designing a secure Network infrastructure

🔐 Network Configuration Overview In this project, we designed and configured a secure network infrastructure using Cisco routers, switches, and a FortiGate firewall to ensure efficient routing, segmentation, and protection of data traffic. 🧱 Firewall Configuration (FortiGate) The FortiGate firewall was configured to: Define security zones separating internal (LAN) and external (WAN) networks. Create and enforce access control policies to permit only authorized traffic between the 192.168.2.0 internal network and the internet. Implement Network Address Translation (NAT) to hide internal IP addresses. Enable intrusion prevention and web filtering for enhanced network protection. 🌐 Router Configuration (Cisco CSR1000V) The Cisco router acted as the central routing device, connecting the internal LAN, firewall, and external network. Configuration steps included: Setting up IP addressing and routing protocols (static or dynamic) for inter-network communication. Configuring default routes to forward unknown traffic toward the FortiGate firewall. Implementing basic security measures such as SSH for remote management and disabling unused interfaces. 🔁 Switch Configuration Cisco switches were used to segment and interconnect internal hosts: VLANs were configured to separate network segments (e.g., management, users, servers). Port security was enabled to limit access to trusted devices. Switch interfaces were properly assigned to VLANs and connected to the router and firewall using trunk links.