Documente Academic
Documente Profesional
Documente Cultură
2)Internetworking(routerele)
3)securitatea(firewall)
-Network media(cabluri- cupru, fibra optica, sau wireless( dragan ii
zice lu asta eter!)
POTI SA ARANJEZI O RETEA IN 2 FELURI:(janes inglis mo?)
1)Physical topology diagrams - Identify the physical location of intermediary
devices, configured ports, and cable installation.
2)Logical topology diagrams - Identify devices, ports, and IP addressing
scheme.
No bun, daca ai priceput pana aici, sunt sperante :D
Sunt 3 tipuri de retele:
LAN( speri ca nu vrei si explicatie -_- ) o retea ce asigura acces userilor si
end device-urilor intr-o zona geografica mica.
WAN - o retea ce asigura acces userilor si end device-urilor intr-o zona
geografica mai mare
MAN(metropolitan area network0) - o retea cv mai mare ca un LAN da mai mica ca
un WAN - nici cal, nici magar.Le gasesti de obicei in organizatiile mari gen
IBM etc.
WLAN - ca un LAN da wireless
Storage Area Network(SAN) - aici ai servere de stocare a datelor( strabunicu'
cloudului)
INTERNETUL = un conglomerat de retele, ce nu e defapt detinut de nimeni.
Gandeste-te la Pamant. Separat fiecare are o bucatica, dar luat ca un tot,
nimeni nu il detine.
tine minte asta: The term internet (with a lower case i") is used to describe
multiple networks interconnected. When referring to the global system of
interconnected computer networks or the World Wide Web, the term Internet
(with a capital I) is used.
Mai sunt 2 termene similare cu internetu:
INTRANET SI EXTRANET:
intranetu e un termen folosit pt a descrie un LAN privat, detinut de o
companie( poate sa fie si un WAN). e un fel de net, da accesibil doar din
companie.
extranetu e de fapt acces securizat din afara firmei, la datele firmei
No bun, da cum ne conectam concret?
home userii, teleworkerii si birourile mici se conecteaza la net printr-un
ISP(internet service provider). De obicei te conectezi prin DSL(digital
subscriber line) dar se poate si prin broadband, wireles etc.
tipuri de conexiuni:
cablu- folosit de televeziune, batranu' coaxial. Are o banda mare,
mereu pornit, da e nevoie de un modem( da chestie de caraie -_-) pentru a
putea accesa internetul asa.
DSL-are bandwith mare, mereu pornit, e nevoie de un modem de mare
viteza, care sa iti separe semnalul de la telefonie, cu ala de la
net( remmember the '90s ?)
Cellular-prin telefonie mobila, performantele fiind limitate de
telefon, foarte bun cand te misti mereu sau cand n-ai cabluri pe langa tine
Satellite- de la dumniezo din ceruri :)); e bun pentru case si birouri
mici care nu au acces la DSL sau cablu. E nevoie de o antena d-aia gen
farfurie, si au nevoie de o cale libera spre satelit( mai greu in padure, sau
in orase daca ai in fata un bloc de 10 etaje si u stai la casa). e bun pentru
zonele in care chiar nu ai cum sa faci rost de net... sau electricitate -_Dial-up - e dirtcheap, foloseste orice linie telefonica si un modem.
ca sa se conecteze, se formeaza numarul de tel al ISP, are low bandwith.
Bring Your Own Device (BYOD)
In trecut, daca te angajai la o firma, astia trebuiau sa iti dea un
calculator sa poti sa te conectezi la retea si sa faci bani. De obicei erau
scumpe si erau folosite doar ca unelete de munca.
Acu', viata-i frumoasa, te costa putin un calculator/laptop/tableta si
nu mai trebuie neapart sa ti-l dea firma, poti sa vii si u cu el de acasa, sa
te conectezi si sa incepi sa faci bani.
BYOD means any device, with any ownership, used anywhere
CCNA CAPITOLUL 2-------------------------------IOS sau internet operating sistem, e ca orice alt sistem de operare,
prin care iti poti configura routerul switchul etc.
IOS e are cativa mega si e stocat intr-o memorie semipermanenta numita
FLASH.(nu se pierde inf cand se da restart, dar se poate modifica.)
Cand dai drumu la device, IOS e copiat din flash in RAM si se lucreaza
cu el de acolo.
IOS stie sa faca routare, adresare ip pt interfete logice si fizice,
securitate, configurari pe interfete, QoS etc.
Pentru configurare, sunt 3 metode de acces: Consola, Telnet/SSH sau
AUX.
NVRAM.
CCNA CAPITOLUL 3--------------------Asta se ocupa de Protocoale si standardele lor. Mai jos e un exemplu
de cum comunica intre ele protocoalele:
Application Protocol - Hypertext Transfer Protocol (HTTP) is a
protocol that governs the way a web server and a web client interact. HTTP
defines the content and formatting of the requests and responses that are
exchanged between the client and server. Both the client and the web server
software implement HTTP as part of the application. HTTP relies on other
protocols to govern how the messages are transported between the client and
server.
HTTP: Set of rules for exchanging text, graphic images, sound, video,
and other multimedia files on the World Wide Web
UDP(USER DATAGRAM PROTOCOL): Enables a process running on one host to
send packets to a process running on another host
Does not confirm successful datagram transmission
TCP(TRANSMISSON CONTROL PROTOCOL): Enables reliable communication
between processes running on separate hosts
Reliable, acknowledged transmissions that confirm successful delivery
IP: Receives message segments from the transport layer
Packages messages into packets
Addresses packets for end-to-end delivery over an Internetwork
NAT: Translates IP addresses from a private network into globally
unique public IP addresses
ICMP: Provides feedback from a destination host to a source host about
errors in packet delivery
OSPF: Link-state routing protocol
Hierarchical design based on areas
Open standard interior routing protocol
EIGRP: Cisco proprietary routing protocol
Uses composite metric based on bandwidth, delay, load and reliability
ARP: Provides dynamic address mapping between an IP address and a
hardware address
PPP: Provides a means of encapsulating packets for transmission over a
serial link
ETHERNET: Defines the rules for wiring and signalling standards of the
network access layer
INTERFACE DRIVER: Provides instruction to a machine for the control of
a specific interface on a network device
ORGANIZATIILE CE SE OCUPA CU STANDARDELE:
Standards organizations include:
The
The
The
The
The
RFC
RFC
RFC
RFC
Source data link address - e adresa fizica a sursei, initial assta e NIC-ul
tau.
Destination data link address - adresa fizica a interfetei de retea a
urmatorului router sau a dispozitivului destinatie.
Pentru a comunica cu alte dispozitive din afara retelei, trebuie setat
pe fiecare dispozitiv DEFAULT GATEWAY, ce reprezinta iesirea ta din retea, si
de obicei e adresa routerului.
(MTA)
a trimite mailurile, in asa fel incat sa ajunga
(MDA)
user, daca este in acel server.
After top-level domains are second-level domain names, and below them
are other lower level domains. Each domain name is a path down this inverted
tree starting from the root. For example, as shown in the figure, the root DNS
server may not know exactly where the record for the email server,
mail.cisco.com, is located, but it maintains a record for the .com domain
within the top-level domain. Likewise, the servers within the .com domain may
not have a record for mail.cisco.com, but they do have a record for the
domain. The servers within the cisco.com domain have a record (a MX record to
be precise) for mail.cisco.com.
Windowsu are si el un sistem gen dns, se cheama nslookup. Cand
introduci comanda asta, poti sa vezi manual ce adresa are un site anume.
DHCP - asta distribuie adrese IP automat, dintr-un pool de adrese, si
doar le imprumuta, nu le da definitiv.
pasii:
DHCPDISCOVER - message to identify any available DHCP servers on the
network.
DHCPOFFER - A DHCP server replies with a DHCP offer (DHCPOFFER)
message, which offers a lease to the client. The offer message contains the IP
address and subnet mask to be assigned, the IP address of the DNS server, and
the IP address of the default gateway. The lease offer also includes the
duration of the lease.
DHCPREQUEST - The client may receive multiple DHCPOFFER messages if
there is more than one DHCP server on the local network; therefore, it must
choose between them, and send a DHCP request (DHCPREQUEST) message that
identifies the explicit server and lease offer that the client is accepting.
DHCPACK - Assuming that the IP address requested by the client, or
offered by the server, is still available, the server returns a DHCP
acknowledgement (DHCPACK) message that acknowledges to the client that the
lease is finalized.
FTP - un alt protocol folosit des la nivelul aplicatie. A fost creat
pt a permite transferul de date intre client si server.
Clientul FTP foloseste o aplicatie ce foloseste push si pull, pentru a scoate
sau pune informatii pe un server ce ruleaza FTP daemon.
Pentru a putea transmite cu succes date, trebuiesc 2 conexiuni, una
pentru comenzi si reply-uir si alta pentru transferul efectiv de fisiere.
Clientul stabileste prima conexiune catre server pentru controlul
traficului, ce constituie din comenzile clientului si replicile serverului.
Clientul stabilieste o a 2-a conexiune catre server pentru transferul
de fisiere efectiv. Asta e creata de fiecare data cand trebuiesc fisiere
transferate.
Transferul de date se poate intampla in ambele sensuri.
Checksum (16 bits) - Used for error checking of the segment header and
Urgent (16 bits) - Indicates if data is urgent.
HEADERUL UDP:
Source port(16 bits)
Destination port(16 bits)
Length(16 bits)
Checksum(16 bits)
URG
ACK
PSH
RST
SYN
FIN
Step 2: The server sends an ACK to acknowledge the receipt of the FIN
to terminate the session from client to server.
Step 3: The server sends a FIN to the client, to terminate the server
to client session.
Step 4: The client responds with an ACK to acknowledge the FIN from
the server.
data.
PROBLEME CU IPV4:
IP address depletion - IPv4 has a limited number of unique public IP
addresses available. Although there are approximately 4 billion IPv4
addresses, the increasing number of new IP-enabled devices, always-on
connections, and the potential growth of less-developed regions have increased
the need for more addresses.
Internet routing table expansion - As the number of servers (nodes)
connected to the Internet increases, so too does the number of network routes.
These IPv4 routes consume a great deal of memory and processor resources on
Internet routers.
Lack of end-to-end connectivity - Network Address Translation (NAT) is
a technology commonly implemented within IPv4 networks. NAT provides a way for
multiple devices to share a single public IP address. However, because the
public IP address is shared, the IP address of an internal network host is
hidden. This can be problematic for technologies that require end-to-end
connectivity.
AVANTAJELE IPV6:
Increased address space - IPv6 addresses are based on 128-bit
hierarchical addressing as opposed to IPv4 with 32 bits. This dramatically
increases the number of available IP addresses.
Improved packet handling - The IPv6 header has been simplified with
fewer fields. This improves packet handling by intermediate routers and also
provides support for extensions and options for increased
scalability/longevity.
Eliminates the need for NAT - With such a large number of public IPv6
addresses, Network Address Translation (NAT) is not needed. Customer sites,
from the largest enterprises to single households, can get a public IPv6
network address. This avoids some of the NAT-induced application problems
experienced by applications requiring end-to-end connectivity.
Integrated security - IPv6 natively supports authentication and
privacy capabilities. With IPv4, additional features had to be implemented to
do this.
The 32-bit IPv4 address space provides approximately 4,294,967,296
unique addresses. Of these, only 3.7 billion addresses are assignable, because
the IPv4 addressing system separates the addresses into classes, and reserves
addresses for multicasting, testing, and other specific uses.
As shown in the figure, IP version 6 address space provides
340,282,366,920,938,463,463,374,607,431,768,211,456, or 340 undecillion
addresses, which is roughly equivalent to every grain of sand on Earth.
The IPv6 simplified header offers several advantages over IPv4:
Better routing efficiency for performance and forwarding-rate
scalability
NO requirement for processing checksums
These addresses all relate to the host and local network. All packets with
destination addresses that fall into this category will exit out of the
192.168.10.10 interface.
192.168.10.0 - The local network route address; represents all computers on
the 192.168.10.x network.
192.168.10.10 - The address of the local host.
192.168.10.255 - The network broadcast address; sends messages to all hosts on
the local network route.
224.0.0.0
These are special multicast class D addresses reserved for use through either
the loopback interface (127.0.0.1) or the host IP address (192.168.10.10).
255.255.255.255
The last two addresses represent the limited broadcast IP address values for
use through either the loopback interface (127.0.0.1) or the host IP address
(192.168.10.10). These addresses can be used to find a DHCP server before the
local IP is determined.
LA IPV6:
If - Lists the interface numbers from the Interface List section of the
netstat r command. The interface numbers correspond to the network capable
interface on the host, including Ethernet, Wi-Fi, and Bluetooth adapters.
Metric - Lists the cost of each route to a destination. Lower numbers indicate
preferred routes.
Network Destination - Lists the reachable networks.
Gateway - Lists the address used by the local host to forward packets to a
remote network destination. On-link indicates that the host is currently
connected to it.
For example, the figure displays the IPv6 Route section generated by the
netstat r command to reveal the following network destinations:
::/0 - This is the IPv6 equivalent of the local default route.
::1/128 - This is equivalent to the IPv4 loopback address and provides
services to the local host.
2001::/32 - This is the global unicast network prefix.
2001:0:9d38:953c:2c30:3071:e718:a926/128 - This is the global unicast IPv6
address of the local computer.
fe80::/64 - This is the local link network route address and represents all
computers on the local link IPv6 network.
fe80::2c30:3071:e718:a926/128 - This is the link local IPv6 address of the
local computer.
ff00::/8 - These are special reserved multicast class D addresses equivalent
to the IPv4 224.x.x.x addresses.
The routing table of a router stores information about:
Directly-connected routes - These routes come from the active router
interfaces. Routers add a directly connected route when an interface is
configured with an IP address and is activated. Each of the router's
interfaces is connected to a different network segment. Routers maintain
information about the network segments that they are connected to within the
routing table.
Limited IOS - Provides a limited backup version of the OS, in case the
router cannot load the full featured IOS.
NVRAM
NVRAM is used by the Cisco IOS as permanent storage for the startup
configuration file (startup-config). Like ROM, NVRAM does not lose its
contents when power is turned off.
Flash Memory
Flash memory is non-volatile computer memory used as permanent storage for the
IOS and other system related files. The IOS is copied from flash into RAM
during the bootup process.
A Cisco 1941 router includes the following connections:
Console ports - Two console ports for the initial configuration and
command-line interface (CLI) management access using a regular RJ-45 port and
a new USB Type-B (mini-B USB) connector.
AUX port - An RJ-45 port for remote management access; this is similar
to the Console port.
Two LAN interfaces - Two Gigabit Ethernet interfaces for LAN access.
Enhanced high-speed WAN interface card (EHWIC) slots - Two slots that
provide modularity and flexibility by enabling the router to support different
types of interface modules, including Serial, digital subscriber line (DSL),
switch port, and wireless.
The connections on a Cisco router can be grouped into two categories:
Management ports - These are the console and auxiliary ports used to
configure, manage, and troubleshoot the router. Unlike LAN and WAN interfaces,
management ports are not used for packet forwarding.
Inband Router interfaces - These are the LAN and WAN interfaces
configured with IP addressing to carry user traffic. Ethernet interfaces are
the most common LAN connections, while common WAN connections include serial
and DSL interfaces.
Similar to a Cisco switch, there are several ways to access the CLI
environment on a Cisco router. The most common methods are:
Console - Uses a low speed serial or USB connection to provide direct
connect, out-of-band management access to a Cisco device.
Telnet or SSH - Two methods for remotely accessing a CLI session
across an active network interface.
AUX port - Used for remote management of the router using a dial-up
telephone line and modem.
Secure privileged EXEC mode access using the enable secret command.
Secure EXEC mode access using the logincommand on the console port, and the
password command to set the password.
Secure virtual access similar to securing EXEC access mode, except on the
Virtual Teletype (VTY) port.
Use the service password-encryption global configuration command to prevent
passwords from displaying as plain text in the configuration file.
3. Provide legal notification using the banner motd (message of the day
[MOTD]) global configuration command. (Figure 3)
4. Save the configuration using the copy run start command. (Figure 4)
5. Verify the configuration using the show run command.
For routers to be reachable, router interfaces must be configured.
Therefore, to enable a specific interface, enter interface configuration mode
using the interface type-and-number global configuration mode command.
There are many different types of interfaces available on Cisco routers. In
this example, the Cisco 1941 router is equipped with two Gigabit Ethernet
interfaces and a serial WAN interface card (WIC) consisting of two interfaces;
the interfaces are named as follows:
Gigabit Ethernet 0/0 (G0/0)
Gigabit Ethernet 0/1 (G0/1)
Serial 0/0/0 (S0/0/0)
Serial 0/0/1 (S0/0/1)
To enable a router interface, configure the following:
IPv4 address and subnet mask - Configures the IP address and subnet mask using
the ip address ip-address subnet-mask interface configuration command.
Activate the interface - By default, LAN and WAN interfaces are not activated.
The interface must be activated using the no shutdown command. This is similar
to powering on the interface. The interface must also be connected to another
device (a hub, a switch, or another router) for the physical layer to be
active.
Although not required, it is good practice to configure a description on each
interface to help document the network information.
NU UITA DE FAZA CU DESCRIPTION, DUPA CE AI PUS IP-URILE PE INTERFETE.
O PUI ASA: interface f0/0
DESCRIPTION link to LAN1
SI ASTA O SA ITI DEA O DESCRIERE A INTERFETEI, GEN UNDE SE CONECTEAZA
EA.
COMENZI UTILE PENTRU A TE VERIFICA:
show ip route - Displays the contents of the IPv4 routing table stored
in RAM.
device.
SUMMARY:
The network layer, or OSI Layer 3, provides services to allow end devices to
exchange data across the network. To accomplish this end-to-end transport, the
network layer uses four basic processes: IP addressing for end devices,
encapsulation, routing, and de-encapsulation.
The Internet is largely based on IPv4, which is still the most widely-used
network layer protocol. An IPv4 packet contains the IP header and the payload.
However, IPv4 has a limited number of unique public IP addresses available.
This led to the development of IP version 6 (IPv6). The IPv6 simplified header
offers several advantages over IPv4, including better routing efficiency,
simplified extension headers, and capability for per-flow processing. Plus,
IPv6 addresses are based on 128-bit hierarchical addressing as opposed to IPv4
with 32 bits. This dramatically increases the number of available IP
addresses.
In addition to hierarchical addressing, the network layer is also responsible
for routing.
Hosts require a local routing table to ensure that packets are directed to the
correct destination network. The local table of a host typically contains the
direct connection, the local network route and the local default route. The
local default route is the route to the default gateway.
The default gateway is the IP address of a router interface connected to the
local network. When a host needs to forward a packet to a destination address
that is not on the same network as the host, the packet is sent to the default
gateway for further processing.
When a router, such as the default gateway, receives a packet, it examines the
destination IP address to determine the destination network. The routing table
of a router stores information about directly-connected routes and remote
routes to IP networks. If the router has an entry in its routing table for the
destination network, the router forwards the packet. If no routing entry
exists, the router may forward the packet to its own default route, if one is
configured, or it will drop the packet.
Routing table entries can be configured manually on each router to provide
static routing or the routers may communicate route information dynamically
between each other using a routing protocol.