ip training programmeip classes class purpose first byte between subnet mask prefix max hosts a...
TRANSCRIPT
IP Training Programme
Module 1: IP Generic
Session 3: IP Services
Subjects
• Review
• The IP Address continued…
• Routing protocols (Concept)
• Firewalll and NAT
• DNS server and DNS operation concept
• DHCP server including options
• Network security in general
SMALL REVIEW FROM
SESSION 1 AND 2
Just the important stuff
IP Classes
Class Purpose First byte between Subnet mask Prefix Max hosts
A Unicast 0 and 127 255.0.0.0 /8 16.777.214
B Unicast 128 and 191 255.255.0.0 /16 65.534
C Unicast 192 and 223 255.255.255.0 /24 254
Class Purpose First byte between Subnet mask Prefix Max hosts
D Multicast 224 and 239 None special None -
E Reserved 239 and 255 None None -
Additional classes
Between logical net
61.14
WAN link
Net: 194.182.53/24
10 11 12 13
1
Net: 182.114/16
61.13
1.1
67.19 112.4
Router
Router
TCP/IP vs. ISO
• TCP/IP was developed with four layers.
TCP in IP in Ethernet
Type
Contains the value 800 showing
the Ethernet frame contains an
IP packet
Destination
MAC address
6 Byte
Source
MAC Address
6 Byte 2 Byte
IP packetFrame Check
(Checksum CRC)
Source
IP Address
32 bit
Destination
IP Address
32 bit
IP packet
(Simplified)
Ethernet frame
Containing IP Packet
Ethernet data
46 Byte to 1500 Bytes
Data in IP packet. Variable size
TCP PacketProtocol
Contains the value 6 indicating
the IP packet contains a TCP
packet
Sequence
number
Data in TCP packet. Variable sizeTCP packet
(Simplified)
Destination
Port
Source
port
Session layer related information
TCP Data
Session layer part of TCP
(Simplified)
TCP and UDP
• TCP builds virtual connections between end points. (hosts) • Connection oriented protocol – Create, maintain and close• Reliable transport.• The transmitter splits data segments. (Ethernet maximum 1500 bytes data)• The receiver assemble the data segments.• The receiver acknowledges the reception of segments. Lost segments are
retransmitted.
• UDP transports data between end points. (hosts)• Connection less. Just send data and hoping the receiver is on-line. • Unreliable transport. (No guarantee the data is delivered)• The receiver do not assemble the data segments.• No flow control• No error control or recovery
Internet
Client
Local
DNS server
. root
DNS server
.no
DNS server
ascom.no
DNS Server
www.ascom.no
Web server
1
2
3
4
5
6
6: Get the web-page
The local DNS server will normally be a caching DNS server
meaning it will remember what it learns reducing traffic and decreasing
respond time. All information has a time-to-live. The information will be
deleted when time-to-live expires.
THE IP ADDRESS CONTINUED
Beyond the original IP classess A, B and C
Classfull IP addresses
• The original classfull divided the unicast
space in three fixed classes
– IP address shortage because of internet
growth as early as 1993
Class First byte between Subnet mask Prefix Max hosts Networks
A 0 and 127 255.0.0.0 /8 16.777.214 128
B 128 and 191 255.255.0.0 /16 65.534 16.384
C 192 and 223 255.255.255.0 /24 254 2.097.152
Prefix Subnet mask - decimal Subnet mask - binary
/8 255.0.0.0 11111111.00000000.00000000.00000000
/16 255.255.0.0 11111111.11111111.00000000.00000000
/24 255.255.255.0 11111111.11111111.11111111.00000000
Network and broadcast
• Two IP addresses of each logical network is
reserved for special purposes. They are
illegal as host IP addresses
– All host bits “0” is the logical network name
– All host bits “1” is the local broadcast IP address
• For example the 192.168.,100.0/24 network
– 192.168.100.0 is the network name
– 192.168.100.255 is the broadcast address
– Usable IP address ranges from
• 192.168.100.1 to 192.168.100.254
• A total of 254 usable addresses
Boson subnet calculator
Subnetting
• Classfull IP addresses
• For example: 172.16.4.5/16
– Network part 172.16
– Host part: 4.5
• Classless IP addresses
• For example 172.16.4.5/24
– Network part: 172.16.4
– Host part: 5
Network part Host part
Network part Subnet part Host part
Classless IP addresses
• Subnettet class B network as /24
– One class B net subnettet to 256 subnets
Network Subnet mask Max hosts
172.16.0.0 255.255.255.0 254
172.16.1.0 255.255.255.0 254
172.16.2.0 255.255.255.0 254
... ... ...
172.16.253.0 255.255.255.0 254
172.16.254.0 255.255.255.0 254
172.16.255.0 255.255.255.0 254
Exponentiation
• Mathematical operation
• Called “potens” in Swedish, Norwegian and
Danish.
• 25 = 2 ^ 5 = 2 * 2 * 2 * 2 * 2 = 32
• 72 = 7 ^ 2 = 7 * 7 = 49
• 264 = 2 ^ 64 = 18.446.744.073.709.551.616
• Often used when dealing with numeric
systems.
Numeric systems II
83677*10^0 = 7*1 = 7
6*10^1 = 6*10 = 60
3*10^2 = 3*100 = 300
8*10^3 = 8*1000 = 8000
Decimal sum = 8367
10
11011*2^0 = 1*1 = 1
0*2^1 = 0*2 = 0
1*2^2 = 1*4 = 4
1*2^3 = 1*8 = 8
Decimal sum = 13
2
The binary byte
111111111*2^0 = 1*1 = 1
1*2^1 = 1*2 = 2
1*2^2 = 1*4 = 4
1*2^3 = 1*8 = 8
Decimal sum = 255
2
1*2^4 = 1*16 = 16
1*2^5 = 1*32 = 32
1*2^6 = 1*64 = 64
1*2^7 = 1*128 = 128
The binary byte
111110000*2^0 = 1*1 = 0
0*2^1 = 1*2 = 0
0*2^2 = 1*4 = 0
1*2^3 = 1*8 = 8
Decimal sum = 248
2
1*2^4 = 1*16 = 16
1*2^5 = 1*32 = 32
1*2^6 = 1*64 = 64
1*2^7 = 1*128 = 128
Classless IP addresses
• To adapt the size of a logical network to
customer networks the classes were
abandoned.
– Subnets is logical networks
prefix Subnet mask Subnets Max hosts
/24 255.255.255.0 1 254
/25 255.255.255.128 2 126
/26 255.255.255.192 4 62
/27 255.255.255.224 8 30
/28 255.255.255.240 16 14
/29 255.255.255.248 32 6
/30 255.255.255.252 64 2
Classless IP addresses
• A binary “1” in the subnet mask means the bit
belongs to the logical network or subnet
• A binary “0” in the subnet mask means the bit
belongs to the host part of the IP address
Prefix Subnet mask - decimal Subnet mask - binary
/24 255.255.255.0 11111111.11111111.11111111.00000000
/25 255.255.255.128 11111111.11111111.11111111.10000000
/26 255.255.255.192 11111111.11111111.11111111.11000000
/27 255.255.255.224 11111111.11111111.11111111.11100000
/28 255.255.255.240 11111111.11111111.11111111.11110000
/29 255.255.255.248 11111111.11111111.11111111.11111000
/30 255.255.255.252 11111111.11111111.11111111.11111100
ROUTING PROTOCOLS
The route table
• The route table is
– used by all hosts – including Routers.
– a list of all logical networks known by the host.
– Used to decide in which direction packets
should be send.
• The route table contains
– Destination network
– Direction
– Distance
The road sign
• Destination, Direction and Distance
Routertable R1
NETWORK SEND TO
195.181.54/24 195.181.54.0
195.181.55/24 192.168.1.10
195.181.56/24 192.168.1.6
0.0.0.0 192.168.1.6
Routertable R2
NETWORK SEND TO
195.181.54/24 192.168.1.9
195.181.55/24 195.181.55.0
195.181.56/24 192.168.1.14
0.0.0.0 192.168.1.14
Routertable R3
NETWORK SEND TO
195.181.54/24 192.168.1.5
195.181.55/24 192.168.1.13
195.181.56/24 195.181.56.0
0.0.0.0 195.181.56.1
Routertable R4
NETWORK SEND TO
195.181.54/24 195.181.56.2
195.181.55/24 195.181.56.2
195.181.56/24 195.181.56.0
0.0.0.0 192.168.1.17
Route tables on routers
I am on the 195.181.54.0/24 network
The destination network for the ping
packets is 195.181.56.0/24
I will send the pakets to my default gateway
Routertable R1
NETWORK SEND TO
195.181.54/24 195.181.54.0
195.181.55/24 192.168.1.10
195.181.56/24 192.168.1.6
0.0.0.0 192.168.1.6
Routertable R2
NETWORK SEND TO
195.181.54/24 192.168.1.9
195.181.55/24 195.181.55.0
195.181.56/24 192.168.1.14
0.0.0.0 192.168.1.14
Routertable R3
NETWORK SEND TO
195.181.54/24 192.168.1.5
195.181.55/24 192.168.1.13
195.181.56/24 195.181.56.0
0.0.0.0 195.181.56.1
Routertable R4
NETWORK SEND TO
195.181.54/24 195.181.56.2
195.181.55/24 195.181.56.2
195.181.56/24 195.181.56.0
0.0.0.0 192.168.1.17
Route tables on routers
I received a packet for 195.181.56.103
My routetable has an entry that says traffic to
195.181.56.0/24 should be sent to 192.168.1.6
Routertable R1
NETWORK SEND TO
195.181.54/24 195.181.54.0
195.181.55/24 192.168.1.10
195.181.56/24 192.168.1.6
0.0.0.0 192.168.1.6
Routertable R2
NETWORK SEND TO
195.181.54/24 192.168.1.9
195.181.55/24 195.181.55.0
195.181.56/24 192.168.1.14
0.0.0.0 192.168.1.14
Routertable R3
NETWORK SEND TO
195.181.54/24 192.168.1.5
195.181.55/24 192.168.1.13
195.181.56/24 195.181.56.0
0.0.0.0 195.181.56.1
Routertable R4
NETWORK SEND TO
195.181.54/24 195.181.56.2
195.181.55/24 195.181.56.2
195.181.56/24 195.181.56.0
0.0.0.0 192.168.1.17
Route tables on routers
I received a packet for 195.181.56.103
My routetable has an entry that says traffic to
195.181.56.0/24 should be sent to the
connected 195.181.56.0/24 network
Routertable R1
NETWORK SEND TO
195.181.54/24 195.181.54.0
195.181.55/24 192.168.1.10
195.181.56/24 192.168.1.6
0.0.0.0 192.168.1.6
Routertable R2
NETWORK SEND TO
195.181.54/24 192.168.1.9
195.181.55/24 195.181.55.0
195.181.56/24 192.168.1.14
0.0.0.0 192.168.1.14
Routertable R3
NETWORK SEND TO
195.181.54/24 192.168.1.5
195.181.55/24 192.168.1.13
195.181.56/24 195.181.56.0
0.0.0.0 195.181.56.1
Routertable R4
NETWORK SEND TO
195.181.54/24 195.181.56.2
195.181.55/24 195.181.56.2
195.181.56/24 195.181.56.0
0.0.0.0 192.168.1.17
Route tables on routers
I received a ping packet from 195.181.54.101
I will respond with a “pong” packet.
195.181.54.101 is on another logical network
so I will send the packet to my default gateway
Route table creation
• The route table in routers can be created
and maintained in two ways
1: Static route table entry
• Entries are entered manually
2: Dynamic route table entry
• Entries are sent between routers automatically
• Require the use of a Routing protocol – such as
– RIP, OSPF, IS-IS or BGP
Static vs. dynamic
• Static routes
– Routes entered manually by administrators
– Routes changed manually by administrators
– Time consuming and error prone
• Dynamic routes
– Routes automatically entered by a routing
protocol.
– Routes automatically changed by a routing
protocol.
Routing protocols
• A Routing Protocol is a protocol that
exchanges routing information between
routers.
• A router receives routing information from
other routers and learn their logical
networks.
• Popular routing protocols
– RIP, OSPF, BGP,EIGRP,IS-IS
RIP
• RIP – Routing Information Protocol – is a
popular routing protocol.
– Measures distance in HOP’s
– HOP’s is equal to numbers of routers on the
way to the distant logical network.
• RIP is a Distance Vector Routing protocol
– Distance = Number of HOP’s to destination
network
– Vector = Direction of destination network.
(Which neighbor to send packets to)
Route table R1
NETWORK SEND TO HOP
195.181.54/24 195.181.54.1 1
192.168.1.4/30 192.168.1.5 1
192.168.1.8/30 192.168.1.9 1
R1, R2 and R3 just booted
R4 swithced off
Route table R2
NETWORK SEND TO HOP
195.181.55/24 195.181.55.1 1
192.168.1.8/30 192.168.1.10 1
192.168.1.12/30 192.168.1.13 1
Route table R3
NETWORK
NETWORK
SEND TO HOP
195.181.56/24 195.181.56.2 1
192.168.1.4/30 192.168.1.6 1
192.168.1.12/30 192.168.1.14 1
X
When a Router is booted – it will know only the IP
addresses and subnet masks of the logical networks
connected to its physical ports.
It will also know it is using the routing protocol RIP.
It has been configured by a technician.
RIP
• RIP will transmit its Routing table to its
neighbor routers every 30. seconds.
• The neighbors will learn the transmitting
routers logical networks.
• The neighbors will transmit their routing
tables so the local router learns their
logical networks.
Route table R1
NETWORK SEND TO HOP
195.181.54/24 195.181.54.1 1
192.168.1.4/30 192.168.1.5 1
192.168.1.8/30 192.168.1.9 1
R1 updates R2Route table R2
NETWORK SEND TO HOP
195.181.55/24 195.181.55.1 1
192.168.1.8/30 192.168.1.10 1
192.168.1.12/30 192.168.1.13 1
195.181.54/24 192.168.1.9 2
192.168.1.4/30 192.168.1.9 2
192.168.1.8/30 192.168.1.9 2
Route table R3
NETWORK SEND TO HOP
195.181.56/24 195.181.56.2 1
192.168.1.4/30 192.168.1.6 1
192.168.1.12/30 192.168.1.14 1
R1
X
R2 receives a copy of R1
route table and insert it into its
own routing table
Route table R1
NETWORK SEND TO HOP
195.181.54/24 195.181.54.1 1
192.168.1.4/30 192.168.1.5 1
192.168.1.8/30 192.168.1.9 1
Two 192.168.1.8/30?Route table R2
NETWORK SEND TO HOP
195.181.55/24 195.181.55.1 1
192.168.1.8/30 192.168.1.10 1
192.168.1.12/30 192.168.1.13 1
195.181.54/24 192.168.1.9 2
192.168.1.4/30 192.168.1.9 2
192.168.1.8/30 192.168.1.9 2
Route table R3
NETWORK SEND TO HOP
195.181.56/24 195.181.56.2 1
192.168.1.4/30 192.168.1.6 1
192.168.1.12/30 192.168.1.14 1
R1
X
A logical network can only
have one entry in the routing
table. 192.168.1.8/30 is
represented twice. One with a
HOP count of 1 and one with
a HOP count of 2
A logical network can only
have one entry in the routing
table. 192.168.1.8/30 is
represented twice. One with a
HOP count of 1 and one with
a HOP count of 2
Route table R1
NETWORK SEND TO HOP
195.181.54/24 195.181.54.1 1
192.168.1.4/30 192.168.1.5 1
192.168.1.8/30 192.168.1.9 1
Shortest HOP count chosenRoute table R2
NETWORK SEND TO HOP
195.181.55/24 195.181.55.1 1
192.168.1.8/30 192.168.1.10 1
192.168.1.12/30 192.168.1.13 1
195.181.54/24 192.168.1.9 2
192.168.1.4/30 192.168.1.9 2
Route table R3
NETWORK SEND TO HOP
195.181.56/24 195.181.56.2 1
192.168.1.4/30 192.168.1.6 1
192.168.1.12/30 192.168.1.14 1
R1
X
The best route to a destination
network is the route with the
lowest number of HOP’s
Route table R1
NETWORK SEND TO HOP
195.181.54/24 195.181.54.1 1
192.168.1.4/30 192.168.1.5 1
192.168.1.8/30 192.168.1.9 1
R1 updates R3Route table R2
NETWORK SEND TO HOP
195.181.55/24 195.181.55.1 1
192.168.1.8/30 192.168.1.10 1
192.168.1.12/30 192.168.1.13 1
195.181.54/24 192.168.1.9 2
192.168.1.4/30 192.168.1.9 2
Route table R3
NETWORK SEND TO HOP
195.181.56/24 195.181.56.2 1
192.168.1.4/30 192.168.1.6 1
192.168.1.12/30 192.168.1.14 1
195.181.54/24 192.168.1.5 2
192.168.1.8/30 192.168.1.5 2
R
1
X
R1 also updates the neighbor
R3. R3 learns R1’s network.
Route table R1
NETWORK SEND TO HOP
195.181.54/24 195.181.54.1 1
192.168.1.4/30 192.168.1.5 1
192.168.1.8/30 192.168.1.9 1
R2 updates R3Route table R2
NETWORK SEND TO HOP
195.181.55/24 195.181.55.1 1
192.168.1.8/30 192.168.1.10 1
192.168.1.12/30 192.168.1.13 1
195.181.54/24 192.168.1.9 2
192.168.1.4/30 192.168.1.9 2
Route table R3
NETWORK SEND TO HOP
195.181.56/24 195.181.56.2 1
192.168.1.4/30 192.168.1.6 1
192.168.1.12/30 192.168.1.14 1
195.181.54/24 192.168.1.5 2
192.168.1.8/30 192.168.1.5 2
195.181.55/24 192.168.1.13 2X
Route table R1
NETWORK SEND TO HOP
195.181.54/24 195.181.54.1 1
192.168.1.4/30 192.168.1.5 1
192.168.1.8/30 192.168.1.9 1
195.181.55/24 192.168.1.10 2
192.168.1.12/30 192.168.1.10 2
195.181.56/24 192.168.1.6 2
All routers updatetRoute table R2
NETWORK SEND TO HOP
195.181.55/24 195.181.55.1 1
192.168.1.8/30 192.168.1.10 1
192.168.1.12/30 192.168.1.13 1
195.181.54/24 192.168.1.9 2
192.168.1.4/30 192.168.1.9 2
195.181.56/30 192.168.1.14 2
Route table R3
NETWORK SEND TO HOP
195.181.56/24 195.181.56.2 1
192.168.1.4/30 192.168.1.6 1
192.168.1.12/30 192.168.1.14 1
195.181.54/24 192.168.1.5 2
192.168.1.8/30 192.168.1.5 2
195.181.55/24 192.168.1.13 2X
Route table R1
NETWORK SEND TO HOP
195.181.54/24 195.181.54.1 1
192.168.1.4/30 192.168.1.5 1
192.168.1.8/30 192.168.1.9 1
195.181.55/24 192.168.1.10 2
192.168.1.12/30 192.168.1.10 2
195.181.56/24 192.168.1.6 2
R4 the Default Gateway
switchet on
Route table R2
NETWORK SEND TO HOP
195.181.55/24 195.181.55.1 1
192.168.1.8/30 192.168.1.10 1
192.168.1.12/30 192.168.1.13 1
195.181.54/24 192.168.1.9 2
192.168.1.4/30 192.168.1.9 2
195.181.56/30 192.168.1.14 2
Route table R3
NETWORK SEND TO HOP
195.181.56/24 195.181.56.2 1
192.168.1.4/30 192.168.1.6 1
192.168.1.12/30 192.168.1.14 1
195.181.54/24 192.168.1.5 2
192.168.1.8/30 192.168.1.5 2
195.181.55/24 192.168.1.13 2
Route table R4
NETWORK SEND TO HOP
195.181.56/30 195.181.56.1 1
192.168.1.16/30 192.168.1.18 1
0.0.0.0 192.168.1.17 2
R4 is a little special as it is
holds the Default Route to the
internet. It is statically
configured by a technician in
this case.
Route table R1
NETWORK SEND TO HOP
195.181.54/24 195.181.54.1 1
192.168.1.4/30 192.168.1.5 1
192.168.1.8/30 192.168.1.9 1
195.181.55/24 192.168.1.10 2
192.168.1.12/30 192.168.1.10 2
195.181.56/24 192.168.1.6 2
192.168.1.16/30 192.168.1.6 3
0.0.0.0 192.168.1.6 4
Convergence!
Everybody knows everybody
Route table R2
NETWORK SEND TO HOP
195.181.55/24 195.181.55.1 1
192.168.1.8/30 192.168.1.10 1
192.168.1.12/30 192.168.1.13 1
195.181.54/24 192.168.1.9 2
192.168.1.4/30 192.168.1.9 2
195.181.56/30 192.168.1.14 2
192.168.1.16/30 192.168.1.14 3
0.0.0.0 192.168.1.14 4
Route table R3
NETWORK SEND TO HOP
195.181.56/24 195.181.56.2 1
192.168.1.4/30 192.168.1.6 1
192.168.1.12/30 192.168.1.14 1
195.181.54/24 192.168.1.5 2
192.168.1.8/30 192.168.1.5 2
195.181.55/24 192.168.1.13 2
192.168.1.16/30 195.181.56.1 2
0.0.0.0 195.181.56.1 3
Route table R4
NETWORK SEND TO HOP
195.181.56/30 195.181.56.1 1
192.168.1.16/30 192.168.1.18 1
192.168.1.4/30 195.181.56.2 2
192.168.1.12/30 195.181.56.2 2
195.181.54/24 195.181.56.2 3
195.181.55/24 195.181.56.2 3
192.168.1.8/30 195.181.56.2 3
0.0.0.0 192.168.1.17 2
R3 updates R4.
R4 updates R3 which updates
R1 and R2
RIP - Technically
• Maximum HOP-Count = 15
–Network diameter should be below 15 routers
• HOP-Count = 16 means network unreachable
• RIP exist in two versions
–Version 1
• Uses broadcast and only allow classfull IP networks
–Version 2
• Uses multicast and allows classless IP networks
Route tabel R1
NETWORK SEND TO HOP
195.181.54/24 195.181.54.1 1
192.168.1.4/30 192.168.1.5 1
192.168.1.8/30 192.168.1.9 1
195.181.55/24 192.168.1.10 2
192.168.1.12/30 192.168.1.10 2
195.181.56/24 192.168.1.6 2
192.168.1.16/30 192.168.1.6 3
0.0.0.0 192.168.1.6 4
When changes occursRoute tabel R2
NETWORK SEND TO HOP
195.181.55/24 195.181.55.1 1
192.168.1.8/30 192.168.1.10 1
192.168.1.12/30 192.168.1.13 1
195.181.54/24 192.168.1.9 2
192.168.1.4/30 192.168.1.9 2
195.181.56/30 192.168.1.14 2
192.168.1.16/30 192.168.1.14 3
0.0.0.0 192.168.1.14 4
Route tabel R3
NETWORK SEND TO HOP
195.181.56/24 195.181.56.2 1
192.168.1.4/30 192.168.1.6 1
192.168.1.12/30 192.168.1.14 1
195.181.54/24 192.168.1.5 2
192.168.1.8/30 192.168.1.5 2
195.181.55/24 192.168.1.13 2
192.168.1.16/30 195.181.56.1 2
0.0.0.0 195.181.56.1 3
Route tabel R4
NETWORK SEND TO HOP
195.181.56/30 195.181.56.1 1
192.168.1.16/30 192.168.1.18 1
192.168.1.4/30 195.181.56.2 2
192.168.1.12/30 195.181.56.2 2
195.181.54/24 195.181.56.2 3
195.181.55/24 195.181.56.2 3
192.168.1.8/30 195.181.56.2 3
0.0.0.0 192.168.1.17 2
X
WAN line
Down
Route tabel R1
NETWORK SEND TO HOP
195.181.54/24 195.181.54.1 1
192.168.1.4/30 192.168.1.5 1
192.168.1.8/30 192.168.1.9 1
195.181.55/24 192.168.1.10 2
192.168.1.12/30 192.168.1.10 2
195.181.56/24 192.168.1.6 16
192.168.1.16/30 192.168.1.6 16
0.0.0.0 192.168.1.6 16
R1 and R3 detect change
Neighbor unreachable
Route tabel R2
NETWORK SEND TO HOP
195.181.55/24 195.181.55.1 1
192.168.1.8/30 192.168.1.10 1
192.168.1.12/30 192.168.1.13 1
195.181.54/24 192.168.1.9 2
192.168.1.4/30 192.168.1.9 2
195.181.56/30 192.168.1.14 2
192.168.1.16/30 192.168.1.14 3
0.0.0.0 192.168.1.14 4
Route tabel R3
NETWORK SEND TO HOP
195.181.56/24 195.181.56.2 1
192.168.1.4/30 192.168.1.6 1
192.168.1.12/30 192.168.1.14 1
195.181.54/24 192.168.1.5 16
192.168.1.8/30 192.168.1.5 16
195.181.55/24 192.168.1.13 2
192.168.1.16/30 195.181.56.1 2
0.0.0.0 195.181.56.1 3
Route tabel R4
NETWORK SEND TO HOP
195.181.56/30 195.181.56.1 1
192.168.1.16/30 192.168.1.18 1
192.168.1.4/30 195.181.56.2 2
192.168.1.12/30 195.181.56.2 2
195.181.54/24 195.181.56.2 3
195.181.55/24 195.181.56.2 3
192.168.1.8/30 195.181.56.2 3
0.0.0.0 192.168.1.17 2
X
Route tabel R1
NETWORK SEND TO HOP
195.181.54/24 195.181.54.1 1
192.168.1.4/30 192.168.1.5 1
192.168.1.8/30 192.168.1.9 1
195.181.55/24 192.168.1.10 2
192.168.1.12/30 192.168.1.10 2
195.181.56/24 192.168.1.10 3
192.168.1.16/30 192.168.1.10 4
0.0.0.0 192.168.1.10 5
New routes installed
in route table
Route tabel R2
NETWORK SEND TO HOP
195.181.55/24 195.181.55.1 1
192.168.1.8/30 192.168.1.10 1
192.168.1.12/30 192.168.1.13 1
195.181.54/24 192.168.1.9 2
192.168.1.4/30 192.168.1.9 2
195.181.56/30 192.168.1.14 2
192.168.1.16/30 192.168.1.14 3
0.0.0.0 192.168.1.14 4
Route tabel R3
NETWORK SEND TO HOP
195.181.56/24 195.181.56.2 1
192.168.1.4/30 192.168.1.6 1
192.168.1.12/30 192.168.1.14 1
195.181.54/24 192.168.1.13 3
192.168.1.8/30 192.168.1.13 2
195.181.55/24 192.168.1.13 2
192.168.1.16/30 195.181.56.1 2
0.0.0.0 195.181.56.1 3
Route tabel R4
NETWORK SEND TO HOP
195.181.56/30 195.181.56.1 1
192.168.1.16/30 192.168.1.18 1
192.168.1.4/30 195.181.56.2 2
192.168.1.12/30 195.181.56.2 2
195.181.54/24 195.181.56.2 3
195.181.55/24 195.181.56.2 3
192.168.1.8/30 195.181.56.2 3
0.0.0.0 192.168.1.17 2
X
Route tabel R1
NETWORK SEND TO HOP
195.181.54/24 195.181.54.1 1
192.168.1.4/30 192.168.1.5 1
192.168.1.8/30 192.168.1.9 1
195.181.55/24 192.168.1.10 2
192.168.1.12/30 192.168.1.10 2
195.181.56/24 192.168.1.10 3
192.168.1.16/30 192.168.1.10 4
0.0.0.0 192.168.1.10 5
What happens when
WAN works again?
Route tabel R2
NETWORK SEND TO HOP
195.181.55/24 195.181.55.1 1
192.168.1.8/30 192.168.1.10 1
192.168.1.12/30 192.168.1.13 1
195.181.54/24 192.168.1.9 2
192.168.1.4/30 192.168.1.9 2
195.181.56/30 192.168.1.14 2
192.168.1.16/30 192.168.1.14 3
0.0.0.0 192.168.1.14 4
Route tabel R3
NETWORK SEND TO HOP
195.181.56/24 195.181.56.2 1
192.168.1.4/30 192.168.1.6 1
192.168.1.12/30 192.168.1.14 1
195.181.54/24 192.168.1.13 3
192.168.1.8/30 192.168.1.13 2
195.181.55/24 192.168.1.13 2
192.168.1.16/30 195.181.56.1 2
0.0.0.0 195.181.56.1 3
Route tabel R4
NETWORK SEND TO HOP
195.181.56/30 195.181.56.1 1
192.168.1.16/30 192.168.1.18 1
192.168.1.4/30 195.181.56.2 2
192.168.1.12/30 195.181.56.2 2
195.181.54/24 195.181.56.2 3
195.181.55/24 195.181.56.2 3
192.168.1.8/30 195.181.56.2 3
0.0.0.0 192.168.1.17 2
X
Route tabel R1
NETWORK SEND TO HOP
195.181.54/24 195.181.54.1 1
192.168.1.4/30 192.168.1.5 1
192.168.1.8/30 192.168.1.9 1
195.181.55/24 192.168.1.10 2
192.168.1.12/30 192.168.1.10 2
195.181.56/24 192.168.1.6 2
192.168.1.16/30 192.168.1.6 3
0.0.0.0 192.168.1.6 4
It returns to shortest
HOP count at the next
updates among the routers
Route tabel R2
NETWORK SEND TO HOP
195.181.55/24 195.181.55.1 1
192.168.1.8/30 192.168.1.10 1
192.168.1.12/30 192.168.1.13 1
195.181.54/24 192.168.1.9 2
192.168.1.4/30 192.168.1.9 2
195.181.56/30 192.168.1.14 2
192.168.1.16/30 192.168.1.14 3
0.0.0.0 192.168.1.14 4
Route tabel R3
NETWORK SEND TO HOP
195.181.56/24 195.181.56.2 1
192.168.1.4/30 192.168.1.6 1
192.168.1.12/30 192.168.1.14 1
195.181.54/24 192.168.1.5 2
192.168.1.8/30 192.168.1.5 2
195.181.55/24 192.168.1.13 2
192.168.1.16/30 195.181.56.1 2
0.0.0.0 195.181.56.1 3
Route tabel R4
NETWORK SEND TO HOP
195.181.56/30 195.181.56.1 1
192.168.1.16/30 192.168.1.18 1
192.168.1.4/30 195.181.56.2 2
192.168.1.12/30 195.181.56.2 2
195.181.54/24 195.181.56.2 3
195.181.55/24 195.181.56.2 3
192.168.1.8/30 195.181.56.2 3
0.0.0.0 192.168.1.17 2
Routing protocols
• Routing protocols keep the routing tables
up-to-date in the routers.
• Routing protocols like RIP are used in
small companies.
• OSPF and EIGRP are used in enterprises.
• The Internet uses BGP as a worldwide
routing protocols keeping track of 300.000
to 400.000 routes.
DI-614+
Wireless
Broadband
Router
LINK/ACT
Speed 10/100M4321WLANWAN
M1
M2
PowerD-Link
Firewalls and NAT
NAT: Network Address Translation
ADSL physical
Internettet
ADSL
Modem
Bolig
DI-614+Wireless
Broadband
Router
LINK/ACT
Speed 10/100M4321WLANWAN
M1
M2
PowerD-Link
ADSL logical
Home
Internet
provider
Home
ADSL Router
with NAT
19
2.1
68
.0.0
/24
1
101
102
103
9
10
Home
Home
80.1
.9.1
2/3
0
BBRAS
80.1.9.8/30
22
14
13
80.1
.9.1
6/30
18
17
21
80.1.9.20/30
Small home Router
Internet
provider
Home
19
2.1
68
.0.0
/24
1
101
102
103
9
10
BBRAS
80.1.9.8/30
SOHO Router
OutsideInside
DHCP
Client
DHCP
Server
Internet provider
DHCP Server
F
I
R
E
W
A
L
L
and
N
A
TDHCP
Clients
NAT translation
private IP addresses
• NAT: Network Address Translation
-one to one IP address translation
• Translates IP addresses from inside to outside network
• Private IP adresses allocated to be used behind NAT
-10.0.0.0/8
- 10.0.0.0 to 10.255.255.255
-172.16.0.0/12
- 172.16.0.0 to 172.31.255.255
-192.168.0.0/16
- 192.168.0.0 to 192.168.255.255
• NAT hides the inside network (LAN) from the outside
NAT table on the router
Internet
SOHO Router
with NAT
Inside net: 192.168.0.0/24
From
Protocol
To
From
To
Inside network NAT table Outside networkProtocol
NAT tabel
101 102 103
1WAN address
Outside net: 81.1.30.9/32
80.80.12.116
194.255.14.8
Dynamic NAT table
Internet
SOHO Router
with NAT
Inside net: 192.168.0.0/24
From
192.168.0.101
Protocol
TCP
To
80.80.12.116
From
To
NAT tabelProtocol
NAT tabel
101 102 103
1WAN address
Outside net: 81.1.30.9/32
80.80.12.116
194.255.14.8
From IP
192.168.0.101Data TCP
to IP
80.80.12.116
Inside network NAT table Outside network
NAT table
From inside to outside IP address
InternetSOHO Router
With NAT
Inside net: 192.168.0.0/24
From
192.168.0.101
Protocol
TCP
To
80.80.12.116
From
81.1.30.9
To
80.80.12.116
NAT tabelProtocol
TCP
NAT tabel
101 102 103
1
WAN address
Outside net: 81.1.30.9/32
80.80.12.116
194.255.14.8
From IP
192.168.0.101Data TCP
To IP
80.80.12.116
From IP
81.1.30.9Data TCP
To IP
80.80.12.116
Indre YdreInside network NAT table Outside network
NAT table – Return packets
InternetSOHO Router
with NAT
Inside net: 192.168.0.0/24
From
192.168.0.101
Protocol
TCP
To
80.80.12.116
From
81.1.30.9
To
80.80.12.116
NAT tabelProtocol
TCP
NAT tabel
101 102 103
1
WAN adsress
Outside net: 81.1.30.9/32
80.80.12.116
194.255.14.8
Data TCPTo IP
192.168.0.101Data TCP
To IP
81.1.30.9
Indre Ydre
From IP
80.80.12.116From IP
80.80.12.116
Inside network NAT table Outside network
NAT and PAT
• TCP and UDP uses port numbers.
• NAT/PAT software keeps track on connections using:
- Protocol ( eg. TCP)
- Inside from IP ( eg. 192.168.0.101)
- Inside from port ( eg. Port 1152)
- Out side to IP ( eg. 80.80.12.116)
- Out side to port ( eg. port 80)
• The five parameters describe a unique connection
NAT and PAT
InternetSOHO Router
with NAT and PAT
Inside net: 192.168.0.0/24
From
192.168.0.101:1152
Protocol
TCP
To
80.80.12.116:80
From
81.1.30.9:1152
To
80.80.12.116:80
NAT tabelProtocol
TCP
NAT tabel
101 102 103
1
WAN address
Outside net: 81.1.30.9/32
80.80.12.116
194.255.14.8
DataT
C
P
To IP
80.80.12.116
Indre Ydre
From IP
192.168.0.101
To port
80
From
port
1152Data
T
C
P
To IP
80.80.12.116
From IP
81.1.30.9
To port
80
From
port
1152
Inside network NAT table Outside network
Portnumber
PAT finds unused Port
InternetSOHO Router
with NAT and PAT
Inside net: 192.168.0.0/24
From
192.168.0.101:1152
Protocol
TCP
To
80.80.12.116:80
From
81.1.30.9:1152
To
80.80.12.116:80
NAT tabelProtocol
TCP
192.168.0.102:1152TCP 80.80.12.116:80 81.1.30.9:2345 80.80.12.116:80TCP
NAT tabel
101
102
103
1
WAN address
Ydre net: 81.1.30.9/32
80.80.12.116
194.255.14.8
DataT
C
P
To IP
80.80.12.116
Indre Ydre
From IP
192.168.0.102
To port
80
From
port
1152Data
T
C
P
To IP
80.80.12.116
From IP
81.1.30.9
To port
80
From
port
2345
Inside network NAT table Outside network
Unused port on outside found
PAT sikrer korrekt levering
InternetSOHO Router
with NAT and PAT
Inside net: 192.168.0.0/24
From
192.168.0.101:1152
Protocol
TCP
To
80.80.12.116:80
From
81.1.30.9:1152
To
80.80.12.116:80
NAT tabelProtocol
TCP
192.168.0.102:1152TCP 80.80.12.116:80 81.1.30.9:2345 80.80.12.116:80TCP
NAT tabel
101
102
103
1
WAN adresse
Outside net: 81.1.30.9/32
80.80.12.116
194.255.14.8
DataT
C
P
To IP
192.168.0.102
Indre Ydre
From IP
80.80.12.116
To port
1152
From
port
80Data
T
C
P
To IP
81.1.30.9
From IP
80.80.12.116
To port
2345
From
port
80
Inside network NAT table Outside network
Always unique ports
InternetSOHO Router
with NAT and PAT
Inside net: 192.168.0.0/24
From
192.168.0.101:1152
Protocol
TCP
To
80.80.12.116:80
From
81.1.30.9:1152
To
80.80.12.116:80
NAT tabelProtocol
TCP
192.168.0.102:1152TCP 80.80.12.116:80 81.1.30.9:2345 80.80.12.116:80TCP
192.168.0.101:1153TCP 80.80.12.116:80 81.1.30.9:1153 80.80.12.116:80TCP
NAT tabel
101
102
103
1
WAN address
Outside net: 81.1.30.9/32
80.80.12.116
194.255.14.8
DataT
C
P
To IP
192.168.0.101
Indre Ydre
From IP
80.80.12.116
From
port
80Data
T
C
P
To IP
81.1.30.9
From IP
80.80.12.116
From
port
80
To port
1153To port
1153
Inside network NAT table Outside network
Important if for example
two browser windows
connect to same server
DNS SERVERRoles and functions
DNS server roles
• Master DNS server
– Administrate DNS zones• For example: ascom.se
• Slave DNS server
– Receives zone information from master server• Acts as redundant server and ofloads the master
• Caching DNS server
– Caches (stores) information learnt• Flushes information when TTL – Time to Live - expires
Company example
DHCP Client
Net: 194.182.53/24 1 3
DHCP Server
DNS Configuration:
WWW.ASCOM.SE is 194.182.53.2
DNS.ASCOM.Se is 194.182.53.3
Forward unknown requests to 192.71.13.54
Router/
Firewall
Internet
DNS server
192.71.13.54
DHCP Client
WEB server DNS Server
2
4
DHCP Configuration:
Ip address scope: 194.182.53.10 to 194.182.53.199
Subnet mask: 255.255.255.0
DNS server: 194.182.53.3
Default gateway: 194.182.53.1
DNS zone records
• A - Address record
– An A-record is used to give a host a name• For example www.ascom.se
• Default nslookup type=A
DNS zone records
• SOA - Start Of Authority record
– Name and mail address on the authority of the domain
DNS zone records
• NS - Name Server record
– Shows DNS servers for the domain.
The order of the servers are
Changed for each reply for
Allowing load sharing to the
DNS servers.
DNS zone records
• MX – Mail eXchange
– Shows Mail servers for the domain.• The ascom.se domain has two mail servers
– Mail.ascom.se and mail.ascom.nl
– The mailserver with lowest preference has highest priority and will beused first. If unreachable the next lowest preference is tried.
• The IP address of the mail server(s) is found using a A-record lookup
Windows DNS Server
• Windows server version 2003, 2008 and 2012 has intutiveDNS server management tools.
• mail.mydomain.com A record points to 83.90.47.90
• www.mydomain.com A record points to 83.90.47.30
• mail.mydomain.com MX record (preference=10)
• mail.myotherdomain.dk MX record (preference=20)
DHCP SERVER
Server 1DNS
DHCP
Server 2FIL PRINT
1
192.168.0.2
Building 2
Client
192.168.200.0/24
1
R1
Internet
DHCP172.30.0.0/30
1 2
Building 1
192.168.0.3
DHCP
DHCP
SW1
Client
254
SW2
Building 3
192.168.210.0/24
1
6
DHCP
SW3
2
R3R2
Client
172.30.0.4/305
Printer
DHCP
Client
DHCP example
DHCP Client
Net: 194.182.53/24 1
3
DHCP Server
Static IP address
DHCP lease pool on server:
IP address range: 194.182.53.10 - 194.182.53.199
Subnet mask: 255.255.255.0
DNS server: 192.71.13.54
Default gateway: 194.182.53.1
ROUTER
Internet
DNS server
192.71.13.54
DHCP Client
DHCP Client DHCP
Server(s)
Network
1. DHCP-Discover
3. DHCP-Request
4. DHCP-Ack
2. DHCP-Offer
DHCP server
• The DHCP Discover packet is a broadcast
and is limited to OSI layer 2.
– Blocked by Routers
• Professional routers can function as
DHCP-relays relaying the DHCP packets
from a physical network to the DHCP
server
DHCP Relayone server many logical networks
Server 1DNS
DHCP
Server 2FIL PRINT
1
192.168.0.2
Building 2
Client
192.168.200.0/24
1
R1
Internet
DHCP172.30.0.0/30
1 2
Building 1
192.168.0.3
DHCP
DHCP
SW1
Client
254
SW2
Building 3
192.168.210.0/24
1
6
DHCP
SW3
2
R3R2
Client
172.30.0.4/305
Printer
DHCP
Client
DHCP relay configured on
Router interface facing the
DHCP clients to forward incoming .
DHCP packets to 192.168.0.2
DHCP relay configured is on
router interfaces facing the
DHCP clients to forward incoming .
DHCP packets to 192.168.0.2
DHCP options
• DHCP options is information the DHCP
clients needs beside the IP Address and
the subnet mask.
• DHCP options examples
– Option 003: IP Address of default gateway
– Option 015: IP Address of DNS server(s)
– Option 150: IP Address of TFTP server
• Trival File Transfer Protocol
– Option 042: IP Address of NTP server
• Network Time Protocol
DHCP options
• Windows DHCP server options
configuration example
• TFTP servers are often used to store IP
phones configuration files.
Configuring IP phones
Net: 194.182.53/24 1
3
DHCP Server
Router/
Firewall
Internet
DNS server
192.71.13.54
DHCP Client
FTP server IP Telephone
server
2
4
DHCP Configuration:
Ip address scope: 194.182.53.10 to 194.182.53.199
Subnet mask: 255.255.255.0
DNS server: 192.71.13.54
Default gateway: 194.182.53.1
Option 150 (TFTP) 194.182.53.2
1 2ABC
3DEF
4 5JKL
6MNOGHI
7 8TUV
9WXYZPQRS
* 0OPER
#
7960CISCO IP PHONE
imessages directories
settingsservices
1 2ABC
3DEF
4 5JKL
6MNOGHI
7 8TUV
9WXYZPQRS
* 0OPER
#
7960CISCO IP PHONE
imessages directories
settingsservices
IP Telephone
DHCP ClientIP Telephone
DHCP Client
DHCP Client
Thank you for listening