Documente Academic
Documente Profesional
Documente Cultură
BRIDGE/SWITCH
= Operate at the Data-Link Layer (L2)
= Connects 2 or more LAN segments
> same logical network
> diminish traffic on network segments
= Makes forwarding & filtering decisions based on the MAC (hardware) address
= Provides upper-layer protocol transparency
= Extends the LAN
BRIDGE TABLE(brain/memory)
= Stores the information needed for the device to make forwarding or filtering decisions, based on MAC addresses.
= Organizes "who" lives "where"
TYPES of BRIDGE
a.Transparent= most common
> Learns MAC addresses of connected devices
> Forwards/Filters based on those MAC addresses
> Creates Loop-Free Topology (802.1d/STP)
BRIDGE VS SWITCH
COLLISION DOMAIN
= Separate collision domains
= One collision domain exists per bridge/switch port
= Increases network efficiency
= Does not separate broadcast domains
B/S OPERATION
Broadcast Message
= e.g. ARP
Therefore:
= VLANs create separate broadcast domains
= Layer 3 routing is required for communication between these separate networks
802.1Q
VLAN Protocol ID (16 bits) > Prio (3 bits) > CFI=0 (1 bit) > VLAN ID (12 bits)
When implementing VLANs in a network, a four byte tag will be added to the Ethernet frame to indicate the VLAN
assignment of that packet. Within the VLAN tag field, the 12 bit VLAN ID field is used to represent the actual VLAN
associated with this frame. Note that this tagging is within the Ethernet frame, so a Layer 2 switch is aware of this
assignment.
VLAN Characteristics:
= Same Broadcast Domain -Only members of the same VLAN will see traffic from other devices within that same VLAN.
= Security -Because traffic from one VLAN cannot be transmitted to another VLAN without a router or layer 3 device, this
makes VLANs more secure than a regular Ethernet network. At layer 3, the router security features may be implemented
as well.
= Logical Subnet -Devices in the same VLAN generally belong to the same subnet as well. Since members of a VLAN
are not necessarily on the same physical segment, these are logical subnets.
= Efficient Bandwidth Utilization -Since all traffic from one VLAN is confined within that VLAN (without the use of a layer 3
device), traffic is controlled by smaller broadcast domains. Just as switches isolate collision domains, VLANs isolate
broadcast (messages sent to all users) and multicast (messages sent to some users) domains. By isolating broadcast
and multicast traffic from traversing the whole network, performance improves.
= Port-Based or Dynamic -All VLAN membership is either port-based or dynamic. The NetVanta products support port-
based membership. VLAN assignment is made to a specific switch port, which is unknown to the end device. Dynamic
port assignment is usually based on the MAC address of the device plugged into a switch port.
= Problem Isolation -Because network segments are separated by VLANs, it is easier to isolate problems, as there are a
smaller number of devices per VLAN than on the entire switch device.
ROUTERS
1. Interconnect multiple local or wide area networks =he ability to interconnect both local area and wide area networks.
2. Filter based on logical addresses =examines and learns the source layer 3 address of each packet crossing the bus.
Its routing table is memory used for these learned addresses.
3. Provide Path Determination using metrics =determine the path of each packet through consulting the routing table and
using metrics.
4. Forward packets from one network to another = once path is determined, packets are then forwarded to it respective
destination
5. Control broadcasts to the network =break up both collision and broadcast domains.
6. Interconnect different types of LAN devices, media, or access methods =used to further segment a network.
TYPES OF ROUTERS
1.ACCESS= routes data b/n LANs and WAN / small to medium sized businesses
PATH DETERMINATION
1. Static
2. Dynamic
3. Default
= used to send packets to a remote destination network not in the routing table
= only valid on networks with one exit port
*Benefits
No overhead on the router CPU / No bandwidth usage between routers / Security
*Disadvantages
In-depth administrative knowledge / No automatic updates with addition/deletion of networks / Not feasible with large-
scale networks
*Benefits
Simple Configuration / Low Maintenance/Administration / Automatic updates when routing changes occur
*Disadvantages
Higher use of router CPU / Bandwidth usage on network lines / Less security/control
DYNAMIC ROUTING PROTOCOLS
1. Distance Vector = use a distance to a remote network to find the best path. Each time a packet goes through a router,
it's called a hop. The route with the least number of hops to the network is determined to be the best route. The vector is
the determination of direction to the remote network. [e.g. RIP and EGRP]
2. Link State (shortest path first) =the routers each create three separate tables (network topology, directly attached
neighbors, routing table) [e.g. OSPF]
3. Hybrid = use aspects of distance vector and link state. [e.g. EIGRP]
Default Gateway (router) = next hop router to send packets if network is not in the routing table
Hardware Addresses
>Ethernet Address Identification= unique fixed address given to a system on a network // used for L2 identification of
systems (source & destination devices) on an Ethernet network.
>IP Address= unique programmable address given to a system on a network // used for L3 identification of hosts and
routers on TCP/IP network // has two parts (network.host)
IP Address Format= fixed length of 32 bits // binary, hexa or decimal // divided in 4 octets in dot notation
Binary= either 0 or 1 // byte or octet is composed of eight bits // represented from 0 to 255
IPv4 ADDRESS
CLASSES= this defines which portion of the address identifies the network and host.
SUBNET MASK= 32-bit value used to distinguish the network and host portion of an IP address.
PREFIX LENGTH (slash notation)= shortcut method of writing the subnet mask // value that represents the total # of
bits in the network ID.
Class D & E are used for Multicast and Research purposes and we are not allowed to subnet them so they are not
mentioned here.
SUBNETTING= allows you to create multiple logical networks by dividing a single class IP address
= you borrow buts from the host portion to logically extend the network portion of the address
SUBNETTING REQ'MTS
= # of physical segments
= # of required hosts
SUBNETTING FORMULA
= longer payload area // more efficient throughput // auto-configuration // no need for NAT // better multicast // true QoS //
built in authentication
IPv4 vs IPv6
IPv4 ~ IPv6
= unique L3 addresses
= resolve L2 MAC to L3 address
= assigned statically or dynamically
= uses routing protocols
Hexadecimal Format: 8 groups of 4 hexadecimal digits // groups of consecutive 0s can be replaced by colon (:) //
leading 0s with a single 0
ROUTING IPv6
ETHERNET
PREAMBLE [8 bytes] =alternating pattern of 1s and 0s used to notify receiving stations of an incoming frame
DA [6 bytes] =MAC Address of the station/host intended to receive the Ethernet frame
SA [6 bytes] =MAC Address of the station/host where the Ethernet frame originated
Type [2 bytes] =indicator of the type of traffic encapsulated in the Ethernet frame
Payload [46-1500 bytes] =contents include data, as well as destination and source IP address
FCS [4 bytes] =check transmission errors
WAN PROTOCOLS
=Error Detection thru Link Quality Monitoring ~ threshold of loss that causes a link to go down
=Authentication thru PAP and CHAP ~ used in dial up links
=Multilink Support with Multilink PPP ~ split the load for PPP across multiple parallel circuits
PPP SESSION
1. Link Establishment
=LCP packets sent to negotiate config (MCU, compression, authentication) with receiver
2. Authentication
=occurs only after LCP is up
PAP (Password Authentication)
=clear text (initial startup only)
3. Network-Layer Protocols
=devices send NCP packets across the link
=multiple NCPs can exist on the link
4. Link Termination
=sends LCP packets (link termination frames) to terminate link
=link will stay active until LCP or NCP explicitly shuts it down
=external events can also close a PPP session
** FRAME RELAY
=allows data transmission across dedicated digital circuits
=utilizes packet switching over a shared network
=establishes virtual point to point circuits
=allocates bandwidth dynamically
=ideal for meshed configurations
=distance insensitive
=virtual connections are SW configurable and highly flexible
UNI Parameters:
NNI [Network to Network]= between FR switches and bi-directional signaling // maps virtual circuits from end to end
thru both networks
DTE [Data Terminal Equipment]= puts info in the appropriate FR format before delivery.
MPLS Flow
MPLS Label
| Label Value (20) | QoS (3) | Bottom of Stack (1) | TTL (8) |
MPLS Operation
MPLS Benefits
CARRIER ETHERNET
NETWORK= made up of a group of devices connected together in order to communicate and share resources
Benefits:
-Cost Savings
-Flexible Access
-Centralized Management
INTRANET
-connects users w/in a single organization
-comprised of multiple LAN or may span across the public WAN or internet
-provide standard network functionality w/in a company for access to common info and resources.
EXTRANET
-intranet that includes public access
-common in larger enterprises in order to open part of the network to customers or partners
INTERNET
-public access
-connects millions of users wordlwide
-control is provided at access points by ISPs
**NETWORK DEVICES
LAN DEVICES
-interconnect computers and devices within an office building or office complex
-include PCs, servers, hubs, switches and IP phones
SWITCH
-provide multiple wires or network segments for device connection
-each port acts as a separate wire where one device can transmit at a time
-keeps up with data as it traverses the network
-they send traffic to appropriate destination only when it is known
WAN DEVICE =connects LANs using routers or L3 switches to interpret route and deliver info
ROUTER =interconnects multiple smaller networks while keeping up with the layout of the entire network
**NETWORK CONNECTIONS
WAN
1.Dedicated (Point-to-Point/Leased)= dedicated and always available line b/n two locations (e.g.T1, T3)
2.Switched
a.Packet=up all the time and do not require the endpoints to make a connection (e.g. Frame Relay, MPLS)
b.Circuit= not up all the time, but require the endpoints to first make a connection (e.g. PSTN, ISDN)
LAN
1.Ethernet
a. Carrier Ethernet = transmit Ethernet data over WAN
2. Wi-Fi
**LAN TOPOLOGIES
1. Bus
=common in old LAN implementations
=devices access a common media thru cable taps
=all devices sees the transmission
2. Ring
=devices access one common circuit
=end of the circuit attaches to the beginning and data flows in one directon
3. Star
=separate cable used for each device
=each device connects to a central location (usually a hub or a switch)
4. Wireless LAN
=defined by IEEE 802.11
=uses HF radio waves to transmit info wirelessly
**ETHERNET
**CABLE CONNECTORS
TIA [Telecommunications Industry Association] & EIA [Electronics Industries Alliance] =create and manage
network cabling and connection standards (e.g. coaxial, UTP, STP and fiber optic)
COAXIAL
=Inner copper channel surrounded by insulation
=Outer channel is ground
=Highly resistant to interference
=Can be run long distances
UTP
Category 1: Voice only, telephone wire
Category 2: Data to 4 Mbps, LocalTalk
Category 3: Data to 10 Mbps, Ethernet
Category 4: Data to 20 Mbps, 16Mbps Token Ring
Category 5: Data to 100 Mbps, Fast Ethernet
STP
=four pairs of wires, each with a plastic coating
=offers another layer of shielding from electronic interference
Fiber Optic
=transmits light
=not subjected to electrical interference
=provides higher data rates
=traverses longer distances
COMPARISON
**OSI MODEL
=developed in 1984 by ISO
=network industry standard
=7 layers that define how data flows
1. Application :Layer 7 provides network services to end users. Examples of this include Simple Mail Transfer Protocol
(SMTP) for e-mail, Telnet for remote terminal sessions, and Hypertext Transfer Protocol (HTTP) for web browsers and
servers.
2.Presentation :Layer 6 is responsible for controlling data presentation. It provides coding and conversion functions and
translation of data between peer Application layers. Examples of layer 6 formats are ASCII, MPEG, and JPEG.
3.Session Layer :Layer 5 establishes and manages sessions between devices. This involves coordination of
applications as they interact on different hosts. Appletalk, Remote Procedure Call (RPC), and Lightweight Directory
Access Protocol (LDAP) operate at this layer.
4.Transport :Layer 4 is responsible for seeing that data arrives at its proper destination and arrives in the correct state.
This involves end-to-end error recovery and flow control. Transmission Control Protocol (TCP) and User Datagram
Protocol (UDP) operate at this layer.
5.Network :Layer 3 provides routing and forwarding of data packets between different networks and works with logical
addressing, such as Internet Protocol, or IP.
6.Data Link :Layer 2 packages bits into data frames. It is made up of two sublayers of the Media Access Control (MAC)
layer and Logical Link Control (LLC) layer. The MAC layer controls how computers gain access to the media and
transmit, while the LLC layer controls frame synchronization, flow control, and error checking.
7.Physical :Layer 1 defines the electrical and mechanical specifications of the physical link of the network connection. It
specifies voltages, frequencies, transmission distances, physical data rates, and physical connectors.
DATA FORMATS
LAYER 5-7 : Messages
LAYER 4 : Segments
Layer 3 : Packets
Layer 2 : Frames
Layer 1 : Bits
**TCP/IP MODEL
Application=where end-user applications exist, including file transfer protocol (FTP) and traceroute.
Transport=handles communication among programs on a network (e.g. TCP, UDP)
Network/Internet=used for basic device communication, addressing, and routing (e.g. IP, ICMP)
Link/Network Access=defining network hardware and device drivers
ENCAPSULATION
=process of adding headers and trailers to data handed down from upper layers.
=originates from the top Application layer and traverses down to the physical media for transmission to the destination
device
DECAPSULATION=headers and trailers are stripped off at each layer and the data is processed until the original user
data appears at the destination device's application.
MAC IP
Hardware Logical
Assigned by Manufacturer Assigned by Admin
Layer 2 (Switch) Layer 3 (Route)
xx = OUI
yy = unique number from the manufacturer
Subnet Mask= reveals which portion of the address is the network ID and which is the host ID.
CSMA/CD [Carrier Sense Multiple Access/Collision Detection]= defines procedures for checking the medium for
availability
**ROUTER FEATURES
FIREWALL
=attack protection
=session initiation control with access policies
=ongoing session monitoring and processing
=session timeouts
=application specific processing
=NAT
ETHERNET
=affordable and flexible product options
=robust QoS and Class of Service features
=PoE for VoIP applications
=integrated wireless controller for management of WAPs
NETVANTA L3
=combines performance, reliability and security
=perfect for gig to the desktop apps
=as an aggregator switch routing b/n VLANs
=offers opttional 802.3af compliant legacy PoE to power LAN devices
NetVanta 1200s
=edge access
=ideal for VoIP
=excellent value for features and performance
NetVanta 1500s
=network distribution
=gigabit to dekstop
=Wireless AP connectivity
NetVanta 1600s
=core switching function
=fully stackable
=10Gig Network Connectivity
**NetVanta Categories
i. NetVanta 1235P
=IEEE 10/100 BaseT
=Backup Power (NV1131) - Full RPS and EPS Support
=Voice/data/video/802.11 a/b/g/n WiFi
**ACTIVCHASSIS
=Ease of management: Stack and manage up to eight switches as a single, logical chassis-like switch
=Cost-effective scale: Add port capacity on-demand up to 400 ports
=Flexibility: Manage switches spread across multiple wiring closets up to 10 km (6 miles) apart in connected campus
=Increased backplane capacity: Boost backplane capacity up to 128 Gbps
=Network resiliency: Improve network resiliency and high-availability with ring topology and link aggregation across
multiple physical switches
=Supported in the NetVanta 1638P
e.PoE= provide legacy PoE 802.3af or 802.3at (PoE+) with FE and GE products
NetVanta 1531
=Layer 3 Gigabit-to-the-Desktop
=8-Port Gigabit Ethernet
=2 Copper Uplink Ports
=2 Standard 1Gbps SFP Uplink Ports
=802.3af PoE & 802.3at PoE+ : 1531P only
=Layer 3 Lite
=8x11x11.5 form factor
NetVanta 1638
=Layer 3 48-Port Gigabit Ethernet
=2 High Speed Interface Slots
=176 Gbps Switching Bandwidth
=Redundant or Supplemental Power Support via NV1131 RPS/EPS
=Layer 3 - Static, RIPv1/v2, OSPF, BGP, VRRP
=802.3af and 802.3at PoE/PoE+
NetVanta 1131
=Redundant and Extended Power Supply for NV Gigabit switches
=Redundant Power for up to 3 NV switches
=Enables NV switches to be powered from Dual AC circuits
=Backup 370 Watts PoE budget power for NV PoE switches
=Additional 370 Watts PoE budget power for NV 1638P
=Half-rack form factor, allowing 2 NV1131s to be mounted using the optional dual mounting tray
=Plug-and-Play operation requires no manual configuration
1. 1000 Base-LX LC SFP= Provides 1000Base-LX Gigabit Ethernet interface for single-mode fiber
2. 1000 Base-SX LC SFP =Provides 1000Base-SX Gigabit Ethernet interface for multi-mode fiber
3. 1000 Base T SFP= Supports 10/100/1000Base-T
4. 2.5 Gigabit SFP= Provides 1 to 2.5 Gigabit SFP Ethernet interface for multi-mode fiber. NV1600 series with Dual
SFP+ XIM only supports 1 Gbps.
5. 10 GBase-LR SFP+= Provides 1 or 10 Gigabit SFP+ Ethernet interface for single-mode fiber
6. 10 GBase-SR SFP+= Provides 1 or 10 Gigabit SFP+ Ethernet interface for multi-mode fiber
7. SFP Interconnect Cable (1m)= Supports 1 Gbps and 2.5 Gbps, SFP/SFP (1m). 1st Gen versions of NV1200 series
and 1534 only support 1 Gbps
8. SFP Interconnect Cable (3m)= Supports 1 Gbps and 2.5 Gbps, SFP/SFP (3m). 1st Gen versions of NV1200 series
and 1534 only support 1 Gbps
**FAST ETHERNET SWITCH REFERENCE
II. ROUTERS
NETVANTA FIXED-PORT ACCESS =cost-effective, secure, business-class solution for SMBs or remote workers.
NetVanta 3120:Fixed Port Access Router with 4 Port Ethernet Switch, Firewall, VPN, and Voice Quality Monitoring
NetVanta 3130:Fixed Port ADSL Router with 4 Port Ethernet Switch, Firewall, VPN, and Voice Quality Monitoring
ADTRAN MODULAR ACCESS =have at least one Network Interface Module (NIM) slot, or a wide option module slot,
that will house any available NIM or wide module cards.
ADTRAN MULTISERVICE= has greater throughput and a variety of networking functions wrapped into a single chassis
NetVanta 4660
=Carrier Ethernet Customer Edge Router
=Offers the functionality of a business-class router, access router for data services, and a Metro Ethernet Forum (MEF)-
compliant Carrier Ethernet services gateway in a single, optimized platform for streamlined business services delivery.
III. WAPs
IV. IP BUSINESS GATEWAYS
V. IP TELEPHONY
VI. OPERATING SYSTEM
**Protocol Support = in order for a router to establish a connection to another device and send traffic to it, it must use
protocols to communicate with others in the network
WAN
-Frame Relay, Multilink Frame Relay, PPP,Multilink PPP, PPPoE, PPPoA
-RFC1483 (RBE), HDLC
Routing Traffic
=OSPF, RIP v1/v2, BGPv4, IGMPv2, GRE, Static, Bridging, Multihoming, Demand Routing
=Pim-Sparse Mode, Policy Based Routing, Websense Content Filtering, Layer 3 Backup
VRRP, Multi-VRF
VLAN Support
Router = 802.1Q in conjunction with a switch
Switch = 255 port-based VLANs and 802.1Q VLAN trunking
QoS Features =used to give priority to delay-sensitive traffic such as voice over IP or video applications
VPN Functionality =requires Enhanced Feature Pack // # of VPN Tunnels varies by product
IPSec
-MD5/SHA-1
-DES/3DES/AES Encryption
-Diffie-Helman Groups 1,2
-XAUTH Authentication
-IKE
-X.509 Digital Certificates
Virtual Routing and Forwarding (VRF) =enables a single physical router to be logically partitioned into multiple virtual
router instances.
Multi-VRF is supported in the NetVanta 1335, 3448, 3305, 3430, 4305, 5305 and 6355.
Websense & Content URL Filtering =prevents users from accessing websites defined by IT policy
Ping Probe =monitors connection through the modem to determine if the link has gone down.
nCommand
=Manage NetVanta based networks
=Backup and Restore
=Discover devices
=Upgrade firmware
=Mass config changes=
=Modify ACLs
=Inventory Reports
**AOS MANAGEMENT
Connecting to the Unit =Console Port OR DB-9 straight through serial cable
**AOS CONFIGURATION
Global Config = set the sys enable password // config system global IP parameters // enter any other config modes
Line Config = config console and telmet access into the device
Router Config = config routing parameters and protocols
Interface Config = assign interface specific parameters to a particular interface
NetVanta Memory
FLASH / NVRAM
=Boot Code Storage
=Compressed application code storage
=Store non-volatile configuration data (startup-config)
=Retains contents when NetVanta is powered down
RAM
=Running copy of the application code
=Storage of uncompressed executable code and data structures
=All application code is executed out of RAM
=Running copy of the configuration file (running-config)
=Loaded into RAM from NVRAM at startup
=Cleared when NetVanta is powered down
COMPACT FLASH
=Used to store configuration files and AOS images
=Available on select NetVanta Internetworking products
Access to WebGUI
1. Enable HTTP Server
2. Config username and password
3. Config IP address on Ethernet or VLAN Interface
Saving Configs
= copy running-config tftp or write network
= address of server
= filename