Chapter 2 - Concepts, Characteristics of Networking

Question 1

Network Traffic Types?

Answer 1

Broadcast Domain

Collision Domain

Question 2

Broads Cast Domain?

Answer 2

Consists of all devices receiving a broadcast packet which can originate from any device.

Large # of broadcast last can reduce network bandwidth.

Can effect processing power as the broadcast is heated by every system in the broadcast domain.

Any device stops processing to listen to the broadcast to accept or discard the packet.

A router indicates boundary limit as they discard brackets

Question 3

Collision Domain

Answer 3

Network segment where a collision can occur.

Typically Ethernet networks.

Consists of devices connected to a shared media.

If hubs are used they operate they operate at the physical layer, are not aware of addressing and broadcast data across all ports.

A switch operating and the data link layer which is swear of addressing and stops collisions occurring. It uses the MAC address to send data to the receiver only.

Question 4

CSMA/CD

Answer 4

Carrier Sense Multiple Access/Collision Detection

Better manages and detects collisions.

Determine how network devices respond when simultaneous requests are made on the same data channel.

Attempts to re send transmission after a time interval to help reduce collision chance.

Question 5

CSMA/CA

Answer 5

Detects and avoids collisions on a network.

Listens for collisions prior to transmitting data and informs other devices not to broadcast.

Send dummy packet for collision check.

Question 6

Segmentation

Answer 6

Keeps traffics isolated using segmentation

Question 7

Virtual LAN

Answer 7

Use a switch to isolate systems on a network from each other.

If needed devices and communicate between VLANS.

Question 8

Trunking

Answer 8

Used when needing more than one switch.

It builds a logical connection between two VLANS and allows systems on different sides of switches to be in the same VLAN.

Question 9

Tagging Ports

Answer 9

Defined by IEEE 802.1Q

Used when multiple VLANS exist per port

Directs traffic to the appropriate VLAN

Not needed if only one switch.

Question 10

Port Mirroring

Answer 10

Configure switch ports to mirror traffic between ports.

Captures traffic between devices while mirroring
only frames containing SIP/PID

Question 11

MAC Address Table

Answer 11

Dynamically built on the switch using MAC address of frames it receives.

Can determine port forwarding

Question 12

Address Resolution Protocol (ARP) Table

Answer 12

Maps IP Addresses to MAC Address.

Maintains a record of MAC and corresponding IP Addresses

Can implement a switching loop

Question 13

Switching loop

Answer 13

Sends a request to other switches if the current switch doesn’t have a MAC address in the ARP Table or is missing the address.

Spanning Tree Protocol can detect a switching loop and stop it if the switch can’t find a correct MAC address.

Question 14

DMZ

Answer 14

De Militarised Zone

Uses a firewall which only allows ports to be open to communicate with appropriate system types.

Protects internal systems in the network. Only systems needing to be exposed to the internet are.

Question 15

Hub

Answer 15

Physical layer device

Connects systems within a LAN or different segments.

It broads casts arriving data across all ports

No swear of addressing

Question 16

Switch

Answer 16

Network device that filters and forwards packets between LAN segments and hosts.

Operated in the Data Link Layer

Is swear of addressing and only sends data to the receiving device

Isolated network segments using device MAC Addresses

Question 17

Router

Answer 17

Network device that forwards packets between networks.

Operates at the networking layer

Question 18

Routing protocols

Answer 18

Enable routers to communicate with each other with respect to the routes they Handel.

Question 19

RIP

Answer 19

Routing Information Protocol

A distance vector protocol

Shares routing information among other networks.

• Routers maintain a routing table which lists all destinations and is shared to other routers*
• Distance Vector algorithms determine which path is best to destination.*

Is open source

RIP considers how many routers have to be crosses to the destination via best path

Question 20

EIGRP

Answer 20

Enchanted Interior Gateway Routing Protocol (EIGRP)

Enables routers to exchange information more efficiently and maintain a copy of neighbouring routing tables.

• RIP 2 only sends changes to updates of the routing table*
• RIP doesn’t take into account the state of the fastest path*

Question 21

Links State Routing Protocol

Answer 21

Open Shortest Path First (OSPF)

A routing protocol used to determine the best path for packets.

Replaces RIP

As a router learns of a network change it will multi cast the information to all other OSPF hosts on the network.

• this updated neighbouring routing tables*
• also takes into account the state of chosen path. If path is busy it might choose a longer route that’s the most open path.*

Question 22

Boarder Gateway Protocol (BGP)

Answer 22

Manages how packets are routed across the internet

Connects autonomous systems

Combines distance and reach ability and queries if routers are functioning along selected path

Question 23

IPv6

Answer 23

Default IP since vista

128bit

Implemented due IPv4 address shortage.

Supports auto config which helps correct and limitations of IPv4

Converts hexadecimal to binary

16bits of 8bites

1 to 9 for digits and A to F for letters

2001:0CD8:BC20:ED02:0000:0000:0000:0000

Condensed to

2001:CD8:BC20:ED02::

Question 24

Dual stack

Answer 24

Enables IPv4 and IPv6 to be used at the same time.

Both 4 and 6 are enabled by default

IPv6 is fine tuned to address common communication types like VOIP and Video conferencing

Question 25

IPv6 Router Advertisement

Answer 25

Allowing client systems to recognise that a router is present *IPv4 required anDHCO to inform client of its IP Address, subnet and default gateway.

Question 26

IPv6 Neiboure Discovery

Answer 26

Performs tasks like Router discovery Duplicates address detection Prefix discovery Tasteless address auto config

Question 27

Traffic/Packet Shaping

Answer 27

Regulates network data transfers Ensures a level of performance and QoS *Prioritises traffic and delays packets deemed less important* Priority examples VOIP Time sensitive data like email over printing Buisness related traffic Internet service provider Tiered internet like regular and standard

Question 28

QoS

Answer 28

Quality of Service Measures overall network performance, transmission and error rates. Can improve traffic shaping like packet prioritisation, Queuing, Application classification

Question 29

DiffServ

Answer 29

Differential Services Protocol Specified and controls network traffic by class Based on class traffic can get precedence like VOIP as it requires an uninterrupted data flow. DiffServ is dependant on compels policy and rules statements when forwarding network packets. *Avoids simple priority tagging as it can be time consuming and take up resources tagging each packet.

Question 30

CoS

Answer 30

Class of Service ``` Groups similar traffic types on a network to manage traffic like Email Video Voice File transfer like large documents ``` *CoS doesn’t guarantee a level of service, only a best effort in terms of Bandwidth and Delivery Time*

Question 31

Main CoS Technilogies

Answer 31

1/ 802.1p for data link layer tagging 2/ Type of Service (TOS) 3/ Differentiated Service (DiffServ) CoS focuses on maintaining best communication possible based on the communication type*

Question 32

NAT

Answer 32

Network Address Translation Used by network devices to assign a public address to a device within a private network. * limits the number of public IPs used by a company* * A private address is only visible to devices on the inside of the router on the private network* * only 1 private address needed to get everyone into the internet* NAT enables packets to be sent to a private address. As packet arrives at the router from inside the network it inserts a public address which is visible to a web server and knows which machine in the private network the data is for.

Question 33

NAT Advantages

Answer 33

Prevents depletion of IPv4 addresses Provide additional layer of security as private addresses can’t be seen from the public network. Increase flexibility connecting to public internet Use private IPv4 addressing system

Question 34

NAT disadvantages

Answer 34

Consumers processor and memory resources Can cause IPv4 communication delays Loss of end device IP trace ability Not comparable with some technologies or network applications Needs to support NAT!

Question 35

PAT

Answer 35

Port Address Forwarding Is a NAT extension Enables multiple network devices to be mapped to a single IP address. Can configure a router or switch to forward data via port # IP address example from public to a device on a private network (public) . (private) 129. 1.2.3:1001 * you state a particular port number to get to a particular system* * more robust routers support more port forwarding rules and are better at maintaining track of connections* * NAT/PAT allow easier access from and to private and public networks*

Question 36

PAT Advantages

Answer 36

Conserve IP addresses Private IP addresses aren’t exposed to public networks Limits attack origination from public network. As they don’t know the IP so can’t launch targeted attacks

Question 37

PAT Disadvantages

Answer 37

More complicated in larger networks. Particularly with remote logins Limited internal table in devices which may run out of unused ports or loose track of connections

Question 38

Port Forwarding

Answer 38

Makes a network device accessible to other devices on the internet even when behind a router. External connections go to the gateway and then to the port # of a requested service. The gateway will then forward the request to the relevant service via its port #. Eg HTTP will use port 80 and data for port 80 is automatically forwarded to the private IP address inside the network. *you don’t have to manually state the uses port. Apps normally use default ports to get data to the correct service*

Question 39

Common use of port forwarding

Answer 39

Online gaming services Peer to peer downloading VOIP apps like Skype, Viber, ooVoo, Zoom

Question 40

Do SOHO router support port forwarding?

Answer 40

Yes You can run internet services from within a SOHO network such as FTP Email Server Web Server Limited number of about 10

Question 41

ACL Koko

Answer 41

Access Control List Determine who and what can use a particular network resource * Router ms and some switches use ACL to restrict data flow to and from and network interface* * Network interfaces are configured to use ACLs to analyse data as it arrives at the Router/Switch* * once data arrives it is compared to the ACL criteria where it’s either denied or permitted* * An external router can provide access to outside network connections*

Question 42

When to use an ACL

Answer 42

1/ To enable basic security for a network. Not a firewall replacement but they can enable protection for network interfaces. 2/ Restrict Updates for Routing from network peers where you can set routers to accept updates from specific routers. 3/ helps to define flow control of network traffic. 4/ Can place ACL rules on external routers to filter traffic from less desirable networks and vulnerable protocols. 5/ To create a DMZ which is a buffer zone between the internal company network and external WAN (internet)

Question 43

DMZ

Answer 43

De Militarised Zone A buffer zone to protect internal network. Only devices that require the internet reside in the DMZ. Like a Web server on DNS server. *Can set up a proxy server which devices go through and use to get internet connection* An external router is set up with a fire wall. The external router normally has less restrictive ACL to allow access. And internal router and fire wall are set with more restrictive ACL to protect the internal network. Commonly configured as explicit allow or deny statements. *ACL along with Firewalls can increase network security*

Question 44

Public IP Addresses

Answer 44

Assigned by an internet service provider to be used by a home or buisness. It differentiates devices connected to the public internet. * must be globally unique* * To access the internet you only need one public address.*

Question 45

Private IP Addresses

Answer 45

Provides internal communication within a private network. * Alleviates IPv4 IP Address exhaustion* * All systems inside your router on the private network can use any IP address configuration* * Configuration can be based on size for example*

Question 46

IANA

Answer 46

Internet Assigned Numbers Authority Reserves certain IP Addresses for private use. Everyone can use these addresses in a private network!

Question 47

Network classes.

Answer 47

A for large networks B for medium networks C for small networks

Question 48

Class A network range

Answer 48

10.0.0.0 to 10.255.255.255

Question 49

Class B Network range

Answer 49

172.16.0.0 to 172.31.255.255

Question 50

Class C network range

Answer 50

192.169.0.0 to 192.168.255.255

Question 51

APIPA

Answer 51

Automatic Private IP Addressing A range of private IP addresses allowing devices to communicate if a DHCP server fails. * implemented if use of a DHCP server. If a device can’t communicate with the DHCP an APIPA is assigned to allow internal communications to continue.* * If you see an IP address starting with 169.254 you know there might be an issue with the DHCP server*

Question 52

APIPA Address Range

Answer 52

169.254.0.0 to 169.254.254.255

Question 53

Loop back Address mi

Answer 53

TCP/IPv4 Is a special address designed for the loop back interface of a machine Packets for the loop back address is used for testing IP software has correctly configured TCP/IP. * not concerned with corrupt drivers or hardware* * ping command can be used to allow a user to perform a test on the loop back address. If you ping 127.0.0.1 and you get a reply it indicates TCP/IP is configured correctly on the machine* * Ping 127.0.0.1 when facing issues with communication*

Question 54

Loop back address range

Answer 54

Always set as 127.0.0.1 Range cane be 127.0.0.0 to 127.255.255.255

Question 55

Reserved addresses

Answer 55

Private Addresses Loop back Addresses APIPA are reserved for Self assignment of a DHCP server goes off line

Question 56

Addresses that can be used for diagnostics

Answer 56

APIPA - indicates issue with DHCP if IP address starts with 169.254 Loop Back Address 127.0.0.1 used to check a machines TCP/IP is correctly configured if you get a response

Question 57

Default Gateway

Answer 57

Allows computers on a network to access the internet * without a gateway devices are isolated from the internet* * Not required to communicate within your private network* * Computer with 2 network adapters can act as a gateway. 1 adapter connects to the subnet and the other connects to the public network (internet)

Question 58

Common Default Gateway IP Addresses

Answer 58

192. 168.0.1 192. 168.1.1 192. 168.0.254 10. 0.0.1 Commonly use the 1st address (# 1) or last address (# 255) of a given subnet.

Question 59

Subnet Mask

Answer 59

Used to determine what subnet an IP Address belongs to.

Question 60

What does an IP Address consist of?

Answer 60

1/ Network Address that identifies the network 2/ Host Address which is a specific network host.

Question 61

IP Address breakdown Class A

Answer 61

255.0.0.0 | 255 = Network and 0.0.0 = Host

Question 62

IP Address breakdown Class B

Answer 62

255. 255.0.0 | 255. 255 = Network and 0.0 = Host

Question 63

IP Address Breakdown Class C

Answer 63

255. 255.255.0 | 255. 255.255 = Network and .0 = Host

Question 64

VIP

Answer 64

Virtual IP Address Is an address that doesn’t correspond to a specific or physical network interface. *Same VIP is used and routed to a server*

Question 65

VIP Common Uses

Answer 65

Servers in a cluster. Which is a group of servers performing the same task. Load balanced servers. Which share performance loads. * Client only needs a single IP Address to access the server cluster, to direct requests to a health server* * each server has its own IP Address*

Question 66

VIP Benefits

Answer 66

Consolidate resources (Load Balancing) Improve Redundancy (Cluster) Virtually unlimited mobility without changing address. (can move the application to another server using Th we same VIP) Shields device led actual IP Address.

Question 67

Address Assignments

Answer 67

DHCP is a client/server protocol that automatically assigns a client with an IP, Subnet and gateway addresses. Allocates from a pool of available IP Addresses. * can be manually or dynamically assigned* * lease for a time period*

Question 68

DHCP Benefits

Answer 68

Reliable IP Address configuration Minimises configuration errors like Typos and duplication conflicts. Centrally managed and automated No need too keep assigned IP address records.

Question 69

How does DHCP assign a IP Address?

Answer 69

Uses DORA Discover - packet send by client to ask for an address. Offer - Sent by Server with addresses Request - Sent by client to request one of the addresses Acknowledge - sent by server acknowledging the requested IP address.

Question 70

Static IP Addressing

Answer 70

Manually assigned to a device as opposed to DHCP this IP Address doesn’t change and remains static

Question 71

Static IP Common use

Answer 71

DNS Server Network printer Website *you don’t want these addresses to change*

Question 72

Static Addressing Advantages

Answer 72

Stability Preferred addresses for servers Remote Access forwarding Reduced down time if DHCP server goes down.

Question 73

Static addressing disadvantages

Answer 73

Security as addresses don’t change Manual configuration open to duplication Additional DHCP server configuration to ensure DHCP pool doesn’t include the static IP Addresses.

Question 74

DHCP Reservations

Answer 74

Permanent address assignment within a scope Is the alternative to static addressing to unequally identify device on a network. A typical reservation includes Reservation time IP Address MAC Address Description