{"id":18151029,"url":"https://github.com/idan404/campus-network","last_synced_at":"2025-04-06T23:28:36.952Z","repository":{"id":259042828,"uuid":"874711772","full_name":"Idan404/Campus-Network","owner":"Idan404","description":"ITQ Project - network automation","archived":false,"fork":false,"pushed_at":"2024-10-21T15:18:03.000Z","size":3445,"stargazers_count":0,"open_issues_count":1,"forks_count":0,"subscribers_count":1,"default_branch":"main","last_synced_at":"2025-02-13T05:29:51.329Z","etag":null,"topics":["ansible","ccnp","cisco-ios","gns3-gui","network-automation","trad"],"latest_commit_sha":null,"homepage":"","language":null,"has_issues":true,"has_wiki":null,"has_pages":null,"mirror_url":null,"source_name":null,"license":null,"status":null,"scm":"git","pull_requests_enabled":true,"icon_url":"https://github.com/Idan404.png","metadata":{"files":{"readme":"README.md","changelog":null,"contributing":null,"funding":null,"license":null,"code_of_conduct":null,"threat_model":null,"audit":null,"citation":null,"codeowners":null,"security":null,"support":null,"governance":null,"roadmap":null,"authors":null,"dei":null,"publiccode":null,"codemeta":null}},"created_at":"2024-10-18T10:21:44.000Z","updated_at":"2024-11-22T10:36:46.000Z","dependencies_parsed_at":"2024-10-22T02:16:34.048Z","dependency_job_id":null,"html_url":"https://github.com/Idan404/Campus-Network","commit_stats":null,"previous_names":["mrmeeseeks404/campus-network"],"tags_count":0,"template":false,"template_full_name":null,"repository_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/Idan404%2FCampus-Network","tags_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/Idan404%2FCampus-Network/tags","releases_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/Idan404%2FCampus-Network/releases","manifests_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/Idan404%2FCampus-Network/manifests","owner_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/owners/Idan404","download_url":"https://codeload.github.com/Idan404/Campus-Network/tar.gz/refs/heads/main","host":{"name":"GitHub","url":"https://github.com","kind":"github","repositories_count":247568491,"owners_count":20959749,"icon_url":"https://github.com/github.png","version":null,"created_at":"2022-05-30T11:31:42.601Z","updated_at":"2022-07-04T15:15:14.044Z","host_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub","repositories_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories","repository_names_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repository_names","owners_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/owners"}},"keywords":["ansible","ccnp","cisco-ios","gns3-gui","network-automation","trad"],"created_at":"2024-11-02T01:06:11.578Z","updated_at":"2025-04-06T23:28:36.921Z","avatar_url":"https://github.com/Idan404.png","language":null,"funding_links":[],"categories":[],"sub_categories":[],"readme":"\u003ch1 align=\"center\"\u003e\n  \u003cbr\u003e\n  \u003cimg src=\"Images/README images/Network_Automation2.png\" alt=\"Network Automation\" width=\"1000\"\u003e\n  \u003cbr\u003e\n  Network Automation Project - ITQ College\n  \u003cbr\u003e\n\u003c/h1\u003e\n\n\u003ch4 align=\"center\"\u003eAnsible - Advertise Masage of the day on Cisco-IOS network devices in a Campus design.\u003c/h4\u003e\n\n\u003cp align=\"center\"\u003e\n  \u003ca href=\"#basic-overview\"\u003eBasic Overview\u003c/a\u003e •\n  \u003ca href=\"#key-features\"\u003eKey Features\u003c/a\u003e •\n  \u003ca href=\"#contributing\"\u003eContributing\u003c/a\u003e \n\u003c/p\u003e\n\n\u003cp align=\"center\"\u003e\n    \u003cimg src=\"/Images/README images/Ansible running2.gif\"\u003e\n\u003c/p\u003e\n\n## Basic Overview\n* This repository contains the network automation project that showcases the design, configuration, and security of a multi-branch organizational network, utilizing various technologies such as OSPF, GRE over IPsec, VLANs, and Ansible Automation playbook.\n  -  you can find a PPTX (slide-show) file in the doc folder for more detailed description of the project.\n  \n* The network consists of 3 branches (1 main branch and 2 secondary branches) connected via an ISP for general access. The network includes:\n  - Main Branch (A):\n    - Two routers (R1, R2) with OSPF for dynamic routing.\n    - Distribution Switches (DSW1 and DSW2) with HSRP acting as gateways for VLANs.\n    - VLANs for Business Departments, IT team, and Management.\n    - DSW1 is the primary root for VLANs 10 and 99; DSW2 for VLAN 20.\n  - Secondary Branches (B \u0026 C):\n    - One switch and one router each, serving as DHCP servers and gateways using Router on a Stick (ROAS).\n\n* Topology image:\n![Project Topology](Images/topology/2.png)\n\n\n## Key Features\nThe network is equipped with the following features:\n* GRE over IPsec: Provides secure tunneling between branches using point-to-point connections.\n  - Dynamic routing through OSPF over the tunnel.\n\n* Unique ISAKMP keys and IPsec profiles for each tunnel.\n* OSPF (Open Shortest Path First): Used for dynamic routing between all routers in the network.\n  - Equal-Cost Multi-Path (ECMP) for redundancy and efficient traffic distribution.\n  - Site-to-Site (S2S) neighboring relationships established via OSPF.\n* Router on a Stick (ROAS): Configured for VLANs in secondary branches, simplifying routing and gateway services.\n* HSRP (Hot Standby Router Protocol): Provides gateway redundancy for VLANs in the main branch.\n  - DSW1 as the active router for VLANs 10 and 99, DSW2 for VLAN 20.\n  - Virtual IP addresses configured for gateway services with priority settings.\n* LACP (Link Aggregation Control Protocol): Used to aggregate multiple physical links for increased bandwidth and redundancy.\n* PVST (Per-VLAN Spanning Tree): Configured for loop prevention and efficient traffic management in VLANs.\n* Automation with Ansible: Ansible playbooks are used to automate the advertisement of Message of the Day (MOTD) to all Cisco network devices, ensuring consistent communication across the network.\n\n\n### Security\n* The network has multiple security measures in place to ensure stability and prevent unauthorized access:\n  - Port Security: Limiting MAC addresses and enabling sticky MAC on critical ports.\n  - DHCP Snooping: Prevents DHCP spoofing by ensuring only trusted ports forward DHCP offers.\n  - Spanning Tree Guard Root: Protects against unwanted changes to the Root Bridge.\n  - Access Control: VTY lines secured with ACLs, Telnet disabled and all devices share a consistent security policy.\n  - Unused Ports: Disabled across the network to prevent unauthorized access.\n  - Encryption: SSH, End-to-end encryption between routers in different branches to enhance network security.\n\n\n### Automation Tool\n* The Message of the Day (MOTD) configuration is automated and deployed to all network devices.\n- Playbook: Written in YAML format, the playbook reads from a text file containing the MOTD and applies it to all devices, saving the configuration to startup files.\n- Host File Configuration: The playbook can reference individual branches or the entire network for targeted automation.\n\n\n## Contributing\n* please feel free to contact for colaboration or if you find any issues, or just want to tell me something.\n  - **My Discord**: [mrmeeseeks404](https://discord.com/users/userid/mrmeeseeks404) 📫\n* coming up next\n  - How to install \u0026 Use GNS3 and common troubleshooting.\n  - More GNS3 networks using differents Dynamic Routing Protocols, such as EIGRP, BGP...\n","project_url":"https://awesome.ecosyste.ms/api/v1/projects/github.com%2Fidan404%2Fcampus-network","html_url":"https://awesome.ecosyste.ms/projects/github.com%2Fidan404%2Fcampus-network","lists_url":"https://awesome.ecosyste.ms/api/v1/projects/github.com%2Fidan404%2Fcampus-network/lists"}