Switching in an Enterprise Network
Total Page:16
File Type:pdf, Size:1020Kb

Load more
Recommended publications
-
Networking Packet Broadcast Storms
Lesson Learned Networking Packet Broadcast Storms Primary Interest Groups Balancing Authorities (BAs) Generator Operators (GOPs) Reliability Coordinators (RCs) Transmission Operators (TOPs) Transmission Owners (TOs) that own and operate an Energy Management System (EMS) Problem Statement When a second network cable was connected from a voice over internet protocol (VOIP) phone to a network switch lacking proper settings, a packet broadcast storm prevented network communications from functioning, and supervisory control and data acquisition (SCADA) was lost for several hours. Broadcast storm events have also arisen from substation local area network (LAN) issues. Details A conference room was set up for a training class that needed to accommodate multiple PCs. The bridge protocol data unit (BPDU) packet propagation prevention setting was disabled on a port in the conference room in order to place a network switch off of that port. Upon completion of the training, the network switch was removed; however, the BPDU packet propagation setting was inadvertently not restored. As part of a telephone upgrade project, the traditional phone in this conference room was recently replaced by a VOIP phone. Later, an additional network cable was connected to the output port of this VOIP phone into a secondary network jack within the conference room. When the second network cable was connected from a VOIP phone to a network switch lacking proper settings, a switching loop resulted. Spanning tree protocol is normally used to prevent switching loops from propagating broadcast packets continuously until the network capacity is overwhelmed. A broadcast packet storm from the switching loop prevented network communications from functioning and SCADA was lost for several hours. -
Symbols Numerics A
I N D E X GLOP, 484–485 Symbols IP multicast, 480 limited-scope, 484 ! (exclamation point) character, 105 MAC address notification, 317–318 # (pound sign) character, 105 NAT, 649 reserved link local, 483–484 Numerics source-specific multicast, 484 virtual MAC, 573 10-Gigabit, 54 adjacencies, 393–394, 408 10-Mbps Ethernet, 48 ADSL (asymmetric digital subscriber line), 56 802.1D, compatibility with RSTP, 230 agents, relay (DHCP), 379 802.1Q, 156–158 aggregate policers, 448 802.1X Aggressive mode UDLD (A-UDLD), 336–338, 604 configuration exercise, 663–669 configuration exercises, 354 network access security, 639–641 versus Loop Guard, 272 AppleTalk Remote, 624 applications A Auto QoS, 463 Cisco AVVID, 16 AAA statistics, 291 accounting, 625, 629 voice, 596 authentication, 173, 623–626 Application-Specific Integrated Circuits. See ASICs authorization, 624, 627 applying RACLs, 643 configuration exercise, 663–669 Architecture for Voice, Video and integrated Data. configuring, 630–631 See Cisco AVVID aaa authentication login command, 626 ARP (Address Resolution Protocol), 12 aaa new-model command, 87, 626 DAI, 654–658 access as a security feature, 658–659 firewalls, 647–648 throttling, 396–398 hopping attacks (VLAN), 660–661 ASICs (Application-Specific Integrated Circuits), physical, 619 5–6, 275 unauthorized, 77 assured forwarding, 431–432 access control lists. See ACLs asymmetric digital subscriber line (ADSL), 56 access layer, 18 attacks, 655, 660–661 access-layer switches, 50 attenuation, 720 accounting, 625, 629 A-UDLD (Aggressive mode UDLD), ACLs (access control lists), 4, 618, 643 336–338, 604 PACLs, 646 configuration exercises, 354 RACLs, 643 versus Loop Guard, 272 security, 642 authentication, 173, 623–626 VACLs, 644 authorization, 624, 627 vty lines, 619 auth-proxy, 627 active keyword, 513 Auto QoS, 463 adding switches, 186 auto-negotiation, 53, 767 Address Resolution Protocol. -
Computer Communication Networks (Tcit / Se / Ee)
Practical Workbook CS-351/CS-418 COMPUTER COMMUNICATION NETWORKS (TCIT / SE / EE) Name : Year : Batch : Roll No : Department: Department of Computer & Information Systems Engineering NED University of Engineering & Technology INTRODUCTION The days of mainframe computing using dumb terminals are long gone. The present time is the era of very powerful personal computers, interconnecting with each other and even better equipped servers, sometimes connecting across continental boundaries. Computer Communication Networks is a senior level undergraduate course in Computer and Information Systems Engineering, which covers various aspects of computer networks. It covers various classifications of computer networks and gives the students a good grasp on the various topics in computer networks. This laboratory manual aims to augment the classroom teaching of the course and to provide the students essential practical knowledge in the subject. The first and second labs deal with learning IPv4 Addressing, Sub-netting & Variable Length Subnet Masking (VLSM). The third lab deals with making crossover and straight-through UTP cables. This skill will come in very handy in various trades when the students go into practical life. It introduces some related standards and equipment used in this regard. The fourth lab jumps into Cisco routers. It is a hands-on exercise using some commonly used Cisco IOS commands. In this lab, the students will learn how to connect to and interact with Cisco routers. The fifth lab is about connecting different IP networks by defining static routes all around. Sixth lab introduces dynamic routing using a simple routing protocol, namely RIP (Routing Information Protocol) and its later version called RIP version 2. -
Edgeswitch User Guide Table of Contents
Configuration Interface Release Version: 1.8 EdgeSwitch User Guide Table of Contents Table of Contents Chapter 1: Overview . 1 Introduction . 1 Configuration . 1 Configuration Interface System Requirements . 1 Chapter 2: Navigation . 3 Accessing the Configuration Interface . 3 Common Interface Options . 4 Interface Screens . 5 Chapter 3: Dashboard . 7 Device Status . 8 Port Status . 8 Port Summary . 8 Chapter 4: VLANs . 13 VLANs . .. 13 Chapter 5: System Settings . 15 Device Name . 15 Management IP . 15 Spanning Tree Protocol . 17 Services . 17 System Actions . 18 Chapter 6: Tools . 21 MAC Table . 21 Ping . .. 21 Appendix A: Contact Information . 23 Ubiquiti Networks Support . 23 Ubiquiti Networks, Inc. i Table of Contents EdgeSwitch User Guide ii Ubiquiti Networks, Inc. EdgeSwitch User Guide Chapter 1: Overview Chapter 1: Overview Introduction This User Guide is designed to provide details about how to set up and use the EdgeSwitch® Configuration Interface, version 1.8 or above. This interface manages the EdgeSwitch and EdgeSwitch X models, which this User Guide will collectively refer to as EdgeSwitch. The EdgeSwitch XP models use a different user interface. This is described in the EdgeSwitch XP User Guide, which is available at: downloads.ubnt.com/edgemax Configuration This intuitive interface allows you to conveniently manage your EdgeSwitch using your web browser. There are two versions available; however, this User Guide describes the default, which is the new UI with a more graphical interface. The legacy UI is still available as an option and is described in the EdgeSwitch Administration Guide, which is available at: downloads.ubnt.com/edgemax You can also manage your device using the Ubiquiti® Network Management System, UNMS™, which lets you configure, monitor, upgrade, and back up your devices using a single software application. -
LAN Redundancy
LAN Redundancy Routing and Switching: Scaling Networks – Chapter 2 Copyleft 2014 Hacklab Cosenza (http://hlcs.it) Released under Creative Commons License 3.0 By-Sa Cisco name, logo and materials are Copyright Cisco Systems Inc. 1 MAC Address Table ● A switch moves traffic based on MAC addresses. ● Each switch maintains a MAC address table in high-speed memory, called content addressable memory (CAM). ● The switch recreates this table every time it is activated, using both the source MAC addresses of incoming frames and the port number through which the frame entered the switch. Mechanics of Switching ● As a unicast frame enters a port, the switch finds the source MAC address in the frame. ● It then searches the MAC table, looking for an entry that matches the address ● If the source MAC address is not in the table, the switch adds a MAC address ● Next, the switch checks the table for the destination MAC address. ● If an entry exists, the switch forwards the frame out the appropriate port number. ● If the entry does not exist, the switch floods the frame out every active port except the port upon which it was received Aging Time ● The switch deletes entries from the MAC address table if they are not used within a certain period of time. ● The name given to this period of time is the aging timer ● Removal of an entry is called aging out. ● When the switch adds a MAC address and port number entry and sets the aging timer. ● If the source MAC address already exists, the switch resets the aging timer Network Segmentation ● The size of broadcast and collision domains affect the flow of traffic. -
Developing a New HSR Switching Node (Switchbox) for Improving Traffic Performance in HSR Networks
energies Article Developing a New HSR Switching Node (SwitchBox) for Improving Traffic Performance in HSR Networks Nguyen Xuan Tien and Jong Myung Rhee * Received: 8 December 2015; Accepted: 5 January 2016; Published: 8 January 2016 Academic Editor: Neville Watson Department of Information and Communications Engineering, Myongji University, 116 Myongji-ro, Yongin-si, Gyeonggi-do 449-728, Korea; [email protected] * Correspondence: [email protected]; Tel.: +82-10-5227-0419; Fax: +82-31-330-6824 Abstract: High availability is crucial for industrial Ethernet networks as well as Ethernet-based control systems such as automation networks and substation automation systems (SAS). Since standard Ethernet does not support fault tolerance capability, the high availability of Ethernet networks can be increased by using redundancy protocols. Various redundancy protocols for Ethernet networks have been developed and standardized, such as rapid spanning tree protocol (RSTP), media redundancy protocol (MRP), parallel redundancy protocol (PRP), high-availability seamless redundancy (HSR) and others. RSTP and MRP have switchover delay drawbacks. PRP provides zero recovery time, but requires a duplicate network infrastructure. HSR operation is similar to PRP, but HSR uses a single network. However, the standard HSR protocol is mainly applied to ring-based topologies and generates excessively unnecessary redundant traffic in the network. In this paper, we develop a new switching node for the HSR protocol, called SwitchBox, which is used in HSR networks in order to support any network topology and significantly reduce redundant network traffic, including unicast, multicast and broadcast traffic, compared with standard HSR. By using the SwitchBox, HSR not only provides seamless communications with zero switchover time in case of failure, but it is also easily applied to any network topology and significantly reduces unnecessary redundant traffic in HSR networks. -
Campus Networking Workshop
Campus Networking Workshop Layer-2 Network Design Buildings and Layer 2 • There is usually a correspondence between building separation and subnet separation – Switching inside a building – Routing between buildings • This will depend on the size of the network – Very small networks can get by with doing switching between buildings – Very large networks might need to do routing inside buildings Layer 2 Concepts • Layer 2 protocols basically control access to a shared medium (copper, fiber, electro- magnetic waves) • Ethernet is the de-facto standard today – Reasons: • Simple • Cheap • Manufacturers keep making it faster Ethernet Functions • Source and Destination identification – MAC addresses • Detect and avoid frame collisions – Listen and wait for channel to be available – If collision occurs, wait a random period before retrying • This is called CASMA-CD: Carrier Sense Multiple Access with Collision Detection Ethernet Frame • SFD = Start of Frame Delimiter • DA = Destination Address • SA = Source Address • CRC = Cyclick Redundancy Check Evolution of Ethernet Topologies • Bus – Everybody on the same coaxial cable • Star – One central device connects every other node • First with hubs (repeated traffic) • Later with switches (bridged traffic) – Structured cabling for star topologies standardized Switched Star Topology Benefits • It’s modular: – Independent wires for each end node – Independent traffic in each wire – A second layer of switches can be added to build a hierarchical network that extends the same two benefits above – ALWAYS DESIGN WITH MODULARITY IN MIND Hub • Receives a frame on one port and sends it out every other port, always. • Collision domain spans the whole hub or chain of hubs • Traffic ends up in places where it’s not needed Hub Hub A frame sent by one node is always sent to every other node. -
Inter-VLAN Routing Configuration
Inter-VLAN Routing Configuration Table of Contents 5.1 Inter-VLAN Routing Configuration ............................................................................................ 2 Inter-VLAN Routing Operation What is Inter-VLAN routing? ......................................................... 3 Inter-VLAN Routing Operation Router-on-a-Stick Inter-VLAN Routing .......................................... 5 Inter-VLAN Routing Operation Multilayer Switch Inter-VLAN Routing .......................................... 6 Configure Router-on-a-Stick Preparation ....................................................................................... 7 Configure Router-on-a-Stick Switch Configuration ........................................................................ 8 Configure Router-on-a-Stick Router Subinterface Configuration ................................................... 9 Configure Router-on-a-Stick Switch Configuration ...................................................................... 10 Configure Router-on-a-Stick Router Subinterface Configuration ................................................. 11 Configure Router-on-a-Stick Verifying Subinterfaces (cont.) ....................................................... 16 Configure Router on a Stick Verifying Routing ............................................................................. 17 Inter-VLAN Configuration Issues Verify Router Configuration ..................................................... 18 IP Addressing Issues Errors with IP Address and Subnet Masks .................................................. -
Grumpy Networkers Journal Documentation Release 0.0.7
Grumpy Networkers Journal Documentation Release 0.0.7 Head In The Cloud Oct 21, 2019 Contents: 1 Networking 3 1.1 Virtual Private Networks.........................................3 1.2 Network Protocols............................................ 56 2 Security 59 2.1 Common Network Attacks........................................ 59 2.2 Securing the Switch Infrastructure.................................... 60 2.3 Segregating Networks using Firewalls.................................. 60 2.4 Cryptography Overview......................................... 65 2.5 Authentication Services......................................... 67 3 Cloud Services 69 3.1 Cloud Deployment Models........................................ 69 3.2 Cloud Service Models.......................................... 69 4 Documentation 71 4.1 Sphinx.................................................. 71 5 Study Notes 73 5.1 Cisco CCNP - Implementing Cisco Secure Mobility Solutions (300-209 SIMOS)........... 73 5.2 Cisco CCNP - Implementing Cisco Edge Network Security Solutions (300-206 SENSS)....... 74 5.3 Cisco CCNP - Implementing Cisco IP Switched Networks (300-115 SWITCH)............ 76 6 Vendor Implementations 163 6.1 Cisco Implementations.......................................... 163 7 To Do 209 8 Glossary of Terms 213 9 External References 215 9.1 PPTP................................................... 215 9.2 Sphinx.................................................. 215 10 Indices and tables 217 Bibliography 219 i Index 221 ii Grumpy Networkers Journal Documentation, Release -
Switching, Routing, and Wireless Essentials Companion Guide (Ccnav7)
Switching, Routing, and Wireless Essentials Companion Guide (CCNAv7) Cisco Press Hoboken, New Jersey ii Switching, Routing, and Wireless Essentials Companion Guide (CCNAv7) Editor-in-Chief Switching, Routing, and Mark Taub Wireless Essentials Alliances Manager, Companion Guide (CCNAv7) Cisco Press Arezou Gol Copyright © 2020 Cisco Systems, Inc. Director, ITP Product Published by: Management Cisco Press Brett Bartow Hoboken, New Jersey Senior Editor All rights reserved. No part of this book may be reproduced or transmitted in James Manly any form or by any means, electronic or mechanical, including photocopying, Managing Editor recording, or by any information storage and retrieval system, without written Sandra Schroeder permission from the publisher, except for the inclusion of brief quotations in a review. Development Editor Marianne Bartow ScoutAutomatedPrintCode Senior Project Editor Library of Congress Control Number: 2020936826 Tonya Simpson ISBN-13: 978-0-13-672935-8 Copy Editor ISBN-10: 0-13-672935-5 Barbara Hacha Technical Editor Warning and Disclaimer Rick Graziani Editorial Assistant This book is designed to provide information about the Cisco Networking Cindy Teeters Academy Switching, Routing, and Wireless Essentials course. Every effort has been made to make this book as complete and as accurate as possible, but no Cover Designer warranty or fitness is implied. Chuti Prasertsith The information is provided on an “as is” basis. The authors, Cisco Press, and Composition Cisco Systems, Inc. shall have neither liability nor responsibility to any person codeMantra or entity with respect to any loss or damages arising from the information Indexer contained in this book or from the use of the discs or programs that may Cheryl Ann Lenser accompany it. -
Implementing and Testing Vlans in Meshed Tree Protocol
Rochester Institute of Technology RIT Scholar Works Theses 7-31-2020 Implementing and Testing VLANs in Meshed Tree Protocol Ankush Kaul [email protected] Follow this and additional works at: https://scholarworks.rit.edu/theses Recommended Citation Kaul, Ankush, "Implementing and Testing VLANs in Meshed Tree Protocol" (2020). Thesis. Rochester Institute of Technology. Accessed from This Thesis is brought to you for free and open access by RIT Scholar Works. It has been accepted for inclusion in Theses by an authorized administrator of RIT Scholar Works. For more information, please contact [email protected]. Implementing and Testing VLANs in Meshed Tree Protocol by Ankush Kaul Committee Members Prof. Nirmala Shenoy Prof. Bruce Hartpence Prof. Bill Stackpole Prof. Daryl Johnson Thesis submitted in partial fulfillment of the requirements for the degree of Master of Science in Networking and Systems Administration Department of Information Sciences and Technologies B. Thomas Golisano College of Computing and Information Sciences Rochester Institute of Technology July 31, 2020 i Abstract Meshed Tree Protocol (MTP)[1][2] is being developed to overcome the performance challenges faced with older loop avoidance layer 2 protocols like Spanning Tree Protocol (STP)[3] and Rapid STP (RSTP)[5] which have high convergence time, causing a significant delay during initial convergence and subsequent re-convergence in the event of topology change or link failure. This slow convergence is not suitable for the modern high speed and dynamic networks and is being addressed with better performing protocols like MTP which uses Meshed Tree Algorithm (MTA) to form multiple overlapping trees[1]. In this thesis we will implement Virtual Local Area Network(VLAN)[4] for MTP networks using the Global Environment for Network Innovation (GENI)[19] testbed. -
CCNA: Cisco Certified Network Associate Fast Pass, Third Edition
85711.book Page 389 Friday, September 14, 2007 8:48 AM Glossary 85711.book Page 390 Friday, September 14, 2007 8:48 AM 390 Glossary 10BaseT Part of the original IEEE 802.3 standard, 10BaseT is the Ethernet specification of 10Mbps baseband that uses two pairs of twisted-pair, Category 3, 4, or 5 cabling—using one pair to send data and the other to receive. 10BaseT has a distance limit of about 100 meters per segment. See also: Ethernet and IEEE 802.3. 100BaseT Based on the IEEE 802.3u standard, 100BaseT is the Fast Ethernet specification of 100Mbps baseband that uses UTP wiring. 100BaseT sends link pulses (containing more informa- tion than those used in 10BaseT) over the network when no traffic is present. See also: 10BaseT, Fast Ethernet, and IEEE 802.3. 100BaseTX Based on the IEEE 802.3u standard, 100BaseTX is the 100Mbps baseband Fast Ethernet specification that uses two pairs of UTP or STP wiring. The first pair of wires receives data; the second pair sends data. To ensure correct signal timing, a 100BaseTX segment cannot be longer than 100 meters. A&B bit signaling Used in T1 transmission facilities and sometimes called “24th channel signaling.” Each of the 24 T1 subchannels in this procedure uses one bit of every sixth frame to send supervisory signaling information. AAA Authentication, Authorization, and Accounting: A system developed by Cisco to provide network security. See also: authentication, authorization, and accounting. AAL ATM Adaptation Layer: A service-dependent sublayer of the Data Link layer, which accepts data from other applications and brings it to the ATM layer in 48-byte ATM payload segments.