Chapter 5 Network Configuration Basics.ppt
1,166 views
45 slides
Feb 26, 2023
Slide 1 of 45
1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
43
44
45
About This Presentation
subletting in Linux
Slide Content
Objectives:
Chapter 5
Network Configuration Basics
IPv4 vs IPv6 Addressing
Firewall configuration
Network Interface Configuration
Linux Network Troubleshooting
commands
Chapter 5
Network Configuration Basics
IPv4 vs IPv6 Addressing
Firewall configuration
Network Interface Configuration
Linux Network Troubleshooting
commands
Ambo University
2
Internet Architecture
•Two computers, anywhere in
the world, following certain
hardware, software, protocol
specifications, can
communicate, reliably even
when not directly connected.
•LANs are no longer scalable
beyond a certain number of
stations or geographic
separation.
2
Internet Architecture
•Two computers, anywhere in
the world, following certain
hardware, software, protocol
specifications, can
communicate, reliably even
when not directly connected.
•LANs are no longer scalable
beyond a certain number of
stations or geographic
separation.
Ambo University
3
IP Address as a 32-Bit Binary Number
Internet Addresses
3
IP Address as a 32-Bit Binary Number
Internet Addresses
Ambo University
4
IP Address Classes
4
IP Address Classes
Ambo University
5
IP Address Classes
5
IP Address Classes
Ambo University
6
Hosts for Classes of
IP Addresses
Class A (24 bits for hosts) 2
24
-2
*
= 16,777,214 maximum hosts
Class B (16 bits for hosts) 2
16
-2
*
= 65,534 maximum hosts
Class C (8 bits for hosts) 2
8
-2
*
= 254 maximum hosts
*
Subtracting the network and broadcast reserved address
6
Hosts for Classes of
IP Addresses
Class A (24 bits for hosts) 2
24
-2
*
= 16,777,214 maximum hosts
Class B (16 bits for hosts) 2
16
-2
*
= 65,534 maximum hosts
Class C (8 bits for hosts) 2
8
-2
*
= 254 maximum hosts
*
Subtracting the network and broadcast reserved address
Ambo University
7
IPv4 Address Classes
Class D Addresses
•A Class D address begins with binary 1110 in the first octet.
•First octet range 224 to 239.
•Class D address can be used to represent a group of hosts called a
host group, or multicast group.
Class E Addresses
•First octet of an IP address begins with 1111
•First octet range 240 to 255.
•Class E addresses are reserved for experimental purposes and should
not be used for addressing hosts or multicast groups.
7
IPv4 Address Classes
Class D Addresses
•A Class D address begins with binary 1110 in the first octet.
•First octet range 224 to 239.
•Class D address can be used to represent a group of hosts called a
host group, or multicast group.
Class E Addresses
•First octet of an IP address begins with 1111
•First octet range 240 to 255.
•Class E addresses are reserved for experimental purposes and should
not be used for addressing hosts or multicast groups.
Ambo University
8
IP Addresses as Decimal Numbers
8
IP Addresses as Decimal Numbers
Ambo University
9
An IP address such as 176.10.255.255 that has all binary 1s
in the host bit positions is reserved for the broadcast
address.
An IP address such as 176.10.0.0 that has all binary 0s in
the host bit positions is reserved for the network address.
Network IDs and Broadcast Addresses
9
An IP address such as 176.10.255.255 that has all binary 1s
in the host bit positions is reserved for the broadcast
address.
An IP address such as 176.10.0.0 that has all binary 0s in
the host bit positions is reserved for the network address.
Network IDs and Broadcast Addresses
Ambo University
Private Addresses
•These addresses are called non-routable addresses.
10
Private Addresses
•These addresses are called non-routable addresses.
10
Ambo University
11
Reserved Address Space
•Network ID
•Broadcast address
•Hosts for classes of IP addresses
•For Example: For the IP Address 192.168.0.1 with
Subnet mask 255.255.255.0
–Network ID: 192.168.0.0
–Broadcast Address: 192.168.0.255
–Addresses for Hosts: 192.168.0.1 –
192.168.0.254
11
Reserved Address Space
•Network ID
•Broadcast address
•Hosts for classes of IP addresses
•For Example: For the IP Address 192.168.0.1 with
Subnet mask 255.255.255.0
–Network ID: 192.168.0.0
–Broadcast Address: 192.168.0.255
–Addresses for Hosts: 192.168.0.1 –
192.168.0.254
Ambo University
12
Subnetworks
To create a subnet address, a network administrator
borrows bits from the original host portion and
designates them as the subnet field.
12
Subnetworks
To create a subnet address, a network administrator
borrows bits from the original host portion and
designates them as the subnet field.
Ambo University
13
Subnetworks
13
Subnetworks
Ambo University
14
Subnet Mask
•Determines which part of an IP address is the network field and which
part is the host field
•Follow these steps to determine the subnet mask:
–1. Express the subnetwork IP address in binary form.
–2. Replace the network and subnet portion of the address with all
1s.
–3. Replace the host portion of the address with all 0s.
–4. Convert the binary expression back to dotted-decimal notation.
•These days classless Inter Domain Routing (CIDR) is used because
subnetting with ordinary Class A, B, C is not adequate.
14
Subnet Mask
•Determines which part of an IP address is the network field and which
part is the host field
•Follow these steps to determine the subnet mask:
–1. Express the subnetwork IP address in binary form.
–2. Replace the network and subnet portion of the address with all
1s.
–3. Replace the host portion of the address with all 0s.
–4. Convert the binary expression back to dotted-decimal notation.
•These days classless Inter Domain Routing (CIDR) is used because
subnetting with ordinary Class A, B, C is not adequate.
Ambo University
15
Subnet mask in decimal = 255.255.240.0
Subnet Mask
15
Subnet mask in decimal = 255.255.240.0
Subnet Mask
Ambo University
16
Range of Bits Needed to Create Subnets
16
Range of Bits Needed to Create Subnets
Ambo University
17
Subnet Addresses
17
Subnet Addresses
Ambo University
18
Class B address with 8 bits borrowed for the subnet
130.5.2.144 (8 bits borrowed for subnetting) routes to subnet
130.5.2.0 rather than just to network 130.5.0.0.
Determining Subnet Mask Size
18
Class B address with 8 bits borrowed for the subnet
130.5.2.144 (8 bits borrowed for subnetting) routes to subnet
130.5.2.0 rather than just to network 130.5.0.0.
Determining Subnet Mask Size
Ambo University
19
The address 197.15.22.131 would be on the
subnet 197.15.22.128.
11000101 00001111 00010110 100 00011
Network Field SN Host Field
Class C address 197.15.22.131 with a subnet
mask of 255.255.255.224 (3 bits borrowed)
Determining Subnet Mask Size
19
The address 197.15.22.131 would be on the
subnet 197.15.22.128.
11000101 00001111 00010110 100 00011
Network Field SN Host Field
Class C address 197.15.22.131 with a subnet
mask of 255.255.255.224 (3 bits borrowed)
Determining Subnet Mask Size
Ambo University
20
Subnetting Example with AND Operation
20
Subnetting Example with AND Operation
Ambo University
21
The router connects subnetworks and networks.
IP Configuration on a Network Diagram
21
The router connects subnetworks and networks.
IP Configuration on a Network Diagram
Ambo University
22
Using /24
subnet...
190.52.1.2
190.52.2.2
190.52.3.2
NetworkNetworkSubnet Host
But internalrouters think all
these addresses are on different
networks, called subnetworks
Internetrouters still “see” this net as 190.52.0.0
Class BNetworkNetwork Host Host
Given the Class B address 190.52.0.0
Subnet Example
22
Using /24
subnet...
190.52.1.2
190.52.2.2
190.52.3.2
NetworkNetworkSubnet Host
But internalrouters think all
these addresses are on different
networks, called subnetworks
Internetrouters still “see” this net as 190.52.0.0
Class BNetworkNetwork Host Host
Given the Class B address 190.52.0.0
Subnet Example
Ambo University
23
Using the 3rd octet, 190.52.0.0 was divided into:
190.52.1.0 190.52.2.0 190.52.3.0 190.52.4.0
190.52.5.0 190.52.6.0 190.52.7.0 190.52.8.0
190.52.9.0 190.52.10.0 190.52.11.0 190.52.12.0
190.52.13.0 190.52.14.0 190.52.15.0 190.52.16.0
190.52.17.0 190.52.18.0 190.52.19.0 and so on ...
NetworkNetworkSubnet Host
Subnet Example
23
Using the 3rd octet, 190.52.0.0 was divided into:
190.52.1.0 190.52.2.0 190.52.3.0 190.52.4.0
190.52.5.0 190.52.6.0 190.52.7.0 190.52.8.0
190.52.9.0 190.52.10.0 190.52.11.0 190.52.12.0
190.52.13.0 190.52.14.0 190.52.15.0 190.52.16.0
190.52.17.0 190.52.18.0 190.52.19.0 and so on ...
NetworkNetworkSubnet Host
Subnet Example
Ambo University
24
Subnet Example
NetworkNetworkSubnet Host
Network address 190.52.0.0 with /16 network mask
190 52 0 Host
190 52 1 Host
190 52 2 Host
Using Subnets: subnet mask 255.255.255.0 or /24
190 52 3 Host
190 52 Etc. Host
190 52 254 Host
190 52 255 Host
255
Subnets
2
8
-1
Cannot use last
subnet as it
contains broadcast
address
Subnets
24
Subnet Example
NetworkNetworkSubnet Host
Network address 190.52.0.0 with /16 network mask
190 52 0 Host
190 52 1 Host
190 52 2 Host
Using Subnets: subnet mask 255.255.255.0 or /24
190 52 3 Host
190 52 Etc. Host
190 52 254 Host
190 52 255 Host
255
Subnets
2
8
-1
Cannot use last
subnet as it
contains broadcast
address
Subnets
Ambo University
25
Subnet Example
NetworkNetworkSubnet Host
Subnet 0 (all 0’s subnet) issue: The address of the subnet,
190.52.0.0/24 is the same address as the major network,
190.52.0.0/16.
190 52 0 Host
190 52 1 Host
190 52 Etc. Host
190 52 254 Host
190 52 255 Host
255
Subnets
2
8
-1
Subnets
Last subnet (all 1’s subnet) issue: The broadcast address for
the subnet, 190.52.255.255 is the same as the broadcast
address as the major network, 190.52.255.255.
25
Subnet Example
NetworkNetworkSubnet Host
Subnet 0 (all 0’s subnet) issue: The address of the subnet,
190.52.0.0/24 is the same address as the major network,
190.52.0.0/16.
190 52 0 Host
190 52 1 Host
190 52 Etc. Host
190 52 254 Host
190 52 255 Host
255
Subnets
2
8
-1
Subnets
Last subnet (all 1’s subnet) issue: The broadcast address for
the subnet, 190.52.255.255 is the same as the broadcast
address as the major network, 190.52.255.255.
Ambo University
26
The number of lost IP addresses with a Class C network
depends on the number of bits borrowed for subnetting.
Host Subnet Schemes
26
The number of lost IP addresses with a Class C network
depends on the number of bits borrowed for subnetting.
Host Subnet Schemes
Ambo University
27
IP addressing crisis
•Address Depletion
•Internet Routing Table Explosion
27
IP addressing crisis
•Address Depletion
•Internet Routing Table Explosion
Ambo University
28
IPv4 Addressing
Subnet Mask
•One solution to the IP address shortage was thought to be the
subnet mask.
•Formalized in 1985 (RFC 950), the subnet mask breaks a single
class A, B or C network in to smaller pieces.
28
IPv4 Addressing
Subnet Mask
•One solution to the IP address shortage was thought to be the
subnet mask.
•Formalized in 1985 (RFC 950), the subnet mask breaks a single
class A, B or C network in to smaller pieces.
Ambo University
29
Short Term Solutions: IPv4 Enhancements
•CIDR (Classless Inter-Domain Routing) –RFCs 1517,
1518, 1519, 1520
•VLSM (Variable Length Subnet Mask) –RFC 1009
•Private Addressing -RFC 1918
•NAT/PAT (Network Address Translation / Port Address
Translation) –RFC
29
Short Term Solutions: IPv4 Enhancements
•CIDR (Classless Inter-Domain Routing) –RFCs 1517,
1518, 1519, 1520
•VLSM (Variable Length Subnet Mask) –RFC 1009
•Private Addressing -RFC 1918
•NAT/PAT (Network Address Translation / Port Address
Translation) –RFC
Ambo University
30
IPv4 versus IPv6
•IP version 6 (IPv6)has been defined and developed.
•IPv6 uses 128 bits rather than the 32 bits currently used in IPv4.
•IPv6 uses hexadecimal numbers to represent the 128 bits.
IPv4
30
IPv4 versus IPv6
•IP version 6 (IPv6)has been defined and developed.
•IPv6 uses 128 bits rather than the 32 bits currently used in IPv4.
•IPv6 uses hexadecimal numbers to represent the 128 bits.
IPv4
Ambo University
31
Long Term Solution: IPv6 (coming)
•IPv6, or IPng (IP –the Next Generation) uses a 128-bit address
space, yielding
340,282,366,920,938,463,463,374,607,431,768,211,456
possible addresses.
•IPv6 has been slow to arrive
•IPv4 revitalized by new features, making IPv6 a luxury, and not
a desperately needed fix
•IPv6 requires new software; IT staffs must be retrained
•IPv6 will most likely coexist with IPv4 for years to come.
•Some experts believe IPv4 will remain for more than 10 years.
31
Long Term Solution: IPv6 (coming)
•IPv6, or IPng (IP –the Next Generation) uses a 128-bit address
space, yielding
340,282,366,920,938,463,463,374,607,431,768,211,456
possible addresses.
•IPv6 has been slow to arrive
•IPv4 revitalized by new features, making IPv6 a luxury, and not
a desperately needed fix
•IPv6 requires new software; IT staffs must be retrained
•IPv6 will most likely coexist with IPv4 for years to come.
•Some experts believe IPv4 will remain for more than 10 years.
Ambo University
Firewall and Its configuration (Linux)
•A firewall helps screen out malicious users, viruses, and
worms that try to access your network from the Internet.
•Firewalls can be hardware or software, and they help
prevent unauthorized access to your local area network
(LAN) from the Internet by blocking incoming network
traffic that is attempting to use a port that is not open.
•A firewall hides information on your LAN from the Internet,
such as computer names, network topology, and network
device types.
•A firewall can also log traffic to and from the LAN.
32
Firewall and Its configuration (Linux)
•A firewall helps screen out malicious users, viruses, and
worms that try to access your network from the Internet.
•Firewalls can be hardware or software, and they help
prevent unauthorized access to your local area network
(LAN) from the Internet by blocking incoming network
traffic that is attempting to use a port that is not open.
•A firewall hides information on your LAN from the Internet,
such as computer names, network topology, and network
device types.
•A firewall can also log traffic to and from the LAN.
32
Ambo University
Firewall configuration….
•Firewall can be provided in three forms:
–Hardware firewall
–Server Software Firewall
–Client Software Firewall
•The Linux kernel includes the Netfiltersubsystem, which is
used to manipulate or decide the fate of network traffic
headed into or through your server.
•Uncomplicated Firewall (ufw)
–The default firewall configuration tool for Ubuntu is ufw.
–ufw by default is initially disabled.
33
Firewall configuration….
•Firewall can be provided in three forms:
–Hardware firewall
–Server Software Firewall
–Client Software Firewall
•The Linux kernel includes the Netfiltersubsystem, which is
used to manipulate or decide the fate of network traffic
headed into or through your server.
•Uncomplicated Firewall (ufw)
–The default firewall configuration tool for Ubuntu is ufw.
–ufw by default is initially disabled.
33
Ambo University
Firewall configuration…
•The following are some examples of how to use ufw:
–First, ufwneeds to be enabled. From a terminal prompt
enter:
•sudoufwenable
–To open a port (sshin this example):
•sudoufwallow 22
–Rules can also be added using a numbered format:
•sudoufwinsert 1 allow 80
–Similarly, to close an opened port:
•sudoufwdeny 22
–To remove a rule, use delete followed by the rule:
•sudoufwdelete deny 22
34
Firewall configuration…
•The following are some examples of how to use ufw:
–First, ufwneeds to be enabled. From a terminal prompt
enter:
•sudoufwenable
–To open a port (sshin this example):
•sudoufwallow 22
–Rules can also be added using a numbered format:
•sudoufwinsert 1 allow 80
–Similarly, to close an opened port:
•sudoufwdeny 22
–To remove a rule, use delete followed by the rule:
•sudoufwdelete deny 22
34
Ambo University
Firewall configuration…
•It is also possible to allow access from specific hosts or
networks to a port.
–The following example allows sshaccess from host
192.168.0.2 to any ipaddress on this host:
•sudoufwallow proto tcpfrom 192.168.0.2 to any port
22
–Replace 192.168.0.2 with 192.168.0.0/24 to allow ssh
access from the entire subnet.
–ufwcan be disabled by:
•sudoufwdisable
–To see the firewall status, enter:
•sudoufwstatus
35
Firewall configuration…
•It is also possible to allow access from specific hosts or
networks to a port.
–The following example allows sshaccess from host
192.168.0.2 to any ipaddress on this host:
•sudoufwallow proto tcpfrom 192.168.0.2 to any port
22
–Replace 192.168.0.2 with 192.168.0.0/24 to allow ssh
access from the entire subnet.
–ufwcan be disabled by:
•sudoufwdisable
–To see the firewall status, enter:
•sudoufwstatus
35
Ambo University
Firewall configuration….
–And for more verbose status information use:
•sudoufwstatus verbose
–To view the numbered format:
•sudoufwstatus numbered
36
Firewall configuration….
–And for more verbose status information use:
•sudoufwstatus verbose
–To view the numbered format:
•sudoufwstatus numbered
36
Ambo University
Network Interface Configuration (Linux)
•A linuxbox should have its NIC configured to
communicated on the network.
•This can be supplied by the DHCP Server dynamically or
supplied statically by the administrator
•For providing the static address the file
/etc/network/interfaces needs to edited:
–auto eth0
–ifaceeth0 inetstatic
–address 192.168.0.10
–netmask255.255.255.0
–gateway 192.168.0.1
–network 192.168.0.0
–broadcast 192.168.0.255
37
Network Interface Configuration (Linux)
•A linuxbox should have its NIC configured to
communicated on the network.
•This can be supplied by the DHCP Server dynamically or
supplied statically by the administrator
•For providing the static address the file
/etc/network/interfaces needs to edited:
–auto eth0
–ifaceeth0 inetstatic
–address 192.168.0.10
–netmask255.255.255.0
–gateway 192.168.0.1
–network 192.168.0.0
–broadcast 192.168.0.255
37
Ambo University
NIC Configuration….
•The name resolution information needs to be provided on
the /etc/resolv.conf file
–nameserver 192.168.0.5
–nameserver 192.168.0.6
•Finally, the network service has to be started using one of
the following commands:
–service networking restart
–/etc/init.d/networking restart
–ifdown eth0 && ifup eth0
38
NIC Configuration….
•The name resolution information needs to be provided on
the /etc/resolv.conf file
–nameserver 192.168.0.5
–nameserver 192.168.0.6
•Finally, the network service has to be started using one of
the following commands:
–service networking restart
–/etc/init.d/networking restart
–ifdown eth0 && ifup eth0
38
Ambo University
Network troubleshooting commands(Linux)
•ifconfig
–ifconfig(interface configurator) command is use to
initialize an interface, assignIP Addressto interface
andenableordisableinterface on demand.
–With this command you can viewIP
AddressandHardware/MAC addressassign to
interface and alsoMTU(Maximum transmission unit)
size.
–Example: ifconfig eth0
•ifconfigwith interface (eth0) command only shows
specific interface details likeIP Address,MAC
Addressetc
39
Network troubleshooting commands(Linux)
•ifconfig
–ifconfig(interface configurator) command is use to
initialize an interface, assignIP Addressto interface
andenableordisableinterface on demand.
–With this command you can viewIP
AddressandHardware/MAC addressassign to
interface and alsoMTU(Maximum transmission unit)
size.
–Example: ifconfig eth0
•ifconfigwith interface (eth0) command only shows
specific interface details likeIP Address,MAC
Addressetc
39
Ambo University
Network troubleshooting…..
•Enable or Disable Specific Interface
–To enable or disable specific interfaces we use the
following commands respectively.
•ifup eth0 –enables eth0 interface
•ifdown eth0 –disables eth0 interface
•PING Command
–PING(Packet INternet Groper) command is the best
way to test connectivity betweentwo nodes.
–Whether it isLocal Area Network(LAN) orWide Area
Network(WAN).
–Ping useICMP(Internet Control Message Protocol) to
communicate to other devices.
40
Network troubleshooting…..
•Enable or Disable Specific Interface
–To enable or disable specific interfaces we use the
following commands respectively.
•ifup eth0 –enables eth0 interface
•ifdown eth0 –disables eth0 interface
•PING Command
–PING(Packet INternet Groper) command is the best
way to test connectivity betweentwo nodes.
–Whether it isLocal Area Network(LAN) orWide Area
Network(WAN).
–Ping useICMP(Internet Control Message Protocol) to
communicate to other devices.
40
Ambo University
Network troubleshooting…..
–You can ping host name ofip addressusing below
command.
•ping 192.168.0.1 –tests connectivity of the current
machine to machine 192.168.0.1
•traceroute command
–tracerouteis a network troubleshooting utility which
shows number of hops taken to reach destination also
determine packets traveling path.
–Below we are tracing route to globalDNS server IP
Addressand able to reach destination also shows path
of that packet is traveling
41
Network troubleshooting…..
–You can ping host name ofip addressusing below
command.
•ping 192.168.0.1 –tests connectivity of the current
machine to machine 192.168.0.1
•traceroute command
–tracerouteis a network troubleshooting utility which
shows number of hops taken to reach destination also
determine packets traveling path.
–Below we are tracing route to globalDNS server IP
Addressand able to reach destination also shows path
of that packet is traveling
41
Ambo University
Network troubleshooting…..
42
Network troubleshooting…..
42
Ambo University
Network troubleshooting…..
•netstat command
–Netstat(Network Statistic) command display connection
info, routing table information etc.
–To displays routing table information use option as-r.
43
Network troubleshooting…..
•netstat command
–Netstat(Network Statistic) command display connection
info, routing table information etc.
–To displays routing table information use option as-r.
43
Ambo University
Network troubleshooting…
•dig command
–Dig(domain information groper) queryDNSrelated
information likeA Record,CNAME,MX Recordetc.
–This command mainly use to troubleshootDNSrelated
query.
•nslookup command
–nslookupcommand also use to find outDNSrelated
query. The following examples showsA Record(IP
Address) oftecmint.com.
44
Network troubleshooting…
•dig command
–Dig(domain information groper) queryDNSrelated
information likeA Record,CNAME,MX Recordetc.
–This command mainly use to troubleshootDNSrelated
query.
•nslookup command
–nslookupcommand also use to find outDNSrelated
query. The following examples showsA Record(IP
Address) oftecmint.com.
44
Ambo University
Network troubleshooting…..
•host command
–hostcommand helps to find name toIPorIPto name
inIPv4orIPv6and also queryDNSrecords.
•hostname command
–hostnameis to identify in a network.
–Executehostnamecommand to see the hostname of
your box.
–One can configure hostname on /etc/hostname file.
45
Network troubleshooting…..
•host command
–hostcommand helps to find name toIPorIPto name
inIPv4orIPv6and also queryDNSrecords.
•hostname command
–hostnameis to identify in a network.
–Executehostnamecommand to see the hostname of
your box.
–One can configure hostname on /etc/hostname file.
45
Tags
Categories
GeneralDownload
Download Slideshow Get the original presentation fileQuick Actions
Statistics
- Views 1,166
- Slides 45
- Age 1010 days
Related Slideshows
22
Pray For The Peace Of Jerusalem and You Will Prosper
RodolfoMoralesMarcuc
30 views
26
Don_t_Waste_Your_Life_God.....powerpoint
chalobrido8
32 views
31
VILLASUR_FACTORS_TO_CONSIDER_IN_PLATING_SALAD_10-13.pdf
JaiJai148317
30 views
14
Fertility awareness methods for women in the society
Isaiah47
29 views
35
Chapter 5 Arithmetic Functions Computer Organisation and Architecture
RitikSharma297999
26 views
5
syakira bhasa inggris (1) (1).pptx.......
ourcommunity56
28 views