Network Administra0on

Similar documents
Advanced Linux System Administra3on

TCP/IP Network Essentials

Donato Ba*aglino Lorenzo Bracciale

CSE/ISE 311: Systems Administra5on Basic Network Organiza5on

IP Basics Unix/IP Preparation Course June 29, 2010 Pago Pago, American Samoa

Static and source based routing

LAN Setup Reflection

Networking Fundamentals

CSCI 1800 Cybersecurity and Interna4onal Rela4ons. Design and Opera-on of the Internet John E. Savage Brown University

Lab Exercise Sheet 2 (Sample Solution)

Setting Up a Multihomed System

LAN Setup Reflection. Ask yourself some questions: o Does your VM have the correct IP? o Are you able to ping some locations, internal and external?

TCP/IP and the OSI Model

THE INTERNET PROTOCOL INTERFACES

The Internet Protocol

Linux. Computer networks - Administration 1DV202. fredag 30 mars 12

Addressing and Routing

Basic elements of IP and its interac2on with Ethernet

Quick guide for configuring a system with multiple IP-LINKs

THE INTERNET PROTOCOL/1

This document guides the user through: 1. Setting up and configuring networking for the BeagleBone black or green with the host.

Fundamentals of Computer Networking AE6382

I. More ARP Week 7. after resolving a hardware address, why not store it?

521262S Computer Networks 2 (fall 2007) Laboratory exercise #2: Internetworking

Exam : Title : Sun Certified Network Administrator for Solaris 10 OS. Version : DEMO

ITexamGuide. High-quality IT Cert Exam study guide

CIT 380: Securing Computer Systems. Network Security Concepts

Introduc)on to IPv6. Administra)on de Réseaux Dino Lopez h<p://

Written examination in Computer Networks

Agenda L2 versus L3 Switching IP Protocol, IP Addressing IP Forwarding ARP and ICMP IP Routing First Hop Redundancy

IT341 Introduction to System Administration Project II Setting up our LAN

CS118 Discussion 1A, Week 6. Zengwen Yuan Dodd Hall 78, Friday 10:00 10:50 a.m.

Chapter 5 Network Layer

Sirindhorn International Institute of Technology Thammasat University

Sirindhorn International Institute of Technology Thammasat University

Debian/GNU Linux Networking

FiberstoreOS IP Service Configuration Guide

Cisco CCNA (ICND1, ICND2) Bootcamp

Material for the Networking lab in EITF25 & EITF45

CS118 Discussion, Week 6. Taqi

The Interconnection Structure of. The Internet. EECC694 - Shaaban

Chapter 5: Trouble shooting of a network

Linux Kurs Themen TCP / IP 20 October TCP vs. UDP Protocols Garanteed data transport(eg. ftp) vs speed(eg. nfs) ICMP Protocol

EITF25 Internet- - Techniques and Applica8ons Stefan Höst. L6 Networking and IP

Interconnecting Cisco Networking Devices Part1 ( ICND1) Exam.

ITEC 3210 M - Applied Data Communications and Networks. Professor: Younes Benslimane, Ph.D.

ICS 351: Networking Protocols

Computer Networks Security: intro. CS Computer Systems Security

COMPUTER NETWORKING LAB EXERCISES (TP) 1 BASIC CONFIGURATION AND TOOLS FOR EVERYBODY:

Layering in Networked computing. OSI Model TCP/IP Model Protocols at each layer

CIS Test 1- Practice - Fall 2011

ICS 451: Today's plan

Interconnecting Cisco Networking Devices Part 1 (ICND1) Course Overview

Communication Networks ( ) / Fall 2013 The Blavatnik School of Computer Science, Tel-Aviv University. Allon Wagner

ITS332 Quiz 1 Answers

Network Security. Introduction to networks. Radboud University, The Netherlands. Autumn 2015

Computer Networks. More on Standards & Protocols Quality of Service. Week 10. College of Information Science and Engineering Ritsumeikan University

Introduction to Computer Networks. CS 166: Introduction to Computer Systems Security

CSE 461 Midterm Winter 2018

lab rip experiences with RIPv2 distance vector protocol

MONSTER. Managing an Operator s Network with Software Defined Networking and Segment Routing. Ing. Luca Davoli

Internet Protocol (IP)

Basic Internetworking (IP)

Routing. Directly Connected IP Networks. Data link layer routing. ifconfig command

Department of Computer and IT Engineering University of Kurdistan. Network Layer. By: Dr. Alireza Abdollahpouri

Chapter 4: Network Layer

Network layer overview

COMS Introduction to Computers. Networking

Datagram. Source IP address. Destination IP address. Options. Data

Supplies VLab pod 192 VMs shown above. Forum

Introduction to routing in the Internet

Experimenting Internetworking using Linux Virtual Machines Part I

Fundamental Questions to Answer About Computer Networking, Jan 2009 Prof. Ying-Dar Lin,

Network Basic v0.1. Network Basic v0.1. Chapter 3 Internet Protocol. Chapter 3. Internet Protocol

CSC 4900 Computer Networks: Network Layer

Router Architecture Overview

Router Router Microprocessor controlled traffic direction home router DSL modem Computer Enterprise routers Core routers

MiPDF.COM. 1. Convert the decimal number 231 into its binary equivalent. Select the correct answer from the list below.

Detecting Sniffers on Your Network

Network Layer Overview. Star8ng the Network Layer! Builds on the link layer. Routers send packets over mul8ple networks

Introduc3on to Computer Networks

IPv4 addressing, NAT. Computer Networking: A Top Down Approach 6 th edition Jim Kurose, Keith Ross Addison-Wesley.

CS 457 Lecture 11 More IP Networking. Fall 2011

The Internet Protocol. IP Addresses Address Resolution Protocol: IP datagram format and forwarding: IP fragmentation and reassembly

HP OpenVMS Network Administration Exam.

Copyleft 2005, Binnur Kurt. Objectives

Exam Questions 1Z0-880

cs144 Midterm Review Fall 2010

ROUTING INTRODUCTION TO IP, IP ROUTING PROTOCOLS AND PROXY ARP

VLAN Configurations. 1 of :18. Available Categories. Adobe. Macromedia

Network Protocols - Revision

Guide to Networking Essentials, 6 th Edition. Chapter 5: Network Protocols

The Network Layer. Internet solutions. Nixu Oy PL 21. (Mäkelänkatu 91) Helsinki, Finland. tel fax.

Networks Fall This exam consists of 10 problems on the following 13 pages.

OSI and TCP/IP Models

Chapter 7. Local Area Network Communications Protocols

Review of Important Networking Concepts

Networking By: Vince

Network Access Transla0on - NAT

Routing. Basic principles. Karst Koymans. Informatics Institute University of Amsterdam. (version 16.4, 2017/02/23 10:58:58)

Transcription:

Network Administra0on (Introduc0on) Administración en Red 1 Index Introduc0on (TCP/IP) Network Interface Link Layer Network Layer Monitoring/Test Administración en Red 2

Introduc0on (TCP/IP) Protocol Suite, a set of protocols designed to implement interconnec7on networks. Origin: research project of the USA defense department (ARPANET). Mul7ple components, arranged hierarchically (stack) arp ssh, hjp Gaming traceroute Applica7on Layer TCP IP ARP, drivers UDP ICMP Transport Layer Network Layer Link Layer Copper, fiber, wireless Physical Layer Administración en Red 3 Introduc0on (TCP/IP) Protocol Suite, a set of protocols designed to implement interconnec7on networks. Origin: research project of the USA defense department (ARPANET). Mul7ple components, arranged hierarchically (stack) IP, the Internet Protocol, routes data packets from one machine to another ICMP, the Internet Control Message Protocol, provides low level support for IP: error messages, rou7ng assistance, debugging ARP, Address Resolu7on Protocol, translates IP addresses into HW address (MAC). UDP, User Datagram Protocol, unverified, one- way data delivery TCP, Transmission Control Protocol, reliable, full duplex, flow controlled, error corrected conversa7ons. Administración en Red 4

Introduc0on (TCP/IP) Encapsula0on: Data travels on the network in the form of packets, bursts of data with a maximum length imposed by the link layer. Each packet consists of a header and a payload: Header: includes Source- Des7na7on and protocol informa7on. Payload: the informa7on (Data). As a packet travels down the TCP/IP protocol stack, each protocol adds its own header informa7on Ethernet Header 14 bytes IP Header 20 bytes UDP Header 8 bytes Applica7on Data 100 bytes CRC Eth. 4 bytes UDP Packet (108 bytes) IP Packet (128 bytes) Ethernet Packet (146 bytes) Administración en Red 5 Introduc0on (TCP/IP) Packet Addressing: mul7ple addressing schemes. HW Addressing: Each net interface has one MAC addr that dis7nguishes it in the physical network. Ethernet Network: 6 byte direc7on (2- digit hex bytes: 00:50:8D:9ª:3B:DF) IP Addressing: (IPv4: 216.58.211.196) Iden7fies the network interface in internet. Unique at global level* (NAT & private addr) Physical Address IP address mapping: ARP protocol Hostname addressing: Number- based direc7ons hard to remember (216.58.211.196??). Name mapping. File mapping (/etc/hosts) or DNS (world- wide Domain Name Server) Ports: IP iden7fies the interface, How to iden7fy ac7ve services? (mul7ple connec7ons) Extend IP address with port number: 16 bits iden7fying a communica7on channel. Standard services (ssh, gp, hhp) are associated to pre- established ports. (/etc/services) Administración en Red 6

Introduc0on (TCP/IP) IP Addressing: IPv4 vs IPv6: IPv4 limita7ons (3 February 2011 no more addresses available) Types of IPv4 addresses: (32 bits divided into 4 8- bit fields a.b.c.d) Determines which por7on iden7fies the network and which one the host. Class A: (N.H.H.H) 1.x.x.x 127.x.x.x Network part=a, 126 nets Host part=b.c.d, +16 millon hosts at each net. Class B: (N.N.H.H) 128.x.x.x 191.x.x.x +16K nets, 65K hosts per net. Class C: (N.N.N.H) 192.x.x.x 233.x.x.x Classes D and E: 224.0.0.0 255.x.x.x Experimental networks and mul7cast addressing. SubneTng: A & B oversized, break classes into subclasses Part of the host iden7fier is employed to iden7fy the network Through the network mask (mapping) 0.0.0.0: My own Host (NO net connec7on) 0.x.x.x: One machine in our network 127.0.0.1: Loopback. Does not reach the NIC. 255.255.255.255: Bcast in local network. x.x.x.255: Bcast in specified network. Administración en Red 7 Index Introduc0on (TCP/IP) Network Interface Link Layer Network Layer Monitoring/Test Administración en Red 8

Network Interface Host / Interface: Hosts are computers/individual systems. Each host can have one or more network interfaces (NICs) (Cable + wifi) Each interface represents a connec7on to a different network (different IP). Basic network equipment: Hubs (level OSI- 1): Only interconnects wires. Switches (level OSI- 2): Ethernet level management (ARP, MAC, etc.) Routers (level OSI- 3): IP packet management, network level. Others: traffic balancing, firewalls, Linux does not perform net management through device files. ethx has no device file associated ( /dev/ethx not found) NICs are managed through kernel modules (drivers) Administración en Red 9 Network Interface Configura7on (Debian): file /etc/network/interfaces Establishes the configura7on of network interfaces. Allows addi7onal func7onality: routes*, alias, pre/post opera7ons, Fields: auto <interface>: ac7vates the interface when the system boots up iface <interface> <ip_addressing> <method>: interface configura7on ip_addressing: inet (IPv4) / inet6 (IPv6) method: dhcp (automa7c) / sta7c (manual, requires addi7onal lines for configura7on) *Loopback interface: Communica7on of network apps hosted in the same system. auth lo auto eth0 iface eth0 inet static address 192.168.1.132 netmask 255.255.255.0 network 192.168.1.0 broadcast 192.168.1.255 gateway 192.168.1.1 Administración en Red 10

Network Interface Configura7on (Debian): Interface configura7on can be modified in a running system. STEP 1, Modifica7on. Edit the file /etc/network/interfaces or command ifconfig STEP 2, Re- start. ifdown/ifup or reboot the service (/etc/init.d/networking restart). Commands ifup/ifdown: power on/off a network interface. Syntax: ifdown eth0 (power off eth0 card). Command ifconfig: net parameter configura7on. Syntax: ifconfig <interface> <address> <op7ons> Example: ifconfig eth0 192.168.1.13 netmask 255.255.255.198 broadcast 192.168.1.191 up ifconfig a prints informa7on about available interfaces. Cau7on!! changes made with ifconfig are not permanent (do not modify interfaces file). Graphic tools: network- admin, webmin, Administración en Red 11 Network Interface DHCP (Dynamic Host Configura7on Protocol) The DHCP service performs automa0c network configura0on for the system. Ren7ng parameters from a server: IP, Gateway, DNS, etc. Safe : allows forcing network configura7on based on MAC address. Easier: centralized management of the whole network. Dynamic: informa7on is only valid temporally. Requires a client service at each host. How to specify we want to use DHCP: In /etc/network/interfaces: iface ethx int dhcp man dhclient ifconfig eth0 up Administración en Red 12

Index Introduc0on (TCP/IP) Network Interface Link Layer Network Layer Monitoring/Test Administración en Red 13 Link Layer The physical level in TCP/IP, almost always a ethernet network. Each interface (NIC) has a unique MAC address. Layer in charge of IP Frame Ethernet Frame conversion. Need to map IP address and MAC Address: ARP (Address Resolu7on Protocol). ARP Protocol: Search @MAC corresponding to a @IP in the local ARP table (translated address cache) If not in the table, it performs a broadcast and the receiver informs. ARP table is updated for future connec7ons. When des7na7on is not in local network, the IP route tables are employed, sending the message through the gateway MAC. Command arp: manipula7on/display of ARP table. Configura7on/Modifica7on of @MAC: # ifconfig eth0 hw ether 00:02:B3:19:C8:21 Administración en Red 14

Index Introduc0on (TCP/IP) Network Interface Link Layer Network Layer Monitoring/Test Administración en Red 15 Network Layer Through ARP only hosts in my net segment can be reached. Cannot reach further than my hub/switch/router. IP routes must be established for external addresses. Route Tables: Informa7on about how to reach IP des7na7ons Des0na0on: Iden7fies des7na7on network. Gateway: how to reach to Des7na7on (* means no forwarding is required, the packet is already in that network. Genmask: network mask (iden7fies the subnetwork). Iface: network interface to reach des7na7on network. Destination Gateway Genmask Flags Metric Ref Use Iface 192.168.10.0 * 255.255.255.0 U 0 0 0 eth1 127.0.0.0 * 255.0.0.0 U 0 0 0 lo default 192.168.10.1 0.0.0.0 UG 0 0 0 eth1 Administración en Red 16

Network Layer Manual configura7on of route tables: Command route: modify/show tables. #route n : shows route tables. Add a route for a network segment: # route add net 192.168.1.0 netmask 255.255.255.0 eth0 Add the link element to other subnetworks (default route) # route add default gw 192.168.1.1 eth0 Dynamic routes (automa7c) Sta7c configura7on of tables limits their func7onality. Valid for stable networks (not very large ) Requires knowledge about network topology. Complex environments: Dynamic Routes Daemon routed o gated. OSFP, RIP, BGP, Maybe one of the most complex aspects concerning network administra7on. Administración en Red 17 Network Layer Network Address Transla0on (NAT): Rou7ng mechanism for packet exchange between incompa7ble networks (Public- Private address). Allows a private IP to maintain internet connec7vity. For outgoing connec7ons, the router translates the private IP as its own IP. Router keeps informa7on about all outgoing connec7ons, rela7ng them with incoming ones. NAT Types: Outgoing connec7on: 192.168.1.25(1085) - > 212.106.192.142(1085) Inbound communica7on: 212.106.192.142(1085) - > 192.168.1.125(1085) Sta0c NAT: one- to- one mapping, each private IP is assigned a dedicated public IP. Dynamic NAT: The router has a pool of public IPS assigned dynamically to the private IPs making a request. Port Address Transla0on (PAT): Single public IP. The port iden7fies the private IP. Administración en Red 18

Network Layer Network Address Transla0on (NAT): Administración en Red 19 Network Layer Name Resolu0on name<- >IP transla7on, the network phonebook: Op7on 1: through the file /etc/hosts: Conven7onal way, edi7ng the file manually or through the command addhost. Reasonable for small and private networks. Not useful for the rest of cases. Adding a new host requires to modify all the /etc/hosts files in the network. Usually employed only for the values required during boot process (localhost, hostname, ) Can add the IPs of relevant network servers or those providing essen7al network services. Op7on 2: Domain Name Service (DNS) Dedicated server in charge of performing the conversion. Each host must be configured to make use of its corresponding name server. The client is configured through the file /etc/resolv.conf Administración en Red 20

Network Layer Name Resolu0on: the file /etc/resolv.conf: search: domain search order When we try to connect to a host without suffix, it auto- completes ssh si - > ssh si.localdomain Priority from leg to right (first atc.unican.es, then unican.es) nameserver: name server Try to resolve with the first one. If it fails, keep on descending to lower lines search localdomain search atc.unican.es unican.es nameserver 193.144.193.11 nameserver 193.144.193.22 nameserver 192.168.0.105 Administración en Red 21 Index Introduc0on (TCP/IP) Network Interface Link Layer Network Layer Monitoring/Test Administración en Red 22

Monitoring/Test Test Command: Command netstat: shows network status. Route table (- r), ac7ve connec7ons (- a). Also sockets (TCP) Command ping: packet ECHO_REQUEST (ICMP) to a host. Check if a des7na7on is reachable. (Warning, firewall & ICMP). Command traceroute: route followed by a packet towards des7na7on Collects the IP at each gateway traversed. Command/Tools for monitoring: Command iptraf: traffic sta7s7cs at network interfaces tcpdump/wireshark/ :Monitoring sent/received data for each connec7on. netperf: Performance measurement for links. More sophis7cated ones: MRTG, SAINT, Ganglia- monitor, Administración en Red 23

2024 © technodocbox.com Privacy Policy | Terms of Service | Feedback