Chapter 8 Configure Basic NETWORK Flashcards
(85 cards)
1
Q
What are the internet transport layer protocols moo
A
IP->internet protocol
- > core of tcp/ip processing
- > provides best effort for transferring packets between computers
- > Supports 4bn devices
IPv6
- > update to original ip stack
- > 128 bit addresses
- > new feature : SLAAC -stateless addresses auto-configuration
ICMP
- > internet message control protocol
- > most often used to send error messages between computers.
UDP
- > user datagram protocol
- > simplest of of the common transport layer
- > faster than more sophisticated tools
- > DNS, NFS, STREAMING
TCP/IP
- > transmission control protocol
- > full connection with error checking.
- > small performance penalty
- > SMTP, HTTP, FTP
2
Q
explain OSI vs TCP/IP reference model
A
- Application
- Presentation 4. Application
- Session
- transport 3. Transport
- Network 2. Internet
- Data Link 1. Network
- Physical
3
Q
fins the hardware address of eth0
A
ifconfig eth0
returns
eth Link encap:ethernet HWaddr: 00:A0:
CC:24:BA:02
4
Q
what is ARP
A
Address resolution protocol
–> converts between ip and MAC address
5
Q
what is NDP
A
Neighbor discovery Protocol
- ->converts between ip and MAC address
- ->IPv6
6
Q
how does ARP work
A
- -> computer sends out broadcast on network to all computers
- ->query Computers with IP to identify itself
- ->reply that comes in contains a hardware address
thus all traffic directed towards a IP can be redirected towards the HWaddr.
7
Q
explain IPv6 structure
A
–>8 groups of 4 hexadecimal numbers, seperated by “:”
8
Q
What types of addresses does IPv6 use?
A
Link-Local
Global
9
Q
What is the Ipv6 defacto standard for local addresses
A
fe80: 0000:0000:0000:
- -> non routable
10
Q
What is a network mask?
A
–>also known as a subnet mask
–> identifies the portion of a IP address that is a
#network address
# Computer address
11
Q
What is CIDR
A
–> Classless interdomain routing
12
Q
IPv4 Network Class A
A
1.0.0.0
13
Q
IPv4 Network Class B
A
128.0.0.0
14
Q
IPv4 Network Class C
A
192.0.0.0
15
Q
IPv4 Network Class D
A
224.0.0.0
16
Q
IPv4 Network Class E
A
240.0.0.0
17
Q
Name the 3 Private IPv4 class ranges
A
- 0.0.0 Class A
- 16.0.0 Class B
- 168.0.0 Class C
18
Q
Name three common Linux DHCP clients
A
–> pump
–> dhclient
–> dhcpcd
(not to be confused with dhcpd,which is the DHCP server
19
Q
where is the Red Hat/ Fedora startup script for DHCP
A
/etc/sysconfig/network-scripts/ifcfg-name
name –> name of network interface
20
Q
where is the Ubuntu startup script for DHCP
A
/etc/network/interfaces
21
Q
How do you run dhcp client manually
A
$ dhclient eth0
22
Q
what must you do if network lacks DHCP server
A
- ->IP
- -> Network Mask
- ->Gateway Address
- -> DNS settings
23
Q
How do you change the ip
A
ifconfig eth0 up 192.168.0.1 netmask mask
24
Q
How do you add a default gateway
A
route add default gw 192.168.0.1
25
what does "$route -n " do
cause route not to resolve host names
26
How do you enable Linux to act as a router and forward packages
echo "1" > /proc/sys/net/ipv4/ip_forward
27
How to set Linux to permanently act as router and forward packets
set /etc/sysctl.conf:
| net.ipv4.ip_forward = 1 or for other distros find using grep and find ip_forward
28
Hostnames are comprised of two parts, what are they?
- -> Machine Names - refers to computer name
| - -> Domain Names - refers to the collection of computers
29
what is TLD
Top Level Domain
- > .com
- > .edu
30
What is DNS
- > Domain Name System
| - > Converts between IP addresses and Host names
31
Name 4 utilities that can help you with DNS fault finding
- >nslookup
- > host
- > dig
- > whois
32
features of nslookup
- > performs a DNS lookup and returns results
- > Supports interactive mode: perform a series of queries
- > Deprecated: no longer maintained
- > rather use host/dig
33
features of host command
- > simpler than lookup
- > lack interactivity mode
- > add various options to tweak basic operation
34
features of dig
- > more complex lookup than host
- > can find it to find single ip for a host name
- > but it can me used for complex tasks
35
features of whois
-> looks up info on domain name as a whole
-> returns eg.
whois sybex.com
+who owns sybex
+ who to contact in case of problems
+ -H to omit lengthy legal disclaimers
36
what should be standard in any /etc/hosts file
127.0.0.1 localhost
37
describe a typical row in /etc/hosts
192.168.7.23 apollo.luna.edu apollo
1st - ip
2nd full hostname
3 + aliases for full host name
38
how can you refer to computers by name
by adding it to the /etc/hosts file
note
-> linux looks in the hosts file before DNS - To modify change /etc/nsswitch.conf:
hosts: file dns->switch around
-> it is purely local files
to work an entire network you must configure the hosts file on all computers on LAN . Rather use DNS
39
what is /etc/networks
-> it is similar to hosts
-> applies to network addresses
structure name ip
loopback 127.0.0.1
40
Network Port: 20
FTP data
41
Network Port: 21
FTP
42
Network Port: 22
ssh
43
Network Port: 23
Telnet
44
Network Port: 25
SMTP - Simple Mail transfer Protocol
45
Network Port: 53
DNS
46
Network Port: 67
DHCP
47
Network Port: 80
HTTP
48
Network Port: 110
POP3 - Post Office Protocol
49
Network Port: 111
Port Mapper
50
Network Port: 113
auth/ident
51
Network Port: 119
NNTP Network News transfer Protocol
52
Network Port: 123
NTP Network Time Protocol
53
Network Port: 139
Net Bios Session
54
Network Port: 143
IMAP Interactive Mail Access Protocol
55
Network Port: 161
SNMP Simple network management protocol
56
Network Port: 389
LDAP
57
Network Port: 443
HTTP over SSL
58
Network Port: 445
Microsoft directory service SAMBA
59
Network Port: 465
SMTP over SSL
60
Network Port: 541
Remote System Login
61
Network Port: 631
Internet Printing Protocol
62
Network Port: 636
LDAP over SSL
| Light weight directory access protocol
63
Network Port: 993
IMAP over SSL
64
Network Port: 995
POP3 over SSL
65
Network Port: 6000- 6007
The X Window System
66
Distinction between privileged and unprivileged ports
Privileged ports less than 1024
| restricted to root
67
Difference between Client and servers
A client program initiates a network connection to exchange data
A Server Listens for such connections
68
where do you configure servers to ports
/etc/services
69
DSL stands for
Digital Subscriber Line
70
What is PPP
- > Login based way to access the internet
- > initiates connection to remote computer
- > DSL use PPP over EtherNet (PPPoE)
71
What is the mostbasic network test
ping
72
How does ping work
- > send ICMP to specific system and awaits for a reply
- > -c for limited number of counts
- > by pinging systems on local and remote networks you can isolate where the problem is
73
ping for IPv6
ping6
| -> need to specify interface if multiple interfaces are available with % after link-local address
74
what is trace route
- > step up from ping
- > sends a series of 3 packets to each computer
- > -n for Ip rather than Hostname
75
netstat -i
obtain information about your network interfaces
76
netstat --r
- -route
| - -> obtain routing table listing
77
netstat -M
--masqueradeobtain info of Linux NAT
78
What is NAT
Network address Translation
| -- Nat hides a network behind a single IP
79
netstat -p
--program
| provides info about programs using network connections
80
netstat
returns info about open ports and systems to which they connect
81
netstat -a
--all
| netstat to display all info about ports and the systems to which they connect
82
What is tcpdump
- > Network troubleshooting tool
- > a packet sniffer: intercept network packets and log/display them
- > must be run as root
83
tcpdump return lines include
- > timestamp
- > stack identifier
- > origen system name
- > Destination System Name
- > port
- > packet specific info
84
what is telnet
-> remote login tool
-> can be used as debugging tool
-> unencrypted
-> should remove telnet server from system
$ telnet speaker
85
what is the HELO command used for
it is used um SMTP to identify a client
| $ HELO nessus.example.com
