Ccnsp v2.0ael Module 1

7/23/2019 Ccnsp v2.0ael Module 1

1/48

Copyright 2012 Cyberoam Technologies Pvt. Ltd. All Rigtraining.cyberoam.com

Cyberoam Certifed Network & Security Proes


2/48

Ravi Pithaala

Pre!sales Cons"ltant

Cyberoam #ndia

$mail% ravi.pithaala&cyberoam.com

Learningtraining.cyberoam.com

Introduction ' About Mysel


3/48

$stablished in 1$stablished in 1

)*0+ $mployees)*0+ $mployees

,ales- istrib"tion Channel and C"stomers across 12*+,ales- istrib"tion Channel and C"stomers across 12*+

Co"ntriesCo"ntriesAmongst the top / global players or netor sec"rityAmongst the top / global players or netor sec"rity

eat"reseat"resPatent or #dentity!based anagementPatent or #dentity!based anagement

Cyberoam #ntrod"ctionCyberoam #ntrod"ction


4/48

3o"r 4ame

3o"r $5pectation 6rom this Co"rse


Introduction ' Please Introduce oursel!


5/48

"eriy your #ake Away

CC4,P 7"ide

8"ic ,tart 7"ide

9riting pads


Introduction ' #raining $its


6/48

Sessions starts at %' (ours

reaks

Rereshments (aro"nd 11%/0 ho"rs:

L"nch (aro"nd 1/ ho"rs:

Rereshments (aro"nd 1*%/0 ho"rs:

,essions ends at 1;%/0 ho"rs


Introduction ' Sc(edule*reaks


7/48

#(ere are no Pre+re,uisites or t(is course


Introduction ' #raining Pre+re,uisites


8/48

C"rrent Learning od"le


Introduction ' -rgani.ation o Presentation

Topic


9/48

Module 1 Module 1 Interworking TechnologiesInterworking Technologies

Learning

training.cyberoam.com


10/48

Learning


Module % ' Networking asics '/(at is a Com0uter Network 1

A netor is a data comm"nication system that allos "sers

and devices to comm"nicate ith each other. A netor thatcontains comp"ters as a part o devices is non as a=Comp"ter 4etor>. 9hen a message is sent across rom onepoint to another point- e say that comm"nication has taenplace.

A message is a term "sed or the inormation and a single "nito comm"nication transmitted over a netor. A message canbe anything lie an email ($lectronic ail:- a ?le- an image- orany piece o inormation. A PC or any other machine hich iscapable o processing inormation is non as a netor node.

#n a comm"nication process minim"m 2 PC@s or devices areinvolved. The device hich initiates the comm"nication isnon as a sender and the device hich receives the messageis a receiver. ,ender and Receiver are connected to each othervia a medi"m or media hich is generally in the orm o ires

(noadays- ireless:.

Module % ' Networking asics '/(at is Message 1Module % ' Networking asics '/(at is Communication1


11/48

Learning


Module % ' Networking asics '#y0es o Media


12/48

Learning


Module % ' Networking asics '2uided Media

7"ided edia are those types o media that provide a cond"it

rom one point to another on the netor.

Tisted Pair Cable

Co A5ial Cable

6iber Bptic

$5ample

Module % ' Networking asics '2uided Media ' Tisted PairModule % ' Networking asics '2uided Media ' Co!A5ialModule % ' Networking asics '2uided Media ' 6iber!Bptic


13/48

Learning


The "ng"ided media is "s"ally the ireless medi"m and it can

be in the orm o radio aves and micro aves

9i!6i

$5ample

Module % ' Networking asics '3nguided Media


14/48

Learning


There are three types o strategies "sed or data transmission

beteen to comm"nicating machines

Module % ' Networking asics 'Modes o #ransmission

1. ,imple5

2. al "ple5

/. 6"ll "ple5

A

A sends to only

A

data can tra4el inbot( t(e directions5

but only one at a time6A send to t(en5 sends to A

A

7ata can tra4el inbot( directionssimultaneously6

A send to and6 sends to A


15/48

Learning


To systems may be on diDerent types o operating systems- or

may have completely diDerent set o hardares

Module % ' Networking asics '8ow systems on di9erent 0latormscommunicate1

Protocols are a set o r"les hich is olloed by eachcomm"nicating system on a netor

ARP (Address Resol"tion Protocol: is "sed to ?nd o"t the addresso the systems involved in comm"nication

9ith ARP it is possible to ?nd o"t the physical address (AC: othe sender and receiver

ARP is responsible or converting the address o comm"nicatingsystems into machine readable orm (i.e. binary:

,tandardiEation is a set o r"les laid don by standardsorganiEations hich has to be olloed by any vendor relating atechnical standard- speci?cation- a test method- proced"re- orde?nition- etc.

Module % ' Networking asics 'Standardi.ation


16/48

Learning


#,B

International Standards -rganiEation

#TF

International #elecomm"nication 3nion

#$$$ Instit"te o :lectrical and :lectronic :ngineers

#$T6

Internet :ngineering #as ;orce

Module % ' Standards -rgani.ations


17/48

Learning


The B,# Reerence odel is developed by the #,B

#t is a ,even Layered odel shoing interconnection beteento comm"nicating systems

Module % ' -SI


18/48

Learning


The seven layers o B,# odel

Physical

ata Lin

4etor

Transport

,ession

Presentation

Application

Module % ' -SI


19/48

Learning


The 6ive layers

Physical

ata Lin

4etor

Transport

Application

Module % ' #CP*IP Suite

The Comparision


20/48

Learning


#nternetor is =netor o netors>.

An organiEation@s netor is its on private netor- Bnconnecting to or more o these netors- it becomes aninternetor.

Module % ' /(at is Internetwork1

$5ample%


21/48

Learning


Protocols are =set o r"les> "sed or comm"nication.

Gario"s protocols are "sed at all levels o the B,# Reerenceodel

Module % ' Protocols used in Communication

$5ample%

#P

#CP

TCP

FP


22/48

Learning


Hased on the geographical area covered by a netor- there are

three basic types o netor LA4

A4

9A4

Module % ' #y0es o Network


23/48

Learning


A Local Area 4etor is a very high speed netor that covers a

small area lie a home- school- comp"ter laboratory- or an oIceb"ilding. A LA4 is "sed to connect orstations- printers-servers- and other devices. The basic advantage oDered by aLA4 is the sharing o reso"rces.

Bver the period o time- to access a LA4 there are to access

methods

1. $thernet

2. Toen Passing

Module % ' #y0es o Network > LAN


24/48

Learning


Fnicast

Module % ' #y0es o Network > #y0es o #ransmission

"lticast

Hroadcast


25/48

Learning


There are many diDerent ays o connecting the comp"ters

together in a netor- hich is also non as a Topology

Module % ' #y0es o Network > #y0es o #o0ologies

esh

,tar

Tree

H"s

Ring


26/48

Learning


#nterconnecting devices are "sed to connect m"ltiple devices

oring on same or diDerent environment (hardare Jsotare:

Module % ' #y0es o Network > Interconnecting 7e4ices

7ateays

Ro"ters

Hridges

Repeaters

7ateays operate at the,ession- Presentation- andApplication layers o the B,#Reerence odel. The maKor

tas o the gateay is toconnect diDerent netoringenvironments. 7ateays can beapplication speci?c or netorcon?g"ration dependent- and

they may "se a protocolconvertor or translating a set oprotocols to another.

Ro"ters operate at the netorlayer (Layer /: o the B,#Reerence odel. They connectnetor to internetors hich

are physically "ni?ed. Bns"ccess"l connection- theidentity o each netor isretained as a separatenetoring environment. A

ro"ter@s primary p"rpose is to?nd the best path beteen theinternetor to orard andstore pacets.

Hridges operate at the data linlayer (Layer 2: o the B,#Reerence odel. They connecta similar type o netor

environment into logical andphysical internetors. Hridgesare "sed to store and orardthe rames to the end points.Hridges also inspect the rames

and decide hether to orardor discard.

Repeaters operate at thephysical layer (Layer 1: o theB,# Reerence odel. Repeatersreceive the transmission in orm

o ra bits and regenerate themby boosting the level(Amplit"de: so as to increasethe geographical coverage othe netor beca"se physical

signals can only span a limiteddistance beore the "ality oservice is aDected.

Relating ith B,#


27/48

Learning


9hat is LA4- A4- and 9A4 M

Module % ' #y0es o Network =


28/48

Learning


Point to Point 9A4

Module % ' #y0es o Network > /AN > #y0es o /AN

Circ"it ,itching 9A4

Pacet ,itching 9A4

Reassembledto romoriginalmessage

Briginalmessage Ro"ted accessanetor path

thatcan be

modi?edas needed

Hroenintopacets


29/48

Learning


$very device on the #nternetor is assigned a "ni"e address.

These devices may be personal comp"ters- comm"nicationsservers- ports on a comm"nications server- internetorro"ters- or netor control servers.

,ome devices- s"ch as ro"ters- have physical connections tomore than one netor- and they m"st normally be assigned a"ni"e internet address or every netor connection

Module % ' IP Addressing

There are to Types o #P Addresses

#PvNO and

#Pv)


30/48

Learning


$ach internetoring address has a /2 bit address ?eld hich is

split into to parts. The ?rst part identi?es the netor on hich the

comm"nicating host is located

The second speci?es identi?es the comm"nication host itsel

The hosts attached to same netor share a common pre?5hich designates their netor n"mber

#P Addresses are divided into classes

There are ?ve classes o #P Addresses

Module % ' IP Addressing > IP4?


31/48

Learning


Class A

Module % ' IP Addressing > IP4? Classes

Class H

Class C

Class

Class $

A Class A address has the order o the

highest bit set to Eero and it has a 2N bitlocal host address.

4o. B bits to #dentiy 4etor % @

4o. o netors % 2; %B

4o. o hosts % 22N %5@@@5%

A Class H address has the order o the

highest bit set to 1!0 and it has a 1) bit localhost address.

4o. B bits to #dentiy 4etor % %?

4o. o netors % 21N %5DB?

4o. o hosts % 21) E5ED

A Class C address has the order o the

highest bit set to 1!1!0 and it has a Q bit localhost address.

4o. B bits to #dentiy 4etor % %

4o. o netors % 221 5F@5%E

4o. o hosts % 2Q E

A Class address has the order o the

highest bit set to 1!1!1!0

They are "sed to identiy gro"p o comp"tersr"nning a common application program orsotare

A Class $ address has the order o the

highest bit set to 1!1!1!1!0

#t is reserved or "t"re "se


32/48

Learning


#P Addresses are speci?ed in o"r sets o decimal n"mbers

separated by a dot. This ormat is also non as a dotted decimal notation

The notation hence divides the /2 bit #P Address into N gro"ps oQ bits also non as octets.

$g. 11111111.11111111.11111111.11111111

Module % ' IP Addressing > 3nderstanding IP4? Notation

Range or #P Address by class can be seen belo

Class A % 001.555.555.555 to 12).555.555.555

Class H % 12Q.001.555.555 to 11.2*N.555.555

Class C % 12.000.000.555 to 22/.2**.2*N.555

Class % 22N.000.000.000 to 2/.2**.2**.2**

Module % ' IP Addressing > IP4? Address


33/48

Learning


TTP

TTP,

,TP

PBP


34/48

Learning


$5tends the area o netor by connecting adKacent LA4@s

Hridges the 7AP beteen to LA4@s (so called a Hridge:

Local Hridge

Remote Hridge

Module % ' ridging


35/48

Learning


Advantages%

ore devices can comm"nicate on a bridged netor than then"mber o devices that o"ld be comm"nicating on a single LA4

Hridges e5tend the geographical length o a LA4

Hridges are simple to install and transparent

Hridges connect LA4 segments and so devices can be moved romone segment to another itho"t the change o #P Address.

isadvantages

Hridges cannot "nderstand the red"ndant netor paths and so no

advantage o splitting the load over netor segments.

Hridges can overload the netor by increasing the traIc hen itreceives a rame ith "nnon address.

Process the AC address and hence are sloer than repeaters

Module % ' ridging Ad4antages * 7isad4antages


36/48

Learning


Module % ' Switc(ing Internetwork Communication > LANSwitc(ing

LA4 ,itching

Fses AC address rom the sender to decide here toorard rames.

aintains AC address tables

L2 ,itch can be "sed to connect diDerent types o media

lie $thernet J 6iber beca"se it does not change anyinormation

GLA4

PL,


37/48

Learning


Module % ' Switc(ing Internetwork Communication > "LAN

GLA4

7ro"p o comp"ters logically into same netor

,ame as LA4 b"t allos comp"ters to be gro"ped even ithey are not on the same interconnecting device

Can be "sed to segregate comp"ters on the same

interconnecting device into diDerent netors


38/48

Learning


Module % ' Switc(ing Internetwork Communication > MPLS

PL,

PL, ("lti Protocol Label ,itching: is introd"ced as aaster mechanism to transer data.

9ors at layer / (4etor Layer: o the B,# Reerenceodel.

6orards pacets rom host to destination.

#P pacets are encaps"lated ith a label- so instead olooing or the tables in the devices- the nodes on thenetor are labeled.

9ors on sitching technology and hence the devices thator on PL, terminology are non as Label ,itchedevices.


39/48

Learning


Module % '


40/48

Learning


Module % '


41/48

Learning


Module % '


42/48

Learning


Module % '


43/48

Learning


Module % '


44/48

Learning


Module % '


45/48

Learning


Module % ' -SP;

B,P6

Bpen ,hortest Path 6irst lin state dynamic protocol

oc"mented in R6C

7athers lin state and media inormation rom all availablero"ters and constr"cts table o the netor

ecision o orarding is made on destination #P address

Heing Lin ,tate protocol- can easily detect changes innetor

oes not "se TCP


46/48

Learning


Module % ' 2P

H7P

Horder 7ateay Protocol- "sed or ro"ting decision on the#nternet

istance vector protocol

Ro"ting decisions are made on path- netor policies and

r"les

ore non as reach!ability protocol- and not a ro"tingprotocol

Creates red"ndancy in larger netors giving ma5im"m

eIciency 9ors on TCP port 1;

$ach H7P ro"ter sends a message to all other ro"ters tochec availability periodically


47/48

Learning


Module % ' I2


48/48

Learning

NeGt ' Module =Internetworking #ec(nologies)

Documents

Ccnsp v2.0ael Module 1