Future Network Projects

Wireless Network Projects

  • Add new secure SSID to current wi-fi system
    • Benefits:
      • Add user authentication, much like what is currently being done in the dorms
      • Posture checking
      • Encryption of sensitive data being transmitted wirelessly
    • DC-Wireless SSID will remain for legacy devices
      • Will likely be renamed ‘DC-Guest’ once campus deployment of new SSID is complete
        • Possible addition of more strict posture checking for guest access
    • Timeframe:
      • Currently working with Vandis to create new SSID and add validation through Clearpass
        • Business Center will be the testbed
        • Also looking to update & clean up Aruba firewall rules at this time
        • Estimated completion: August 2018
      • Campus-wide rollout during semester breaks, either Winter 2019 or Summer 2019
  • Decommission old Aruba 1XX-series wireless access points
    • The 1XX-series WAPs will be incompatible with new Aruba software version 8
    • Devices are end-of-life
    • New WAPs have been purchased under grant from DASNY.
      • DASNY-approved buildings are receiving the new Aruba 3XX WAPs purchased under this grant
        • Older 2XX WAPs are trickling down to other locations
    • Timeframe: estimated completion August 2018
  • Move Aruba 7205 Controllers to HA setup
    • Currently we have 2 Aruba 7205 controllers, but they are not running in a full redundant failover mode
    • Working with Vandis to incorporate HA setup
    • Timeframe: estimated completion August 2018
  • Upgrade Aruba 7205 Controllers to version 8
    • Version 8.0 is the current version for Aruba contollers
      • Daemen is currently running 6.5.4.4
    • AOS 8 will drop support for all 1XX-series WAPs
    • Determined to be too large a scope to be accomplished this summer
    • Estimated timeframe: Summer 2019

Wired Network Projects

  • Consolidate switch firmware
    • All managed network switches were on a hodgepodge of differing software versions
    • Most academic switches have been upgraded and manually backed up
      • Looking into automated backups with older configs added to library
        • Timeframe: none yet
    • Admin switches still need to be updated
    • Estimated timeframe: August 2018
  • IT Security Upgrades
    • Network device local user login cleanup
      • Many devices had deprecated user accounts
      • Most are cleaned up now
      • Looking to future RADIUS authentication
        • Timeframe: none yet
      • Timeframe: August 2018
    • PCI Compliance
      • Separate VLAN created to segment credit card traffic
      • New cabling has been run in DS, Wick, and Musicalfare
        • Musicalfare has elected to obtain DSL service from Verizon, thus taking them off the Daemen network
      • Still need to move devices over to this new VLAN once cabling is terminated
      • Timeframe: August 2018
    • Device login banner
      • Looking to add a disclaimer to all network devices warning of unauthorized access
      • May need to work with legal team to determine what is acceptable
      • Timeframe: Fall 2018
  • Consolidation of Academic and Administrative Networks
    • Consolidate Academic and Administraive networks into one
      • Use VLANs to segregate traffic
      • Consolidate switch requirements
    • Remove requirement of Cisco ASA
    • Timeframe: Summer 2019
  • Upgrade Secondary ISP link to 1gbps
    • Currently receiving 1gbps from Cogent, and 500 mbps from Crown Castle
      • Upgrade Crown Castle to 1gbps
      • Can provide load balancing
        • Will require reconfiguration of the ASR
      • Waiting on confirmation of quote from Crown Castle
    • Timeframe: Fall 2018

Documentation

  • Design New Network Maps
    • Building network maps
      • Closet access requirements
    • Campus network map
      • Fiber cable tracking & usage
    • Timeframe: Fall 2018
  • Closet Cleanup
    • Improve cable management
    • Document cabling
    • Labeling
    • Includes Canavan Server Room
    • Timeframe: Fall 2018
  • Firewall Rule Cleanup
    • Remove unused interfaces
    • Update current firewall rules
      • Remove deprecated rules
    • Timeframe: Spring 2019

Construction Project: Curtis Hall Renovation

  • Curtis Hall set for renovations Summer 2018
    • Replace existing X1026P Dell switches (qty: 3) with new N2048P switches (qty: 3)
      • X1026 switches to be repurposed, location TBD
    • Purchase, configure, and install Aruba 335 wireless access points (qty: 3)
      • Existing Aruba 224 WAPs (qty: 2) to be repurposed, location TBD
        • Hospitality WAPs (Aruba 205H, qty: 5) to be reused on an as-needed basis
    • All new office locations to receive cat6 data cables (qty: 2)
      • Cabling to be done by outside contractor
    • Timeframe: Summer 2018