Networking Essentials For Firewall-1 Administrators

Slides:



Advertisements
Similar presentations
Cisco 2 - Routers Perrine. J Page 14/30/2015 Chapter 10 TCP/IP Protocol Suite The function of the TCP/IP protocol stack is to transfer information from.
Advertisements

Chapter 14 TCP/IP and Routing Part #1 Unix System Administration.
Introduction to TCP/IP
Institute of Technology Sligo - Dept of Computing Semester 2 Chapter 9 The TCP/IP Protocol Suite Paul Flynn.
Defining Network Protocols Application Protocols –Application Layer –Presentation Layer –Session Layer Transport Protocols –Transport Layer Network Protocols.
Chapter Overview TCP/IP Protocols IP Addressing.
Wireshark and TCP/IP Basics ACM SIG-Security Lance Pendergrass.
IST 228\Ch3\IP Addressing1 TCP/IP and DoD Model (TCP/IP Model)
1 © 2003, Cisco Systems, Inc. All rights reserved. CCNA 1 v3.0 Module 9 TCP/IP Protocol Suite and IP Addressing.
OSI Model Routing Connection-oriented/Connectionless Network Services.
Network Redundancy Multiple paths may exist between systems. Redundancy is not a requirement of a packet switching network. Redundancy was part of the.
NetworkProtocols. Objectives Identify characteristics of TCP/IP, IPX/SPX, NetBIOS, and AppleTalk Understand position of network protocols in OSI Model.
Chapter 9.
1 © 2004, Cisco Systems, Inc. All rights reserved. Chapter 4 Routing Fundamentals and Subnets/ TCP/IP Transport and Application Layers.
Cisco – Chapter 11 Routers All You Ever Wanted To Know But Were Afraid to Ask.
Networks – Network Architecture Network architecture is specification of design principles (including data formats and procedures) for creating a network.
© 2007 Cisco Systems, Inc. All rights reserved.Cisco Public 1 Version 4.0 Network Services Networking for Home and Small Businesses – Chapter 6.
Chapter Three Network Protocols By JD McGuire ARP Address Resolution Protocol Address Resolution Protocol The core protocol in the TCP/IP suite that.
Chap 9 TCP/IP Andres, Wen-Yuan Liao Department of Computer Science and Engineering De Lin Institute of Technology
11 NETWORK LAYER PROTOCOLS Chapter 5 IP IPX NetBEUI AppleTalk.
Fall 2005Computer Networks20-1 Chapter 20. Network Layer Protocols: ARP, IPv4, ICMPv4, IPv6, and ICMPv ARP 20.2 IP 20.3 ICMP 20.4 IPv6.
TCP/IP TCP/IP LAYERED PROTOCOL TCP/IP'S APPLICATION LAYER TRANSPORT LAYER NETWORK LAYER NETWORK ACCESS LAYER (DATA LINK LAYER)
ECE 526 – Network Processing Systems Design Networking: protocols and packet format Chapter 3: D. E. Comer Fall 2008.
1 TCP/IP Internetting ä Subnet layer ä Links stations on same subnet ä Often IEEE LAN standards ä PPP for telephone connections ä TCP/IP specifies.
TCP/IP Protocols Contains Five Layers
Internetworking Internet: A network among networks, or a network of networks Allows accommodation of multiple network technologies Universal Service Routers.
TCP/IP Honolulu Community College Cisco Academy Training Center Semester 2 Version 2.1.
CCNA 1 v3.0 Module 9 TCP/IP Protocol Suite and IP Addressing.
Basic IP Protocol Natawut Nupairoj, Ph.D. Department of Computer Engineering Chulalongkorn University.
1 Chapter 8 – TCP/IP Fundamentals TCP/IP Protocols IP Addressing.
Instructor & Todd Lammle
Networking Fundamentals Network Protocols. Protocol Rule for how networks communicate Each OSI layer handled by one or more protocols Protocol Suites.
Presented by Rebecca Meinhold But How Does the Internet Work?
CCNA 1 v3.0 Module 9 TCP/IP Protocol Suite and IP Addressing
1 12-Jan-16 OSI network layer CCNA Exploration Semester 1 Chapter 5.
Page 12/9/2016 Chapter 10 Intermediate TCP : TCP and UDP segments, Transport Layer Ports CCNA2 Chapter 10.
NT1210 Introduction to Networking
1 OSI Reference Model Benefits Standardizes interfaces Facilitates modular engineering Ensures interoperable technology Accelerates evolution Simplifies.
1 28-Sep-16 S Ward Abingdon and Witney College CCNA Exploration Semester 1 OSI network layer CCNA Exploration Semester 1 Chapter 5.
© 2006 Cisco Systems, Inc. All rights reserved.Cisco Public 1 OSI network layer CCNA Exploration Semester 1 – Chapter 5.
Introduction to TCP/IP
Instructor Materials Chapter 5: Ethernet
Chapter 3 Understanding the OSI Model
Implementing TCP/IP.
Scaling the Network: The Internet Protocol
Part I. Overview of Data Communications and Networking
Networking for Home and Small Businesses – Chapter 6
How data travels through a network The Internet
Byungchul Park ICMP & ICMPv DPNM Lab. Byungchul Park
Net 431: ADVANCED COMPUTER NETWORKS
Net 323: NETWORK Protocols
NT2640 Unit 1 Activity 1 Handout
Networking for Home and Small Businesses – Chapter 6
Introducing ACL Operation
NT1210 Introduction to Networking
CS 457 – Lecture 10 Internetworking and IP
TCP/IP Networking An Example
Module 9: TCP/IP Protocol Suite and IP Addressing
Week 5: Network Protocols Part 1
TCP/IP Protocol Suite: Review
1 TRANSMISSION CONTROL PROTOCOL / INTERNET PROTOCOL (TCP/IP) K. PALANIVEL Systems Analyst, Computer Centre Pondicherry University, Puducherry –
Chapter 2 Network Models
Network Models CCNA Instructor Training Course October 12-17, 2009
ARP: Address Resolution Protocol
Data Communication Networks
Scaling the Network: The Internet Protocol
Networking for Home and Small Businesses – Chapter 6
The TCP/IP Model.
Review of Internet Protocols Network Layer
Objectives: 1.Identify different internet protocol (IP) 2.Configure sample of IP address 3.Appreciate and relate protocol in our life.
Presentation transcript:

Networking Essentials For Firewall-1 Administrators “What You Need To Know Before The Packets Flow” Copyright © 2006 Information Engine, Inc. Unsure? CaughtMeAPirate@InformationEngine.com

Brief Networking Review 1. Networking Protocols 2. IP Protocols 3. The OSI Seven-Layer Networking Model 4. TCP And UDP 5. IP Addresses, Subnet Masks and Routing 6. Address Resolution Protocol (ARP) 7. Putting It All Together Copyright © 2006 Information Engine, Inc. Unsure? CaughtMeAPirate@InformationEngine.com

1. Networking Protocols IP (Internet Protocol) It’s special for two reasons: The Official Protocol for the Internet The Only Protocol Supported By VPN-1/Firewall-1! IPX (Internetwork Packet eXchange) AppleTalk DECnet NetBEUI Many, Many Others

2. IP Protocols Some of the Values of the IP Protocol Field: 1: Internet Control Message Protocol (ICMP) 6: Transmission Control Protocol (TCP) 17: User Datagram Protocol (UDP) 50: IP Security Encapsulating Security Payload (ESP) 51: IP Security Authentication Header (AH)

3. The OSI Seven-Layer Networking Model 7. Application 6. Presentation 5. Session 4. Transport 80 3. Network 205.219.84.5 2. Data Link 00-06-A3-43-E1-F4 1. Physical

Why Use The 7 Layer Model? Outbound Packets: An outbound packet travels down the stack and leaves the IP host from below At many layers, it gets wrapped in additional headers and a checksum footer

Why Use The 7 Layer Model? Inbound Packets: An inbound packet enters from below and travels up the stack At many layers, it gets unwrapped and a header and checksum footer gets stripped off

Why Use The 7 Layer Model? Each layer is effectively using the packet to communicate with only the corresponding layer on the partner IP host

Where Does Firewall-1 Fit In? Below Layer 3 Above Layer 2 Both Inbound and Outbound

Firewall-1 Does These Things To A Packet Anti-Spoof Checking: Uses Source IP Address Filtering: Uses both Source and Destination IP Address Uses both Source and Destination Ports NAT: Can change Source or Destination IP Address Can change Source or Destination Port Number Routing: Uses Destination IP Address

4. TCP And UDP TCP: UDP: Connection-oriented Missed a packet? Please re-send. Sort of like a phone call UDP: Connection-less Missed a packet? Tough. Sort of like a radio station

Port Numbers Only on TCP and UDP! Q: How Does Port Address Translation Disambiguate ICMP Traffic? A: (Discussion)

Common Port Numbers HTTP: TCP Port 80 Telnet: TCP Port 23 FTP: TCP Port 21 DNS: Lookups: UDP Port 53 Zone Transfers: TCP Port 53 SMTP: TCP Port 25 POP3: TCP Port 110

5. IP Addresses, Subnet Masks And Routing Dotted Quad Notation: This is only a way to represent 32 bits in a human-friendly format Example: 11001101|11011011|01010100|00000101 == 205| 219| 84| 5 == 205.219.84.5

Dotted Quad Notation Dotted Quad Notation: Another Example: 11111111|11111111|11111111|00000000 == 255| 255| 255| 0 == 255.255.255.0

The Subnet Mask An IP Address really consists of two contiguous parts: A Network Number (the first N bits), followed by A Host ID (the remaining 32-N bits) Where N is the number of bits in the subnet mask The bit count always sums to 32 (Assuming IPv4 here)

The Two Most Important Subnet Mask Facts A subnet mask is always a continuous series of 1’s followed by a continuous series of 0’s, with a total count of 32 binary digits The traditional dotted quad notation for a subnet mask is simply the decimal representation of this 32-bit mask

There Are Only 33 Possible Subnet Masks (Page 1 of 5) 00000000|00000000|00000000|00000000 0.0.0.0 /0 10000000|00000000|00000000|00000000 128.0.0.0 /1 11000000|00000000|00000000|00000000 192.0.0.0 /2 11100000|00000000|00000000|00000000 224.0.0.0 /3 11110000|00000000|00000000|00000000 240.0.0.0 /4 11111000|00000000|00000000|00000000 248.0.0.0 /5 11111100|00000000|00000000|00000000 252.0.0.0 /6 11111110|00000000|00000000|00000000 254.0.0.0 /7

There Are Only 33 Possible Subnet Masks (Page 2 of 5) 11111111|00000000|00000000|00000000 255.0.0.0 /8 11111111|10000000|00000000|00000000 255.128.0.0 /9 11111111|11000000|00000000|00000000 255.192.0.0 /10 11111111|11100000|00000000|00000000 255.224.0.0 /11 11111111|11110000|00000000|00000000 255.240.0.0 /12 11111111|11111000|00000000|00000000 255.248.0.0 /13 11111111|11111100|00000000|00000000 255.252.0.0 /14 11111111|11111110|00000000|00000000 255.254.0.0 /15

There Are Only 33 Possible Subnet Masks (Page 3 of 5) 11111111|11111111|00000000|00000000 255.255.0.0 /16 11111111|11111111|10000000|00000000 255.255.128.0 /17 11111111|11111111|11000000|00000000 255.255.192.0 /18 11111111|11111111|11100000|00000000 255.255.224.0 /19 11111111|11111111|11110000|00000000 255.255.240.0 /20 11111111|11111111|11111000|00000000 255.255.248.0 /21 11111111|11111111|11111100|00000000 255.255.252.0 /22 11111111|11111111|11111110|00000000 255.255.254.0 /23

There Are Only 33 Possible Subnet Masks (Page 4 of 5) 11111111|11111111|11111111|00000000 255.255.255.0 /24 11111111|11111111|11111111|10000000 255.255.255.128 /25 11111111|11111111|11111111|11000000 255.255.255.192 /26 11111111|11111111|11111111|11100000 255.255.255.224 /27 11111111|11111111|11111111|11110000 255.255.255.240 /28 11111111|11111111|11111111|11111000 255.255.255.248 /29 11111111|11111111|11111111|11111100 255.255.255.252 /30 11111111|11111111|11111111|11111110 255.255.255.254 /31

There Are Only 33 Possible Subnet Masks (Page 5 of 5) 11111111|11111111|11111111|11111111 255.255.255.255 /32

Why Do We Have Subnet Masks? So it’s easy to tell whether an IP address is a member of an IP subnet

How Does A Router Route? Step 1. For each IP interface, use the subnet mask to mask both the IP address on the interface and the destination IP address for the packet in hand. If they match, the we’re done with routing and can use Layer 2 (usually Ethernet) to deliver the packet.

How Does A Router Route? Step 2. If this comparison of masked IP addresses fails for every IP interface, then iterate through your routing table to determine the next hop and which interface to use to get there. Then send the packet to this next hop by Ethernet, using ARP if necessary to get the MAC address of the destination NIC.

How Does A Router Route? This business of determining whether to deliver a packet by Layer 2 or route it to its next hop is known as asking yourself: “Do I Route Or Do I Shout?” “Route” = = “Not in local network, send to next hop” “Shout” == “Resolve by ARP and send by Layer 2”

6. Address Resolution Protocol (ARP) Resolves the Forwarding IP Address of a Node to its Corresponding Media Access Control (MAC) Address, typically its Ethernet address ARP Request Message: “Any Ethernet host on this segment with the IP address of 205.219.84.5?” ARP Reply Message: “That’s me, at 00-03-22-5E-3C-21!”

Address Resolution Protocol (ARP) The ARP Cache Is A RAM-Based Table Of IP-to-MAC Address Mappings Cisco IOS: Timeout is 3 Hours Windows: Timeout is 2 Minutes (Renewable Through Use to 10 Minutes)

7. Putting It All Together Example and Demonstration

Feedback: Privacy Policy Feedback
Do Not Sell My Personal Information
About project: SlidePlayer Terms of Service

© 2025 SlidePlayer.com. Inc. All rights reserved.