1/117 Switch internals Floor SwitchCore Switch L3 Default NSNA port VLAN L2 Filter NSNA default VLANs access Filter per VLAN DHCP Relay Agent DHCP Relay.

Slides:

Advertisements

Similar presentations

Advertisements

KX-HGT100 SIP-Phone. KX-HGT100 Configuration (1) User name: KX-HGT100 Password: kx-hgt100 1.Connect the HGT100 to the LAN via a suitable switch port 2.Power.

©2012 ClearOne Communications. Confidential and proprietary. COLLABORATE ® Video Conferencing Networking Basics.

CCNPv5 Minimizing Service Loss and Data Theft in a Campus Network 1 Minimizing Service Loss and Data Theft in a Switched BCMSN Module 8 – Sec 2.

11 TROUBLESHOOTING Chapter 12. Chapter 12: TROUBLESHOOTING2 OVERVIEW  Determine whether a network communications problem is related to TCP/IP.  Understand.

WAN Connectivity The VMO Wide Area Network will extend between all stores, offices, and Lyon, France We have designed a highly redundant network with.

1 Some TCP/IP Basics....NFSDNSTELNETSMTPFTP UDPTCP IP and ICMP Ethernet, serial line,..etc. Application Layer Transport Layer Network Layer Low-level &

CCNA Guide to Cisco Networking Fundamentals Fourth Edition Chapter 9 Network Services.

網際網路協定基礎介紹 Data Communications and Computer Networks: A Business User’s Approach Fifth Edition (Chap 10)

H.323/ SIP Internet Telephony Gateway

Everything. MACIP End-host IP: MAC: 11:11:11:11:11 gateway IP: MAC: 22:22:22:22:22 Google server IP: MACIP MACInterfaceMACInterface.

Lecture 8 Modeling & Simulation of Communication Networks.

1 Enabling Secure Internet Access with ISA Server.

Virtual LANs. VLAN introduction VLANs logically segment switched networks based on the functions, project teams, or applications of the organization regardless.

RADIUS Server (Brocade Controller)

© 2007 Cisco Systems, Inc. All rights reserved.Cisco Public 1 Application Layer Functionality and Protocols Network Fundamentals – Chapter 3.

MCTS Guide to Microsoft Windows Server 2008 Network Infrastructure Configuration Chapter 9 Network Policy and Access Services in Windows Server 2008.

Advanced Networking for DVRs

1 Chapter 6 Network Security Threats. 2 Objectives In this chapter, you will: Learn how to defend against packet sniffers Understand the TCP, UDP, and.

CNT-150VT. Question #1 Your name Question #2 Your computer number ##

Workshop 1: Introduction to TCP/IP

Load-Balance/Route Policy Advanced Routing. Outline How does it Work – When matching criteria, send via the route What does it Do – 2 real usage examples.

Module 7: Configuring TCP/IP Addressing and Name Resolution.

CN2668 Routers and Switches Kemtis Kunanuraksapong MSIS with Distinction MCTS, MCDST, MCP, A+

Virtual Local Area Networks. Should I V-LAN? 1. Security V-LANs can restrict access to network resources.

CHAPTER 2 PCs on the Internet Suraya Alias. The TCP/IP Suite of Protocols Internet applications – client/server applications The client requested data.

DHCP Dynamic Host Configuration Protocol Information management 2 Groep T Leuven – Information department 2/18 Agenda Introduction BOOTP.

Objectives Configure routing in Windows Server 2008 Configure Network Address Translation 1.

© 2008 Cisco Systems, Inc. All rights reserved.Cisco ConfidentialPresentation_ID 1 Chapter 10: DHCP Routing & Switching.

© 2007 Cisco Systems, Inc. All rights reserved.Cisco Public 1 Version 4.0 Application Layer Functionality and Protocols.

DPH-140S Peer-to-Peer Layout Call Flow: HO  Branch.

Module 12: Routing Fundamentals. Routing Overview Configuring Routing and Remote Access as a Router Quality of Service.

DHCP Security DHCP Snooping and Security David Mitchell 03/19/2008.

NUS.SOC.CS2105 Ooi Wei Tsang Application Transport Network Link Physical you are here.

Week 7 Objectives Installing a DHCP Server Role Configuring DHCP Scopes Managing a DHCP Database Securing and Monitoring DHCP.

Internet Ethernet Token Ring Video High Speed Router Host A: Client browser: REQUEST:http//mango.ee.nogradesu.edu/c461.

Module 9: Designing Network Access Protection. Scenarios for Implementing NAP Verifying the health of: Roaming laptops Desktop computers Visiting laptops.

Why Use DHCP? DHCP reduces the complexity and amount of administrative work by using automatic TCP/IP configuration Manual TCP/IP Configuration IP addresses.

Pack-it Technology Highly versatile Internet connectivity solution for non-Internet enabled devices. Seamless interface with RS232, Ethernet, switches,

Exploring Office 2003 – Grauer and Barber HTML And Basic Web page.

1 TCP/IP, Addressing and Services S. Hussain Ali M.S. (Computer Engineering) Department of Computer Engineering King Fahd University of Petroleum and Minerals.

Mr C Johnston ICT Teacher BTEC IT Unit 09 - Lesson 09 Network Services.

Application Block Diagram III. SOFTWARE PLATFORM Figure above shows a network protocol stack for a computer that connects to an Ethernet network and.

Resnet Enhancements and Directions Part 1, Bruce Campbell, Information Systems and Technology.

DHCP Meha Modi. “Dynamic Host Configuration Protocol” Automatically assigns IP addresses to devices (I.e. hosts) on your network. -Prevents to enter data.

Presented by Rebecca Meinhold But How Does the Internet Work?

ACCESS CONTROL LIST.

Monitoring Troubleshooting TCP/IP Chapter 3. Objectives for this Chapter Troubleshoot TCP/IP addressing Diagnose and resolve issues related to incorrect.

Chapter 6: Securing the Local Area Network

Allocating IP Addressing by Using Dynamic Host Configuration Protocol.

7.4 Update - ISE Session.

1 Internet Protocols To support the Internet and all its services, many protocols are necessary Some of the protocols that we will look at: –Internet Protocol.

Serial Server Configuration Peter Szyszko. Hardware Configuration  Unit has to be connected to network and powered.  Computer has to be connected to.

Mr C Johnston ICT Teacher BTEC IT Unit 09 - Lesson 09 Network Services.

ZoneDirector WISPr/Guest/Web Auth

End-host IP: MAC: 11:11:11:11:11 gateway IP: MAC: 22:22:22:22:22 Google server IP: interne t interface DNS server IP:

Chapter 5c.  Upon completion of this chapter, you should be able to:  Configure IP addresses  Identify & select valid IP addresses for networks  Configure.

Xbox Wireless Errors & Troubleshooting. Network: Failed Internet: Failed Xbox LIVE: Failed NAT: Connection Warning.

© 2006 Cisco Systems, Inc. All rights reserved.Cisco Public 1 VLANs.

Ip addressing: dhcp & dns

NAT、DHCP、Firewall、FTP、Proxy

Virtual Local Area Networks or VLANs

Switch Setup Connectivity to Other locations Via MPLS/LL etc

Allocating IP Addressing by Using Dynamic Host Configuration Protocol

Ip addressing: dhcp & dns

AbbottLink™ - IP Address Overview

Configuring Cisco 2650 Router By John Teissonniere Manny Jacome

Computer Networks Protocols

What’s New In WatchGuard Wi-Fi Cloud v8.6

Presentation transcript:

1/117 Switch internals Floor SwitchCore Switch L3 Default NSNA port VLAN L2 Filter NSNA default VLANs access Filter per VLAN DHCP Relay Agent DHCP Relay additional VLANs VoIP drop all except: DHCP, DNS ARP, ICMP, UNISTIM UDP port RTP UPD ports Filter restrict each VLAN down to the minimum of communication Department: devolvement drop all except: DHCP, DNS, ARP, SMB HTTP/HTTPS destined to SNAS restricted drop all except: DHCP, DNS, ARP, SMB HTTP/HTTPS destined to SNAS Guest drop all except: DHCP, DNS, ARP, ICMP HTTP/HTTPS destined to SNAS all traffic to internet Printer drop all except: DHCP, DNS ARP, ICMP, LPR, IPP, TCP/515 & 9100 All from source Print Server Remediation drop all except: DHCP, DNS, ARP, ICMP HTTP/HTTPS destined to SNAS all traffic to Yellow-1 Subnet Department: engineering drop all except: DHCP, DNS, ARP, SMB HTTP/HTTPS destined to SNAS Port assignment either static or 802.1x or NSNA

2/117 Enter the network SNASFloor SwitchCore Switch L3 DHCPDNS LDAP Radius request IP start Internet Explorer and open a web page ( Login through the captive portal validate user connect PC Tunnel Guard check L2 DHCP provides IP = red VLAN IP DNS = SNAS VIP PC DNS query goes to the SNAS VIP and get the VIP back = SNAS VIP

3/117 Integrity check fails Floor SwitchCore Switch DHCPDNSRemediation corporate policy compliant L2 reconfigure switch => NO inform Access Controller issue new IP (triggered through TG) TG inform third party application L3 SNAS

4/117 Integrity check fails => pass Floor SwitchCore Switch Server Farm DHCPDNS L2L3 corporate policy compliant reconfigure switch inform Access Controller issue new IP (triggered through TG) => OK ready to work SNAS

5/117 Integrity check pass Floor SwitchCore Switch Server Farm DHCPDNS L2L3 corporate policy compliant reconfigure switch inform Access Controller issue new IP (triggered through TG) => OK ready to work SNAS

6/117 Voice over IP (i200x) Floor SwitchCore Switch central voice services DHCPDNS L2L3 connect IP phone DHCP-SV provide the VLAN ID request IP ready to work SNAS inform Access Controller tagging DHCP offer with VLAN tag ID with IP from white IP range DHCP provide the call SV parameter request IP again with VLAN ID tag