Controls Connections... i.e. source port to destination port..
and source port tied to applications
Transport
Layer 4
TCP
UDP
ICMP
Network
Layer 3
Logical Addressing
IP
Routing
Data-Link
Layer 2
MAC Addresses
ARP
Switching
Physical
Layer 1
Physical Connections, plugs
Fibre / Copper
Routing Protocols
RIP
Distance Vector
UDP 520
Admin Distance 120
Load Balance upto 16 paths
Version 1
Broadcast Updates
Classfull
No Authentication
Version 2
Classless, VLSM = ok!
Auto Summary on Class
MULTICAST - 224.0.0.8
Authentication
EIGRP
Enhanced Interior Gateway Routing Protocol
Routing protocol designed and developed by Cisco
EIGRP is an advanced distance-vector routing protocol, with optimizations to minimize both the routing
instability incurred after topology changes, as well as the use of bandwidth and processing power in the router.
Mixture of Distance Vector & Link state
Fast Convergence via DUAL (Diffusing Update Algorithm)
VLSM Support
Triggered partial routing updates
Multiple network layer supports
Supports IP, AppleTalk, IPX, Novell NetWare
Route States
Passive
Active
A route is considered "active" when route recomputation is taking place,
i.e. a routing decision has not yet been made.
Passive is the operational "normal" state
Terminology
Neighbour Table
Router uses "hello packets" to discover neighbors
The Neighbour Tables stores a list of directly connected neighbours
Topology Table
When a new neighbour is discovered they update each other with details on all the routes they know about.
The topology table contains all the destination networks learned by other routers.
Advertised Distance
Advertised Distance (AD) is the total metric along a path to a destination network as advertised by an upstream neighbor
Feasible Distance
A Feasible Distance (FD) is the lowest known distance from a router to a particular destination
This is the Advertised Distance (AD) + the cost to reach the neighboring router from which the AD was sent
Sucessor
Also known as Current Sucessor
Is a neighbour that has least-coset path to a destination (and not part of a routing loop)
Feasible Sucessor
is the backup "next hop" if a sucessor fails
(also not part of a routing loop)
Routing table
Stores the best routes to all destinations
multi data-link protocol / topology support
Multicast Neighbours on Ethernet
224.0.0.10
Support for Unicast Multi-Cast comminucation
Support for point to point & non-broadcast multi-access (NBMA)
EIGRP Packets are IP Protocol Number 88
Admin Distance 90
EIGRP Message Authentication Configuration Example
Routing authentication relies on a key on a keychain to function
ip authentication mode eigrp 10 md5
ip authentication key-chain eigrp 10 MYCHAIN
IGRP
Interior Gateway Routing Protocol
Distance Vector
Cisco Proprietary
IGRP was created in part to overcome the limitations of RIP
(maximum hop count of only 15, and a single routing metric) when used within large networks
CLASS_FULL_
Periodically each gateway broadcasts its entire routing table
(with some censoring because of the split horizon rule) to all adjacent gateways.
Admin Distance 100
OSPF
Open Shortest Path First
Terminology
Router Types
Internal
All routers have identical LSDBs
Backbone
A router with at least one connection to Area 0
ABR
A router with a connection to 2 or more areas
ASBR
A router with a connectio to an external area
External Area would be re-distributing routes from another protocol
LSDB
Link State DB
A Database of routes within a given area
Routers may have many LSDBs
Admin Distance 110
Multicast
224.0.0.5 (all SPF/link state routers, also known as AllSPFRouters)
224.0.0.6 (all Designated Routers, AllDRouters)
OSPF does not use TCP or UDP but uses IP directly, via IP protocol 89
Classless, VLSM = ok!
Link-State Routing Protocol
LSA
Link State Announcement
Types
LSA 1
Router LSA
Describe the state of the routers links to the area
Only Flooded within a particular Area
LSA 2
Network LSA
Generated by DR in multi-acess networks (ethernet)
Describe the routers connected to the multi-access area
LSA3
Summary LSA
Describe routes to the Area's Networks
Flooded thru Backbone (Area 0)
Not flodded thru Totally Stubby or NSSAs
LSA4
Summary LSA
Describe routes to the ASBRs
Flooded thru Backbone (Area 0)
Not flodded thru Totally Stubby or NSSAs
LSA 5
AS External LSA
Generated by ASBRs
Describe routes to external Areas
Not Flooded to Stub, totally stubby or NSSAs
LSA 6
Multicase OSPF LSA
Used in multicase applications
LSA 7
NSSA LSA
LSA 8
External LSA for BGP
Used to OSPF <-> BGP internetworking
LSA 9, 10 or 11
Opaque LSA
Designed for future upgrades
IGP (Interior gateway protocol)
Areas
Backbone
Area 0 is the backbone area
Virtual Link can create a temp link to area 0
All Areas must connect to Area 0
Stub Area
A stub area is an area which does not receive external routes except the default route
Does recieve internal routes
Cannot contain an ASBR
Totally Stubby Area
Does not receive internal or external routes
No So Stubby Area
NSSA
Can send external routes to back bone
Does not accept external routes from other areas
_CAN_ contain an ASBR
Configuring OSPF Authentication on a Virtual Link
ip ospf authentication-key cisco
area 1 virtual-link 3.3.3.3 authentication-key cisco
Sample Configuration for Authentication in OSPF
Types
Null Authentication
Plain Text Authentication
MD5 Authentication
show ip ospf interface serial0
BGP
TCP 179
Border Gateway Protocol
Exterior Gateway Protocol
A routing protocol which exchanges routes _between_ AS's
Also known as: Interdomain routing protocol (IDRP)
AS = Autonomous System
Private AS Numbers = 64512 -> 65535
Transit AS
An AS that routes traffic from one external AS to another External AS
Non-Transit AS
An AS which has an ISP multihoming connection, but does not transfer routes between them
iBGP
Internal BGP
BGP runs within an AS
eBGP
External BGP
BGP is exchanging routes _between_ AS's
Attributes
Well-Known Mandatory
Next hop
Origin
AS_path
Well-Known discretionary
Local Preference
Influences _OUTBOUND_ Traffic
Higher value preferred
Atomic Aggregate
Optional transitive
Community
Aggregator
Optional nontransitive
MED
Multi-Exit Discriminator
Influences _INBOUND_ traffic
Lower value preferred
Cisco Defined
Weight
Path Vector Protocol
BGP is the core routing protocol of the Internet.
It maintains a table of IP networks or 'prefixes' which designate
network reachability among autonomous systems (AS).
BGP is an interautonomous system routing protocol.
ISP Multihoming Options
Each ISP passes only a default route to the AS
Each ISP passes only a default route and provider-owned specific routes to AS
Each ISP passes all routes to the AS
BGP Authentication
Switching
Spanning Tree
BPDU
Notication Frames
Note Generated by spanning-tree portfast
Config Frames
Set with Source Mac & root bridge MAC
Security
Root Gurad
Stops new root Bridge BPDUs, allows switches to connect
BPDU Guard
Rejects ANY BPDU
Loop Gurad
Stops Loops forming if no BPDU recieved
UDLC
UNI-Directional Loop Detection
used to detect if tx or rx breaks
Normal Mode = Log
Aggressive Mode = Err_Disable Port
BPDU Filter
Filters Outbound BPDU
VLANS
VLAN Trunking
Trunk Link carries many VLANS over a single switch port
Switch Frames are "tagged" with a VLAN ID, so receiving device can
determine where Frames were destine
ISL
Inter-Switch Link Protocol
Cisco-proprietary protocol that maintains VLAN information
as traffic flows between switches and routers
Performs frame identification in Layer2 by encapsulating each frame between a header and trailer.
Referred to as FRAME double tagging
Not the same as Security Layer2 attach "double tagging"
802.1q
IEEE 802.1Q Protocol
EEE 802.1Q (also known as VLAN Tagging) was a project in the IEEE 802 standards process to
develop a mechanism to allow multiple bridged networks to transparently share the same
physical network link without leakage of information between networks
Each Frame is tagged within the layer2 frame.... not encapsulated
Single Tagging
Internal Tagging
Native VLAN
VLAN where "untagged" frames should reside.
VTP
VLAN Trunking Protocol
Modes
Server
DEFAULT!
Client
Transparent
All VLANS are local
Layer 2 Frames
Domains
Revision Number
To re-Set to 0
Change Domain Name
Change Switch Mode
VLANS in domain
Paramaters
Mode
Version 2
Version 2
Pruning
DTP
Dynamic Trunking Protocol
The Dynamic Trunking Protocol (DTP) is a proprietary networking protocol developed by
Cisco Systems for the purpose of negotiating trunking on a link between two VLAN-aware switches,
and for negotiating the type of trunking encapsulation to be used
Virtual LAN
LAN = Local Area Network
A group of hosts with a common set of requirements that communicate
as if they were attached to the Broadcast domain, regardless of their physical location.
Static VLAN Assignment
Port Based Membership
This is the "normal"
Steps
Step 1
Create VLAN
vlan <number>
name <vlan-name>
Step 2
Assign Port to VLAN
switchport mode access
switchport access vlan <number>
Dynamic VLAN Assignment
VLANs are assigned based on the MAC address of the end-user device
Switch must query VLAM Membership Policy Server (VMPS)
End to End VLANS
A vlan switch spans a large geographical area
examples would be a single vlan across a whole building or campus
Local VLANS
A vlan restricted by "something"
Example, local to switch or local to room or local to floor
TCP/IP Protocols
ICMP
Protocol 1
Types
0 Echo Reply
3 Destination Unreachable
4 Source Quench
5 Redirect
8 Echo Request
11 TTL Expired
TCP
Protocol 6
Connection-Orientated
UDP
Protocol 17
Connection LESS
IP v6
Internet Protocol version 6 (IPv6) is the next-generation Internet Layer
protocol for packet-switched internetworks and the Internet.
IPv6 is a new IP protocol designed to replace IPv4, the Internet protocol that is predominantly deployed and extensively used throughout the world.
IPv6 quadruples the number of network address bits from 32 bits (in IPv4) to 128 bits or approximately 3.4 x 1038 addressable nodes,
which provides more than enough globally unique IP addresses for every network device on the planet.
Addresses can be shortened with :: which replace sucessive 0s
2001:2:2CB5::77A:0:0:7
Only _ONE_ pair of colons can be used
Leading 0s can be removed
Address Types
Unicast
similar to V4 unicast
Glocal Unicast
= Global Routing Prefix + Subnet ID + Interface ID
Link-Local Unicast
Stateless Auto Config
Anycast
is the "closest" ip address
Mulicast
Similar to v4 mulicast
Routing Protocols
OSPF v3
IS-IS for IPv6
RIPng
EIGRP for IPv6
BGP4
IP v4
Class A
Class B
Class C
Class D
MultiCast
Class E
Experimental
RFC 1918
RFC 2827
IP Multicast
IP multicast is a method of forwarding IP datagrams to a group of interested receivers
Multicast Groups are identified by Class D IP addresses
224.0.0.0 -> 239.255.255.255
224.0.0.1 = All Hosts
224.0.0.2 = All Multicast Routers
224.0.0.4 = All DVMRP Routers
224.0.0.5 = All OSPF Routers
224.0.0.6 = All OSPF DR's
224.0.0.9 = All RIP v2 Routers
224.0.0.10 = All EIGRP Routers
239.0.0.0 -> 239.255.255.255 = PRIVATE Internal
Cisco's Securing Multicast
IGMP
Internet Group Management Protocol
Hosts use IGMP to register with a router to Join & Leave multicast groups;
the router then "knows" that it needs to forward multicast datastreams to that host
CGMP
Cisco Group Management Protocol
Cisco propiarty protocol which runs between a router & a switch
The router informs directly connected switches about which hosts
have joined multi-cast groups to help limit flooding on the switch
PIM
Protocol Independent Multicast
Used by Routers that are forwarding Multicast Traffic
Modes
Sparse Mode
PIM-SM
Hosts/Sources register with the RP
Routers along the path, explicitly Join the group so data can be passed from the RP to the Host
Dense Mode
PIM-DM
All routers are initially "joined" to the multicast group
Routers then request pruning, if no hosts wish to join.
PIM Sparse-dense mode
Hybrid of PIM-SM & PIM-DM
Allows routers to run both PIM-SM & PIM-DM for different multicast groups