2.6 Compare & contrast common network configuratoin concepts Flashcards
What is a DHCP scope?
DHCP server’s address range for client hosts in a subnet
A scope of 192.168.0.100 - 192.168.0.199 allows for 100 dynamically addressed hosts on the LAN
What addresses should the DHCP scope exclude?
Addresses that have been configured statically
i.e. if you’ve manually assigned the IP address 192.168.1.10 to a printer, you would want to exclude this address from the DHCP scope to prevent the DHCP server from assigning it to another device.
How is a host configured to use DHCP?
By setting its TCP/IP config. to automatically obtain an IP address
What happens when a DHCP client connects to a network?
It broadcasts a DHCPDISCOVER packet to find a DHCP server
Since clients BROADCAST this packet, meaning they send it to all devices on the network, they do not need to know the DHCP server’s IP address
Why do DHCP servers need to have a static IP address?
To ensure DHCP clients reliably find the server for IP address assignment or renewal
If the DHCP server’s IP address were to change frequently, DHCP clients wouldn’t be able to reliably locate it to obtain network configuration information.
What does the DHCP server do when it receives a DHCPDISCOVER packet?
Responds with a DHCPOFFER packet
What does a DHCPOFFER packet contain?
Address & other configuration data
other config data like the default gateway & DNS server addresses
What does the DHCP client do when it receives a DHCPOFFER packet?
Broadcasts a DHCPREQUEST onto the network
it broadcasts the packet to inform all DHCP servers on the network that the client has accespted the IP address offer provided by one of the servers
What happens after a DHCPREQUEST packet is broacasted onto the network?
Server responds with a DHCPACK packet
What happens when the client receives a DHCPACK packet?
Client broadcasts an ARP message to check that the address is unused
Meaning of ARP?
Address Resolution Protocol
What if the client detects an IP address is already used after sending an ARP message?
It declines the IP address offer & requests a new one
If it detects that it isnt used, then it proceeds to use it.
What can a client do to retain an IP address before the lease ends?
Attempt to renew or rebind the lease
What if a client can’t renew/rebind its IP address lease?
Must release the IP address & start the discovery process again
How can a client’s network configuration be changed?
i.e. assiging different IP addresses or adjusting other settings
via DHCP server
When do client network changes take effect after updating via DHCP server?
When DHCP client seeks a new lease
A new lease can also be requested manually
What happens in a DHCP reservation?
DHCP server reserves an IP address for a device
How does DHCP server know which device to assign the reserved address to?
Being configured with a list of MAC addresses of hosts for IP address assignment
When contacted by a listed host, it issues a lease for reserved IP
Some OSs send a different unique identifier instead of MAC addresses by default. Configuring the identification method ensures accurate server info.
What is a hostname?
Label assigned to a device on a network
It serves as a human-readable identifier for the device
How is the possibility of duplicate hostnames on the Internet avoided?
Having the hostname combined with a domain name & suffix
Note that, while combining the hostname with a domain name and suffix helps, it’s part of a broader set of measures used to avoid duplicate hostnames on the Internet. (i.e. Domain registration, Reverse DNS lookup, etc.)
Meaning of FQDN?
Fully Qualified Domain Name
What is a FQDN?
Hostname combined with a domain name & suffix
i.e. nut.widget.examplle
Identify hostname of this FQDN:
nut.widget.example
nut
Identify domain name of this FQDN:
nut.widget.example
widget
Identify the TLD (domain suffix) of this FQDN:
nut.widget.example
.example
A domain suffix could also contain subdomains between the host & domain name
Meaning of TLD?
Top-Level Domain
How are FQDNs assigned & managed?
Using DNS
What is DNS?
Global hierarchy of distributed name server databases containing domain and host info.
What is at the top of the DNS hierarchy?
Root
Root is represented by a null label, consisting of just a (.)
How many root servers does the DNS hierarchy have?
13 root-level servers
(A to M)
What is below the root in the DNS hierarchy?
TLDs
The most prevalent are genereic (i.e. .com, .org, .net, .info, .biz), sponsored (i.e. .gov, .edu), & country code (i.e. .uk, .ca, .de)
What is DNS operated by?
ICANN
ICANN also manages genereic TLDs. Country codes are generally managed by an org. appointed by the relevant government
What does a client need for hostname/FQDN to IP resolution?
The appropriate record from a DNS server
What is an Address record (A) used for?
Resolving a host name to an IPv4 address
What are MX records used for?
Identify the domain’s email server so other servers can send messeges to it
What does the host name with an MX record need?
Associated A or AAAA record
What are TXT records used for?
Storing free-form text used to support other networks services
2 main reasons domain names have TXT records?
To verify email services & block spam
Spam is spoofed & unwatned messages
How is SPF record implemented as?
TXT resource record in DNS
How many SPF records should each domain have?
1
What does SPF identify?
Email servers that are allowed to send emails on behalf of a domain
What does SPF do?
- Identifies authorized hosts
- Handles unauthorized servers
What does it mean that SPF identifies authorized hosts?
identifies email servers that are authorized to send emails on behalf of a domain
SPF checks if the sending mail server is authorized to send emails on behalf of a domain by querying the domain’s DNS records. For instance, if an email claims to be from “example.com,” the receiving mail server checks “example.com”’s SPF record. If the sending server’s IP is listed, the email passes authentication; if not, it fails, potentially indicating fraud. SPF helps prevent email spoofing and phishing by confirming the sending server’s legitimacy through DNS records.
3 things SPF can do to emails from servers not on the list?
- Accept
- Flag
- Reject
Syntax used in SPF to accept emails from servers not listed?
+all
Syntax used in SPF to flag emails from servers not listed?
~all
Syntax used in SPF to reject emails from servers not listed?
-all
What does DKIM do?
Uses cryptography to validate the source server for a given email
The sender’s server creates a unique digital signature by hashing specific email content and encrypting it with the sender’s private key. The recipient’s server then retrieves and verifies the DKIM signature using the sender’s public key from DNS records. If successful, it confirms the email’s origin and integrity; otherwise, it flags potential tampering for further review.
Does DKIM replace or supplement SPF?
Either or
It can do either one
How is DKIM configured?
Org. uploads a public encryption key as a TXT record in the DNS server
Orgs. receiving messages can use this key to verify that a message derives from an authentic server
What does DMARC framework do?
Ensures SPF & DKIM are being utilized effectively
How are DMARC policies published as?
DNS TXT record
Which DNS spam management records can DAMRC use?
SPF or DKIM or both
What does DMARC allow?
- Senders to define how DMARC authentication failures are treated
- Recipients to report DMARC authentication failures to the sender
3 ways DMARC authentication failures can be treated?
- Flag
- Quarantine
- Reject
Simplest way of assigning a node to a VLAN?
Configure switch port with a VLAN ID of 2-4049
i.e. Switch ports 1-10 could be VLAN 10, and ports 11-20 VLAN 20. Host A on port 2 is in VLAN 10, and host B on port 12 is in VLAN 20.
What happens when hosts are placed in separate VLANs?
They can’t directly communicate with each other
Even though they are on the same managed switch
What must each VLAN be configured with?
Its own subnet address & IP address range
How are communications between VLANs done?
Via IP router
Each VLAN must also be provisioned with its own DHCP & DNS services
Benefits of VLAN?
- Reduces impact of excessive broadcast traffic
- Traffic is more easily filtered & monitored
VLANs are also used to separate nodes by traffic type, like isolating VoIP devices for easier prioritization over other VLANs.
