Lab Exercise Sheet 2 (Sample Solution)

Similar documents
Lab Exercise Sheet 3

Written examination in Computer Networks

THE INTERNET PROTOCOL/1

Sirindhorn International Institute of Technology Thammasat University

The Internet Protocol

Experimenting Internetworking using Linux Virtual Machines Part I

THE INTERNET PROTOCOL INTERFACES

TCP/IP Network Essentials

This document guides the user through: 1. Setting up and configuring networking for the BeagleBone black or green with the host.

LAN Setup Reflection

CHAPTER 7 DEMONSTRATE THE PAN IN LINUX

Static and source based routing

Material for the Networking lab in EITF25 & EITF45

Addressing and Routing

ITS332 Quiz 1 Answers

FiberstoreOS IP Service Configuration Guide

LAN Setup Reflection. Ask yourself some questions: o Does your VM have the correct IP? o Are you able to ping some locations, internal and external?

Lab Using Wireshark to Examine Ethernet Frames

Lecture 5. Switching

Lab Using Wireshark to Examine Ethernet Frames

CIS Test 1- Practice - Fall 2011

LAB THREE STATIC ROUTING

CS 356: Computer Network Architectures. Lecture 10: IP Fragmentation, ARP, and ICMP. Xiaowei Yang

IP Basics Unix/IP Preparation Course June 29, 2010 Pago Pago, American Samoa

IT341 Introduction to System Administration Project II Setting up our LAN

Exercises: Basics of Networking II Experiential Learning Workshop

VPN-against-Firewall Lab: Bypassing Firewalls using VPN

Exercises: Basics of Network Layer Experiential Learning Workshop

Network Administra0on

Introduction to Computer Networks. CS 166: Introduction to Computer Systems Security

CS 348 Computer Networks. IP and Routing. Indian Institute of Technology, Bombay

ICS 351: Networking Protocols

ITexamGuide. High-quality IT Cert Exam study guide

Shortest Path First Example

CS475 Networks Lecture 8 Chapter 3 Internetworking. Ethernet or Wi-Fi).

Lehrstuhl für Informatik 4 Kommunikation und verteilte Systeme. Auxiliary Protocols

CS 457 Lecture 11 More IP Networking. Fall 2011

Vorlesung Kommunikationsnetze

Wireshark Lab: DHCP SOLUTION

Communication Networks ( ) / Fall 2013 The Blavatnik School of Computer Science, Tel-Aviv University. Allon Wagner

Network Layer (4): ICMP

Exam : Title : Sun Certified Network Administrator for Solaris 10 OS. Version : DEMO

Interface Management

Sirindhorn International Institute of Technology Thammasat University

Lecture 8. Basic Internetworking (IP) Outline. Basic Internetworking (IP) Basic Internetworking (IP) Service Model

Virtual Lab for CIS 192 & 196 Rich Simms May 27, 2006

This is a sample Lab report from ECE 461 from previous years. L A B 6

Lecture 8. Reminder: Homework 3, Programming Project 2 due on Thursday. Questions? Tuesday, September 20 CS 475 Networks - Lecture 8 1

Application of Mininet

FiberstoreOS. IP Service Configuration Guide

FSOS IP Service Configuration Guide

Networking Fundamentals

Natlog. For this exercise you must again be root. Login and obtain root privileges:

Internetworking/Internetteknik, Examination 2G1305 Date: August 18 th 2004 at 9:00 13:00 SOLUTIONS

Internet Layers. Physical Layer. Application. Application. Transport. Transport. Network. Network. Network. Network. Link. Link. Link.

Internet Protocol Addressing and Routing. Redes TCP/IP

Computer Networks Security: intro. CS Computer Systems Security

The Network Layer. Internet solutions. Nixu Oy PL 21. (Mäkelänkatu 91) Helsinki, Finland. tel fax.

Outline. SC/CSE 3213 Winter Sebastian Magierowski York University. ICMP ARP DHCP NAT (not a control protocol) L9: Control Protocols

To see how ARP (Address Resolution Protocol) works. ARP is an essential glue protocol that is used to join Ethernet and IP.

Quick Start Guide for BeagleBone Black. Table of Contents. by Brian Fraser Last update: Summer, 2015

Cisco CCNA Basic IP Routing Part I

Interconnecting Networks with TCP/IP. 2000, Cisco Systems, Inc. 8-1

Firewall Evasion Lab: Bypassing Firewalls using VPN

Quick guide for configuring a system with multiple IP-LINKs

Last time. Network layer. Introduction. Virtual circuit vs. datagram details. IP: the Internet Protocol. forwarding vs. routing

Packet Capturing with TCPDUMP command in Linux

Practical Exercises in Computer Networks

Router Architecture Overview

The Network Layer. Internet solutions. Nixu Oy PL 21. (Mäkelänkatu 91) Helsinki, Finland. tel fax.

Agenda L2 versus L3 Switching IP Protocol, IP Addressing IP Forwarding ARP and ICMP IP Routing First Hop Redundancy

VLAN Configurations. 1 of :18. Available Categories. Adobe. Macromedia

Chapter 4: outline. 4.5 routing algorithms link state distance vector hierarchical routing. 4.6 routing in the Internet RIP OSPF BGP

Datagram. Source IP address. Destination IP address. Options. Data

The Internet Protocol. IP Addresses Address Resolution Protocol: IP datagram format and forwarding: IP fragmentation and reassembly

Configure the Protocol Family on page 40. Configure the Interface Address on page 40

Introduction to routing in the Internet

COMPUTER NETWORKING LAB EXERCISES (TP) 1 BASIC CONFIGURATION AND TOOLS FOR EVERYBODY:

Interconnecting Networks with TCP/IP

ECPE / COMP 177 Fall Some slides from Kurose and Ross, Computer Networking, 5 th Edition

COMPUTER NETWORKING LAB EXERCISES (TP) 4

Auxiliary Protocols. Internet Layer. Address Resolution Protocol. Delivery of IP Packets

CS-435 spring semester Network Technology & Programming Laboratory. Stefanos Papadakis & Manolis Spanakis

Different Layers Lecture 20

IP - The Internet Protocol. Based on the slides of Dr. Jorg Liebeherr, University of Virginia

ICS 451: Today's plan

Advanced Linux System Administra3on

Chapter 3 Review Questions

Introduction to routing in the Internet

CPSC 826 Internetworking. The Network Layer: Routing & Addressing Outline. The Network Layer

Linux Firewalls. Frank Kuse, AfNOG / 30

EMT2455 Data Communications 4. Network Layer. Dr. Xiaohai Li. Dept. of Computer Eng. Tech., NYCCT. Last Update: Nov.

Packet Header Formats

ARP, IP. Chong-Kwon Kim. Each station (or network interface) should be uniquely identified Use 6 byte long address

ECPE / COMP 177 Fall Some slides from Kurose and Ross, Computer Networking, 5 th Edition

Experimenting Internetworking using Linux Virtual Machines Part II

Network Interconnection

2 nd SEE 6DISS Workshop Plovdiv June Host Configuration (Windows XP) Athanassios Liakopoulos

Linux. Computer networks - Administration 1DV202. fredag 30 mars 12

I. More ARP Week 7. after resolving a hardware address, why not store it?

Transcription:

Lab Exercise Sheet 2 (Sample Solution) Document and analyze your experimental procedures by using your Wireshark and terminal recordings. Note all relevant intermediate steps. Mark and explain all relevant information, such as protocol header fields, MAC addresses, IP addresses, port numbers. If you have little experience with Linux, you may need to do some research. Send your self prepared experiment documentation in the PDF file format to cocos@stud.fra-uas.de and christianbaun@fb2.fra-uas.de. Alternatively, fill out the document, print it out, and submit it during one of the exercise sessions. Sample Solution (No Guarantee!!!) 1. Clone the VM from the 1 st lab exercise (from now on we will call this VM mastervm) three times with the VirtualBox user interface. Specify for each new VM a unique name (e.g. clonevm[1-3]) and specify that each VM will get a new MAC address. Add three new virtual interfaces to the mastervm via the VirtualBox user interface. Each one of these new network interfaces must be attached to different internal networks. The name of each internal network must be unique. e.g. lan[1-3]. The network interface of each one of clonevm[1-3] also need to be attached to an Internal Network in the VirtualBox user interface. Connect clonevm1 to the first internal network (e.g. lan1), clonevm2 to the second internal network (e.g. lan2), and so on. Content: Lab Exercise 2 Page 1 of 9

Check the relevant MAC addresses and write them into this table: Your local Router to the internet: 34:31:c4:74:70:92 Physical network interface of your host: 4c:34:88:9e:4d:28 mastervm (bridged interface): mastervm (internal interface 1): mastervm (internal interface 2): mastervm (internal interface 3): clonevm1 (internal interface): clonevm2 (internal interface): clonevm3 (internal interface): 08:00:27:52:da:cd 08:00:27:ff:6d:96 08:00:27:33:3c:aa 08:00:27:28:73:72 08:00:27:e8:a4:af 08:00:27:a1:25:5c 08:00:27:cb:0f:3e The mastervm should operate as a Bridge/Switch between the bridged network interface and the three new network interfaces for clonevm[1-3], which are attached to the internal networks lan[1-3]. Install the command line tools for bridging Ethernet connections (package bridge-utils) on the mastervm. You have several options to implement the IP forwarding. Option 1: Create 1 a new logical Bridge with the command line tool brctl on the mastervm. Add the four virtual network interfaces of the mastervm to the logical Bridge. Option 2: Specify for lan[1-3] three independent address spaces (e.g. 192.168.10.0/24, 172.22.0.0/16 and 192.168.60.0/24). Assign 2 valid IP addresses and further network configuration parameters to the virtual network devices inside the mastervm and clonevm[1-3]. Implement IP package forwarding (NAT- Masquerading) 3. 1 http://www.tldp.org/howto/bridge-stp-howto/set-up-the-bridge.html 2 This can be done with command line tools like ip or ifconfig or inside the file /etc/network/interfaces. 3 This can be done with command line tools like ip or iptables or inside the file /etc/network/interfaces. Content: Lab Exercise 2 Page 2 of 9

Copy the content of the IP routing table of the mastervm into this field: # route n Kernel IP Routentabelle Ziel Router Genmask Flags Metric Ref Use Iface 0.0.0.0 192.168.178.1 0.0.0.0 UG 0 0 0 enp0s3 192.168.1.0 0.0.0.0 255.255.255.0 U 0 0 0 enp0s8 192.168.2.0 0.0.0.0 255.255.255.0 U 0 0 0 enp0s9 192.168.3.0 0.0.0.0 255.255.255.0 U 0 0 0 enp0s10 192.168.178.0 0.0.0.0 255.255.255.0 U 0 0 0 enp0s3 Option 1: Solution using bridge-utils Commands on the mastervm: $ sudo brctl show $ sudo brctl addbr bridgelan1 $ sudo brctl show bridgelan1 $ sudo brctl addif bridgelan1 enp0s8 $ sudo brctl addif bridgelan1 enp0s3 $ sudo brctl show bridgelan1 $ sudo brctl showmacs bridgelan1 $ sudo ifconfig bridgelan1 192.168.1.1 up $ sudo ifconfig enp0s8 192.168.1.10 Command on the clone1: $ sudo ifconfig enp0s3 192.168.1.12 Paste this under the primary network interface of clone1: iface enp0s3 inet static address 192.168.1.12 gateway 192.168.1.1 dns nameservers 8.8.4.4 8.8.8.8 Shutdown the VM and start it again. The configurations need to be carried out for enp0s9 and enp0s10 aswell. The interfaces need to be added to the virtual bridge and valid addresses for the gateway on the interfaces of mastervm and addresses for the clients on clone2 and clone3 need to be assigned! Content: Lab Exercise 2 Page 3 of 9

Option 2: Solution using iptables and NAT- Masquerading Copy the relevant content of the file /etc/network/interfaces of the mastervm into this field: #/etc/network/interfaces auto lo iface lo inet loopback # WAN Interface iface enp0s3 inet dhcp # LAN 1 auto enp0s8 iface enp0s8 inet static address 192.168.1.1 broadcast 192.168.1.255 # LAN 2 auto enp0s9 iface enp0s9 inet static address 192.168.2.1 broadcast 192.168.2.255 # LAN 3 auto enp0s10 iface enp0s10 inet static address 192.168.3.1 broadcast 192.168.3.255 # Delete previous iptables configuration up /sbin/iptables F up /sbin/iptables X up /sbin/iptables t nat F # Enable NAT Forwarding for all interfaces up /sbin/iptables A FORWARD o enp0s3 s 0.0.0.0/0 m conntrack ctstate NEW j ACCEPT up /sbin/iptables A FORWARD m conntrack ctstate ESTABLISHED, RELATED j ACCEPT up /sbin/iptables t nat A POSTROUTING o enp0s3 j MASQUERADE up /sbin/sysctl w net.ipv4.ip_forward=1 Content: Lab Exercise 2 Page 4 of 9

The relevant content of the file /etc/network/interfaces of the clone[1-3]: #/etc/network/interfaces of clone1 iface enp0s3 inet static address 192.168.1.10 broadcast 192.168.1.255 gateway 192.168.1.1 #/etc/network/interfaces of clone2 iface enp0s3 inet static address 192.168.2.20 broadcast 192.168.2.255 gateway 192.168.2.1 #/etc/network/interfaces of clone3 iface enp0s3 inet static address 192.168.3.30 broadcast 255.255.255.0 gateway 192.168.3.1 2. Check the content of the ARP cache on the mastervm. Copy the content of the ARP cache of the mastervm into this field: # arp n Adresse Hardware Typ Hardware Adresse Optionen Maske Schnittstelle 192.168.178.1 ether 34:31:c4:74:70:92 C enp0s3 Send some ping requests between the mastervm and clonevm[1-3]. Copy the content of the ARP cache of the mastervm into this field: # arp n Adresse Hardware Typ Hardware Adresse Optionen Maske Schnittstelle 192.168.1.10 ether 08:00:27:e8:a4:af C enp0s8 192.168.178.1 ether 34:31:c4:74:70:92 C enp0s3 192.168.3.30 ether 08:00:27:cb:0f:3e C enp0s10 192.168.2.20 ether 08:00:27:a1:25:5c C enp0s9 Content: Lab Exercise 2 Page 5 of 9

3. Do a ping operation from clonevm1 to the address debian.org. The ping operation will cause the transmission of an ARP request and an ARP reply. Monitor these transmissions with Wireshark from the mastervm. Copy the relevant information (MAC addresses and IP addresses of sender and target) of the ARP request into this field: ARP Request Sender MAC address: (08:00:27:52:da:cd) Sender IP address: 192.168.178.57 Target MAC address: (00:00:00:00:00:00) Target IP address: 192.168.178.1 #Source: arp_ping_debian_clone1.pdf Copy the relevant information (MAC addresses and IP addresses of sender and target) of the ARP reply into this field: ARP Reply Sender MAC address: (34:31:c4:74:70:92) Sender IP address: 192.168.178.1 Target MAC address: (08:00:27:52:da:cd) Target IP address: 192.168.178.57 #Source: arp_ping_debian_clone1.pdf Content: Lab Exercise 2 Page 6 of 9

Which network protocols are involved in the transmission of the ARP messages? Assign them to the protocol stack. Layer 7: Layer 6: Layer 5: Layer 4: Layer 3: IPv4 Layer 2: Layer 1: Ethernet / ARP Wired Connection (Ethernet) What is the destination address of the frame, that is used to transmit the ARP request? 00:00:00:00:00:00 What is the value of the type header field inside the frame, that is used to transmit the ARP requrest? ARP (0x0806) Which IP address belongs to the sender MAC address in the header of the frame, that is used to transmit the ARP requrest? Sender IP address: 192.168.178.57 What is the destination IP address, to which the matching MAC address is searched inside the ARP request? Target IP address: 192.168.178.1 What is the name of the header field, that is used to store the destination IP address inside the ARP request? Target IP address What is the value of the header field, that is used to store the destination MAC address inside the ARP request? 00:00:00:00:00:00 Content: Lab Exercise 2 Page 7 of 9

Expand the protocol window of the first Layer of protocols inside Wireshark, that are involved in the first echo request/reply message pair and copy the relevant information into this field: Echo (ping) request 171/177.346662292/192.168.178.57/149.20.4.15/ICMP 98 Echo (ping) request id=0x0aba, seq=1/256, ttl=63 (reply in 172) Frame 171: 98 bytes on wire (784 bits), 98 bytes captured (784 bits) on interface 0 Ethernet II, Src: PcsCompu_52:da:cd (08:00:27:52:da:cd), Dst: Avm_74:70:92 (34:31:c4:74:70:92) Internet Protocol Version 4, Src: 192.168.178.57, Dst: 149.20.4.15 Internet Control Message Protocol Echo (ping) reply 172/177.549735852/149.20.4.15/192.168.178.57/ICMP 98 Echo (ping) reply id=0x0aba, seq=1/256, ttl=53 (request in 171) Frame 172: 98 bytes on wire (784 bits), 98 bytes captured (784 bits) on interface 0 Ethernet II, Src: Avm_74:70:92 (34:31:c4:74:70:92), Dst: PcsCompu_52:da:cd (08:00:27:52:da:cd) Internet Protocol Version 4, Src: 149.20.4.15, Dst: 192.168.178.57 Internet Control Message Protocol #Source: ping_debian_clone1_layer1.pdf Content: Lab Exercise 2 Page 8 of 9

Which network protocols are involved in the transmission of the echo request/reply message pair? Assign them to the protocol stack. Layer 7: Layer 6: Layer 5: Layer 4: Layer 3: IPv4 / ICMP Layer 2: Ethernet Layer 1: Wired Connection (Ethernet) What is the length of the IP header in bytes? 20 Bytes What is the length of the ICMP payload in bytes? 48 Bytes To which destination IP address is the ICMP request sent? 149.20.4.15 What is the matching MAC address? 34:31:c4:74:70:92 What is the value of the type header field inside the frame, that is used to transmit the ICMP request? 8 (Echo (ping) request) What is the purpose of the sequence number inside the ICMP header? The Sequence Number is used to match each reply to its corresponding request Content: Lab Exercise 2 Page 9 of 9

2024 © technodocbox.com Privacy Policy | Terms of Service | Feedback