logo

Center for Information Technology

Directories

contact us

search

home

 

 

 

 
Click to return to CIT home page

Network Routing Changes

Click to return to CIT home page

Reasons for the Change * Changes Being Made * DHCP/DNS Required Modifications * Servers on Campus * Other Computers Requiring a Fixed IP Address

Reason for Changes:

Due to the need for enhanced security and increased safety of our network resources, we are making modifications to the routing structure of the College-wide network. These changes will allow problem areas to be more contained, with less impact to the network in general and, specifically, less impact to vital campus-wide servers.

In the recent past, misconfigured routers and misconfigured personal computers have resulted in campus-wide network disturbances. Many users, especially those on Resnet, have experienced extreme slowness and the inability to access some network resources. CIT has conducted extensive research in troubleshooting these issues.

Additional extensive work has had to be done to determine, troubleshoot, and resolve the following:

  • constant, daily, external hacking attempts
  • extensive use of bandwidth (and violation of copyright laws) from the illegal downloading and sharing of music, video, and interactive software files
  • problems created due to computers laden with viruses, spyware, adware, or malware.

Changes Being Made:

In order to alleviate these issues and to prepare for future capabilities, CIT is, thus, making necessary network modifications. This will involve making changes to most computers on campus. These modifications will consist of the following:

  • Enhanced subnetting of the campus network: All campus-wide servers will reside on their own, protected subnet. Misconfigured devices will, thus, only impact devices on their own subnet. Troubleshooting will be much more more localized and thus easier to perform. CIT will not need to result to a "disconnect all" procedure to locate and troubleshoot problems.
    • This re-routing necessitates setting most computers to receive IP addresses automatically (DHCP) vs. manually. See DHCP/DNS info below.
    • Some server-type computers and some user computers (due to the nature of the work performed on them, i.e., HVAC), will need to be set to a fixed IP in a specific range.

  • Network authentication: The routing changes will allow us to put into practice a new means of network authentification for all campus network users (In the 2004-2005 academic year, only Resnet users have had this capability). This will allow all computers to be checked prior to connection to the network, pre-discovering viruses and systems that are not properly updated (i.e., on Windows computers, checks for current Windows updates). Users whose systems are determined to need updated virus and/or systems software will be directed to a web page with instructions on how to proceed. Once systems are verified as "cleaned", they will be authenticated for network access.

    Note: Due to the heavy, and ever-increasing, influx of viruses and spyware/malware on Windows computers, this capability to check systems before accessing our network is considered vital to the ongoing integrity and security of our network. We recognize that some users may not appreciate the extra steps involved, but these actions are considered vital to the overall security of our computing resources.

DHCP/DNS Required Modifications (Faculty and Staff only):

Note: The following information only applies to your computer when connected on campus; this does not apply if you are connecting via Cable Co-op, DSL, or some other ISP.

  • Once the routing changes are made, all faculty and staff systems (i.e., all computers on campus, but not on resnet) will need to obtain their IP addresses (network addresses) automatically, using DHCP (Dynamic Host Control Protocol). Currently, students on Resnet already get their IP addresses from DHCP. Faculty and staff, though, have mainly had their IP addresses manually assigned.
  • Also, updated information will be required for the Preferred and Alternate DNS (Domain Name Server) server. THIS INFORMATION WILL NEED TO BE CHANGED on all faculty and staff desktop and laptop computers, for both wired and wireless connections.
    • Prior to Monday, 18 July 2005, all faculty and staff using Windows XP and connecting to the campus network will need to have their network settings modified. Once the changes to the routing structure are made by CIT on Sunday, 17 July, Windows XP users will no longer be able to access the network with existing manual IP settings.

    No action is required on the part of the user. On 14 July, CIT will push the applicable information to Windows XP computers connecting to the network using the standard Novell Netware login script.

    However, information is also available online on how to accomplish this, should users desire to make the changes themselves. The online instructions can be taken now with no loss of service. Alternatively, Windows XP users can await the results of the login script (activity should be transparent to the user).

    If you notice any problems connecting after 17 July, please contact the CIT Help Desk at x58197.

    • The login script will also be pushed to Windows 2000 users. Windows 2000 users may also elect to make the changes themselves, using the online instructions.

    • Macintosh users will also need to make the changes to the DHCP and DNS settings. These changes will have to be made manually; there is no means such as the login script to push the changes to a Mac computer. If you are comfortable with doing this yourself, please follow the online instructions, otherwise contact the CIT Help Desk at x58197 for assistance. Macintosh computers, even without the changes, should continue to function once the routing structure is modified on Sunday, 17 July, but to incorporate all capabilities, the changes must be made by the beginning of August.

Servers on Campus

If you currently run a server on campus and need the IP address to remain static, please let CIT know. Contact the Help Desk at x58197 and provide the following information: type of computer, MAC (hardware) address, location, function of computer. CIT will then verify the requirement and assign an address that will remain fixed for that server.

Other Computers Requiring Fixed IP Addresses:

If you need your computer to have a fixed IP address for some other reason, i.e., other personnel need to ftp to your computer for academic/college-related work, you work with external organizations that verify your access via IP address, etc., please contact the CIT Help Desk at x58197 and provide the following information: reason for needing a fixed IP address, location, MAC (hardware) address of the computer. Once the requirement is verified and authorization is granted, a fixed IP address will be assigned.

 
This page last updated: 11-Aug-2006  
line comments Directories search ochome