ca mng cc b v cc mng din rng
bn ngoi. H thng ny ch yu thit lp cc quy tc lc gi tin c thng qua tng
la. V d, cc d liu cng web (80) s c chy thng qua tng la v c lc ni
dung thit b ngn nga thm nhp.
3.5.3 Phng chng virus
Nguy c virus n ch yu tp trung qua hai ng cng internet v cc my trm. Mt gii
php phng chng tp trung theo m hnh client-server cng vi gii php qut ngn nga m
c hi qua kt ni internet c th p ng c nhu cu.
KT LUN
Trong kha lun ny, chng ti tm hiu c:
Kin trc mng Campus ca Cisco
Nguyn tc thit k modular cho cc mng campus
T , chng ti tm hiu v thit k mng campus cho trng i hc iu
Dng Nam nh.
Tuy nhin, trong vic thit k cha ch ra c cc cng vic sau:
Thit k chi tit cc a ch IP
Tnh ton chi tit cc thit b mng nh dy cp, s wallet,..
Lm d tr kinh ph
Thit k cc tiu chun nh gi
V y l cc phn vic chng ti d nh thc hin trong tng lai.

References
Ting Vit

1. Trung tm khoa hc t nhin v cng ngh quc gia - vin cng ngh thng tin
2.
3.
4.
5.
6.
7.

(2004), Gio Trnh Thit K Mng LAN WAN.


Th.s Ng B Hng i Hc Cn Th Khoa Cng Ngh Thng Tin (2005), Gio
Trnh Thit K & Ci t Mng.
Hc vin mng Quc t NETPRO - ITI Vin CNTT ( 2011) , Gio trnh Thit k v
xy dng mng LAN v WAN, H Ni.
V Th H (2009), Thit k mng CAMPUS theo cng ngh CISCO
K yu 50 (2010) nm thnh lp Trng i hc iu dng Nam nh
Nguyn Hng Sn (2006), Gio trnh h thng mng my tnh CCNA, Nh xut bn
Lao ng X hi.
S thit k mt bng nh Hiu b 9 tng ca trng i hc iu dng Nam
nh (2007)

Ting Anh

8. Diane Teare (2005), Campus Network Design Fundamentals Catherine Paquet


Copyright2006 Cisco Systems, Inc. Published by: Cisco Press.

You might also like