Section 14: Network Configurations

Question 1

TCP/IP

Answer 1

Transmission Control Protocol / Internet Protocol Suite

Question 2

Link/Network Interface Layer

Answer 2

Responsible for putting frames in the physical network’s transmission media
Media could be twisted pair cable, fiber optic, or radio waves
In this layer, data can only travel through the LAN

Question 3

Internet Layer

Answer 3

“Where to send those packets”
Used to address packets and route them across the network

Question 4

Transport Layer

Answer 4

“How to send the packets”
Shows how to send the packets

Question 5

Application Layer

Answer 5

Contains all the protocols that perform higher level functions, such as email, file transfers, encryption, and others

Question 6

Transmission Control Protocol (TCP)

Answer 6

can have a connection oriented method of sending packets but slower than UDP

Question 7

User Datagram Protocol (UDP)

Answer 7

connectionless protocol with lower overhead so its faster than TCP, but the delivery is not guaranteed

Question 8

Layers of TCP/IP

Answer 8

4. Application Layer : what to do with the data
   3.Transport Layer: how to send the data (TCP or UDP)
5. Internet Layer: where to send the data
6. Link/Network Interface Layer: sends data across the LAN

Question 9

Internet Protocol version 4 (IPv4)

Answer 9

formed out of 4 numbers (each called an octet), in a dotted-decimal notation from 0-255

Question 10

Subnet Mask

Answer 10

Formatted like an IPv4 address.
A portion is the network bits, other portion is the host bits

Example:
192.168. 1 .4
192.168. 1 .50
255.255.255.0
Because the first 3 octets in the subnet mask are 255, it tells us the last octet contains the host bit for the IPv4 addresses, so 1 and 50 are the host bits. That means they are on the same network

Question 11

IPv4 Classes

Answer 11

To identify the class for a IPv4, look at the first octet

Class| 1st Octet | Default Subnet Mask | Possible Hosts
___________________________________________________________
A | 1-127 | 255.255.255.0 N.H.H.H | 16.7 million (256^3)
B | 128-191 | 255.255.0.0 N.N.H.H | 65,536 (256^2)
C | 192-223 | 255.255.255.0 N.N.N.H | 256
D | 224-239 | N/A Multicast Address | N/A
E | 240-255 | N/A R&D purposes | 268 million

Question 12

Multicast Address

Answer 12

A logical identifier for a group of hosts in a computer network

Question 13

Classful Mask

Answer 13

Default subnet mask for a given class of IP addresses

Question 14

Classless Inter-Domain Routing (CIDR)

Answer 14

Allows for borrowing some of the host bits and reassigning them to the network portion

CIDR Notation:
The number of consecutive 1s
192.168.1.4 255.255.255.0 -> 192.168.1.4/24
192.168.1.4 255.255.255.192 -> 192.168.1.4/26
24 turns into 26 because 2 bits borrowed from host bits

CIDR Notation for classes:
A: /8
B: /16
C: /24

Question 15

Subnetting

Answer 15

Allows you to use a classless subnet mask to create smaller networks with fewer hosts in each of those networks than you could if you had a classful subnet mask by itself

Question 16

Public IP (Routable)

Answer 16

Can be accessed over the internet and is assigned to the network by an ISP

Question 17

Private IP (Non-routable)

Answer 17

Can be used by anyone any time, but only within their own LANs
Start with either 10, 172, or 192

A | 10 | 10.0.0.0 - 10.255.255.255 | 16.7 million
B | 172.16-172.31 | 172.16.0.0 - 172.31.255.255 | 1.05 million
C | 192.168 | 192.168.0.0 - 192.168.255.255 | 65,536

Question 18

Network Address Translation (NAT)

Answer 18

allows for routing of private IPs through a public IP

Question 19

Loopback Address (127.0.0.1)

Answer 19

Creates a loopback to the host and is often used in troubleshooting and testing network protocols on a system
All IPs in the range of 127.0.0.0 to 127.255.255.255 are loopback addresses
localhost always resolves to 127.0.0.1

Question 20

Automatic Private IP Addresses (APIPA)

Answer 20

Used when a device does not have a static IP address or cannot reach a DHCP server
Looks like 192.254.x.x

Question 21

Static Assignment

Answer 21

Manually type the IP address for the host, its subnet mask, default gateway, and DNS server
Impractical on large scale intranets

Question 22

Dynamic Assignment

Answer 22

Dynamic allocation of IP addresses
Done automatically by the network’s DHCP server

Question 23

Domain Name System (DNS)

Answer 23

Used to convert human readable web addresses into machine readable IP addresses
The internet’s version of a phone book

Question 24

Windows Internet Name Service (WINS)

Answer 24

Identifies NETBIOS systems on a TCP/IP network and converts those NETBIOS names to IP addresses
Used in LANs, like a DNS but only works in a Windows domain system

Question 25

Bootstrap Protocol (BOOTP)

Answer 25

Dynamically assigns IP addresses and allows a workstation to load a copy of boot image to network Oldest system When a client booted up their system, it would send its MAC address to the server and it would receive its preassigned IP address

Question 26

Dynamic Host Configuration Protocol (DHCP)

Answer 26

Assigns an IP based on an assignable scope or addresses and provides the ability to configure other options Each IP is leased for a period of time and returns to the pool when the lease expires Automatically configures the IP address, subnet mask, default gateway, and DNS/WINS server. Eliminates configuration errors

Question 27

Zero Configuration (ZeroConf)

Answer 27

New technology that provides the same functionality as APIPA but has more features, such as: Assigning an IPv4 link-local address, a form of non-local IP, but can now resolve computer names to IP addresses without the need for DNS using mDNS (multicast DNS). It can also perform service discovery on the network to find systems available for use. Bonjour on Apple Link-Local Multicast Name Resolution (LLMNR) on Windows SystemD on Linux

Question 28

Scope

Answer 28

list of valid IP addresses available for assignment or lease to a client computer or endpoint device on a given subnet

Question 29

DHCP Reservation

Answer 29

excludes some IP addresses from being handed to devices unless they meet a certain condition

Question 30

DHCP steps

Answer 30

D-O-R-A Discover an IP address Offer an address from a scope Request to take the IP Acknowledge the IP will be taken

Question 31

Fully-Qualified Domain Name (FQDN)

Answer 31

Domain name under a top-level provider (service).(domain name).(top level domain) www.diontraining.com ftp.diontraining.com

Question 32

DNS Heirarchy

Answer 32

Root: Answers requests in the root zone Top-Level Domain: ex: .uk .com .net Second-Level domain: ex: diontraining Subdomain: ex: support.diontraining.com Host: refers toa specific machine server

Question 33

Uniform Resource Locator (URL)

Answer 33

contains the FQDN with the method of accessing information

Question 34

DNS Records

Answer 34

DNS Record | Description | Function --------------------------------------------------------------- A | Address | Links a hostname to an IPv4 address AAAA | Address | Links a hostname to an IPv6 address CNAME| Canonical Name| Points a domain to another domain or subdomain MX | Mail Exchange | Directs emails to a mail server TXT | Text | Adds text into the DNS NS | Nameserver | Indicates which DNS nameserver has the authority

Question 35

Sender Policy Framework (SPF)

Answer 35

DNS record that identifies the host authorized to send mail for the domain

Question 36

DomainKeys Identified Mail (DKIM)

Answer 36

Provides the cryptographic authentication mechanism for mail using a public key published as a DNS record

Question 37

Domain-based Message Authentication, Reporting & Conformance (DMARC)

Answer 37

Framework that is used for proper application of SPF and DKIM, utilizing a policy that's published as a DNS record can use SPF or DKIM or both

Question 38

Nameserver

Answer 38

Type of DNS server that stores all the DNS records for a given domain

Question 39

Internal DNS

Answer 39

allows cloud instances on the same network to access each other using internal DNS names

Question 40

External DNS

Answer 40

Records created around the domain names from a central authority and used on the public internet

Question 41

Time to Live (TTL)

Answer 41

tells the DNS resolver how long to cache a query before requesting a new one basically telling a computer how long to remember a DNS record before requesting it again

Question 42

DNS Resolver/DNS Cache

Answer 42

Makes a local copy of every DNS entry it resolves when connecting to websites

Question 43

Recursive Lookup

Answer 43

DNS server communicates with several other DNS servers to hunt down the IP address and return it to the client

Question 44

Iterative Lookup

Answer 44

Each DNS server responds directly to the client with a DNS server that may have the correct IP address

Question 45

Virtual Local Area Network (VLAN)

Answer 45

Allows different logical networks to share the same physical hardware and provides added security and efficiency

Question 46

VLAN Trunking (802.1q)

Answer 46

Multiple VLANs transmitted over the same physical cable Each VLAN is identified using a 4 byte identifier

Question 47

4-byte Identifier

Answer 47

Tag Protocol Identifier (TPI) Tag Control Identifier (TCI)

Question 48

Virtual Private Network (VPN)

Answer 48

Extends a private network across a public network and enables sending and receiving data across shared or public networks Site to site: connect two offices together Client to site: connect a remote user to a corporate network Clientless: used for web browsing

Question 49

Full Tunnel VPN

Answer 49

Better security Routes and encrypts all network requests through the VPN connection back to the headquarters

Question 50

Split Tunnel VPN

Answer 50

Better performance Routes and encrypts only the traffic bound for the headquarters over the VPN, and sends the rest of the traffic to the regular internet

Question 51

Clientless VPN

Answer 51

Creates a secure remote-access VPN tunnel using a web browser without requiring a software or hardware client

Question 52

Secure Socket Layer (SSL)

Answer 52

provides cryptography and reliability using the upper layers of the OSI model (Layers 5, 6, 7)

Question 53

Transport Layer Security (TLS)

Answer 53

provides secure web browsing over HTTPS

Question 54

Address Exhaustion

Answer 54

Running out of network addresses in IPv4

Question 55

IPv6

Answer 55

Larger address space Removes IPv4's broadcast data flow type No packet or datagram fragmentation Simplified header Uses hexadecimal digits to allow the use of shorthand notation made up of eight segments separated by a colon

Question 56

Dual Stack

Answer 56

simultaneously runs both the IPv4 and IPv6 protocols on the same network devices

Question 57

Tunneling

Answer 57

Allows an existing IPv4 router to carry IPv6 traffic

Question 58

Unicast Addresses

Answer 58

Used to identify a single interface Globally-routed: similar to IPv4's unicast Class A, B, and C addresses and beings with 2000-3fff Link-local: Used like a private IP in IPv4 that can only be used on the LAN and begins with FE80

Question 59

Stateless Address Autoconfiguration (SLAAC)

Answer 59

Eliminates the need to obtain addresses or other config information from a central server Uses a process called Extended Unique Identifier (EUI) to allow a host to assign itself a unique 64-bit IPv6 interface identifier called a EUI-64

Question 60

Multicast Addresses

Answer 60

Used to identify a set of interfaces and begins with FF

Question 61

Anycast Address

Answer 61

Used to identify a set of interfaces so that a packet can be sent to any member of a set

Question 62

DHCPv6 Protocol

Answer 62

Allows DHCP to automatically assign addresses from a DHCPv6 server

Question 63

Neighbor Discovery Protocol

Answer 63

Used to determine the Layer 2 addresses (MAC addresses) that are on a given network