Professional Documents
Culture Documents
CCNA Network Methodology & Terminology
CCNA Network Methodology & Terminology
CCNA Network Methodology & Terminology
- (Bus Topology):
-
==============================================================================
- [(TCP/IP) and Subnet Masking]:
===============================
- [(TCP/IP) Transmission Control Protocol/Internet Protocol]: Is an
example of a (Network Model) which is the (Standard) and the most widley used
(Networking Model).
` Support for (TCP/IP) can be found on practically every computer
(Operating System) in existence today, from (Mobile phones to Mainframe Computers).
- The (OS) on the computer implements parts of the TCP/IP Model.
The (Ethernet card/Wireless LAN card), built in to the computer implements (Some
LAN standards) referenced by the (TCP/IP model).
In short, the (vendors) that created the (hardware &
software) implemented TCP/IP.
- The [(IP) Protocol] is one of two of the main [(TCP/IP) Protocol
Suite].
- The [(IP) Protocol] deals with such things called [(IP)
addresses, Subnet Mask, Default Gateway, DNS, ... extra].
- The [(IP) Protocol] is what allows (2-Computers) to (figure-out)
where the other one is, so they can start communication.
-
-
==============================================================================
- [Network (Topology, Components, Devices, or Nodes)]:
=====================================================
- (Hub):
- (Hubs) of course forward (Broadcasts), because (Hubs) do
not even think about the (Electrical signal) as an (Ethernet frame).
- LAN hubs do not place each interface into a separate
collision domain.
- (Bridges):
- (Bridges) Use the same (Forwarding logic) as (Hubs), and
upon do (Flooding LAN Broadcasts).
- LAN (Bridges),Which use the same logic as (Switches),
placed (each Interface) into a (Separate Collision Domain).
- (Switch):
- Is a (Network Device) that Connects Multiple PCs to form a
(Single Local Area Network).
- It (Recieves) a (Requist/Packet) from a (Specific Source
Interface Port) and (Sends) it to a (One Specific Destination Interface Port).
- There are (2-Types) of (Switchs), those are:
- [(Layer-2) Switchs]:
- [Multi-Layer(Layer-2 & Layer-3) Switchs]: It
Contains both devices (Switch & Router) combined in (One device), it also containes
a (Grate Number of Interface Ports) that
Its number can be devided & assigned
optionaly between both entities, the (Switch) & the (Router) in any suitable
(Ratios).
- LAN (Switches) place each (Separate Interface) into a
(Separate Collision Domain).
- (Switches) Use the same (Forwarding logic) as (Hubs), and
upon do the process of (Flooding LAN Broadcasts).
- (Router):
- Is the (Only Network Component) that has the ability to
(Attach Together) more than One (Network) to communicate easily as the case of
being (One Huge Network),
- Although some Networks might be in a different
communication technologies.
i.e. it can keep permenant linkage between different
Networks, even if they are in different technologies.
- It's also the (Only Network Component) that has the ability
to (Recieve) the so called (Packet/Requist) from a (Specific Source Network) and
(reDirect/send it) to a (Specific Distenation Network).
- Each (Interface Port) in the (Router) consider individualy
to be a (Completely Separated individual Network) from any others adjacent
(Interface Port), Hence each (Interface) is a (Broadcast Domain).
- The (Router) is the (Only Network Component) that doesn't
forward a (LAN Boadcast).
- The (Routers), as a side effect of their (Routing logic),
do not forward (Ethernet Broadcast Frames), so they (Separate a Network) into
(Separate Broadcast Domains).
- (Routers) place each (LAN Interface) into a separate
(Collision Domain). (The term (Collision Domain) does not apply to (WAN
Interfaces).
- Routers are networking devices that connect the parts of
the TCP/IP network together for the purpose of [Routing (forwarding)] IP packets to
the correct destination.
- Routers do the equivalent work done by each post office
site:
They receive IP packets on various physical
interfaces, make decisions based on the IP address included with the packet, and
then physically forward the packet out some other network interface.
- (Modern LANs):
- A (Modern LANs), with all (LAN Switches & Routers), with
(Full Duplex) on each (Link), would not have (Collisions) at all.
- In a modern LAN with all switches and routers, even though
full duplex removes collisions, think of each Ethernet link as a separate collision
domain when the need to troubleshoot arises.
-
==============================================================================
- [(SDN) Software Defined Network]:
- [(Northbound/Southbound) Interfaces]:
- Northbound Interface: Is an [(API) Application Programming
Interface] or [Protocol] that allows a Lower-level Network Component to establish a
communication with a higher-level or more Central Component.
- Southbound Interface: While, conversely, Southbound
Interface allows a Higher-level Component to (Send Commands) to (Lower-level
Network Components].
- The higher-level elements (Control) the Lower-level ones. The
Lower-level elements may be (Ask/Requist) the Higher-level ones.
- Some designs also have east-west interfaces for communication
among peers.
- [(Northbound/Southbound) Interfaces] are most associated with
[(SDN) Software Defined Network] , but can also be used in any (System) that uses a
(Hub & spoke) or (Controller & Nodes) Architectures.
- [(Northbound/Southbound) Data-flow/traffic]:
- [(East/West) Interfaces]:
-
-
-
==============================================================================
(World Wide International, Regional and Local Organizations)
==============================================================================
- [(RIR) Regional Internet Registry]:
- [(RIR) Regional Internet Registry] (Manages the (Allocation &
Registration) of (Internet Number Resources) in a (Particular region) of the world
and (Maintains) a (Unique registry) of all (IP numbers) issued.
- (Internet Number Resources): Include [IP addresses (IPv4 and
IPv6)] and. [(ASN) Autonomous system Numbers].
- [(ASN) Autonomous System Numbers]:
- Is a (Unique Identifier) that is globally available
and allows its (Autonomous System) to (Exchange Routing Information) with other
systems.
- Is a globally unique identifier that defines a group
of one or more IP prefixes run by one or more (Network Operators) that [Maintain a
single, clearly-defined (Routing policy)].
These groups of (IP prefixes) are known as
(Autonomous Systems).
==============================================================================
- [(CSMA/CD) Carrier Sense Multiple Access with Collision Detection]:
- A (Collision Domain): Is the set of NICs and (Device Ports) for
which if the (NICs) sent a (frame) at the same time, the (frames) would (Collide).
==============================================================================
- The [(OSI) (7)-Layers Networking Model]:
- The (Application Layer):
- [(TCP/IP) Application layer Protocols] provide
(Services) to the (Application software) running on a computer.
- The [(TCP/IP) Application layer] doesn't define the
(Application) itself, but it defines (Services) that (Applications) needs.
- In short, the (Application layer) provides an
(Interface) between (Software) running on a computer and the (Network) itself.
- [(TCP/IP) Application layer] has many protocols
exist, The most popular (TCP/IP application) today is the (Web browser), that
mostly use the [(HTTP) Application Layer Protocol].
- Each device that uses TCP/IP, i.e. (each TCP/IP host), needs a (Unique
Address) so that it can be identified in the network.
- (IP) also defines how to group addresses together, just like the postal
system groups addresses based on postal codes (like ZIP codes).
- It Defines
the (Routing) [Mechanisms, ...]
-
- (IP) provides several (Features), but the (Most-2)
important features are, [Addressing & Routing].
- (IP host) refers to (Any Device), regardless of size
or power, that has an (IP address) and connects to any (TCP/IP Network).
- In sending a (Packet) from an [IP Host Server (Local
Network LAN-src/Router R-src)] to an [IP Host Client (Local Network LAN-dst/Router
R-dst)] Over a set of (N-Routers),
(i.e.): [ (R-src) + [Routers(Rj), j= 1,..., n-2]
+ (R-dst) ],
Where: (IP Host Server): Is the (Source)
from which the (Packet) will be sent.
---(LAN-src)----: Is the Local Area
Network that the (Source Server) belongs to.
----(R-src)-----: Is the (Most
Nearby Router) on the same (LAN—src), with the expectation that (R-src) will know
[How to forward the (Packet)].
===================================================================================
===============================================================
(IP Host Client): Is the
(Distenation) to which the (Packet) will be reached.
---(LAN-dst)----: Is the Local Area
Network that the (Distenation Client) belongs to.
----(R-dst)-----: Is the (Most
Nearby Router) on the same (LAN—dst).
===================================================================================
===============================================================
==============================================================================
- [Firewall (Definition & Types)]:
=================================
- (Firewall Definition):
- (Firewall) is a (System) that is designed to (Prevent
Unauthorized Access) from entering a (Private Network) by (filtering) the
(Information) that (Comes In) from the (Internet).
It [(Blocks) Unwanted traffic] and [(Permits) Wanted
traffic], so it (Filters) the (Incoming Data Packets) and (Determinds) by its
(Access Rules) if it's (Allowd) to enter the (Network).
- One Way by which the (Firewall) Controls the (Traffic)
coming (Into & Out) of the (Network) is through its [Access Control List(ACL)],
which is defined as follow:
- [Access Control List(ACL)]: Is a (Set of Rules)
on (What can access the network), i.e. it either [Grant(Allow)] or [Revoke(Deny)]
Network (Access Permissions).
- [(Implicit Deny)]: Most (Firewalls) comes
with a (Default Rule) of an (Implicit Deny), meaning that the (Firewall) only
(Allow) traffic specificaly (Allowed) in the (ACL).
- [Granting/Revoking Permissions] in a (Firewall)
can be done through the following 2-Methods:
- (Totally) : Through
(Granting/Revoking) a (Total Permission) to a (Device) in terms of its (IP
address) in the [Access Control List(ACL)],
- Example: |
=====[Access Contains List]=====| |
===================================================================================
=======================================
|
(162.213.214.140) Allow | | Here, Only (2-Devices) are (Allowed) to
have (Access) to the (Network), (i.e.) (Allow)-- means --> (Get Network Access).
|
(054.021.066.112) Allow | | Here also, (1-Device) is explicitly and
entirly (Denied) to have (Access) to the (Network), both in terms of each (IP
address)],
|
(040.055.130.066) Deny | | Hence the (Access) is (General), not
specific to any [Certain (/Port Numbers/Protocols)].
|
================================| |
===================================================================================
=======================================
- (Partially) : Through
(Granting/Revoking) a (Partial Permission) to a (Device) in terms of a (Specific
Port Numbers) in the [Access Control List(ACL)],
- Example: |
=====[Access Contains List]=====| |
===================================================================================
=======================================
|
Port(80) Allow | | Here on the (ACL), there is Only (1-Rule)
that (Allows) [Port(80)] the (Device) can [Only Access(Web Pages)]
|
Port(xx) Deny | |
|
: : | |
=================================| |
===================================================================================
=======================================
- Firewall Types:
- (Host Based Firewall):
- Network Based Firewall:
-
-
-
-
-
-
-
-
-
-
-
-
-
-
-
-
-
-
-
-
-
-
-
-
-
-
-
-
-
-
==============================================================================( Acr
onyms )============================================================================
==
- [(IPS) Intrusion Prevention System]:
- [(DPI) Deep Packet Inspection]:
- [(NGFW) Next Generation FireWalls]: Is a (2) in (1) Solution Network
Device, i.e. it contains both (Firewall & IPS).
-
-
-
-
-
-
-
-
-
-
-