Professional Documents
Culture Documents
Panko Bdns10e ppt09
Panko Bdns10e ppt09
Chapter 9
Chapter 8
◦ Major TCP/IP standards
◦ Router operation
Chapter 9
◦ Managing Internets
◦ Securing Internets
IP Security (IPsec)
IPv6 Management
Step Description
Total size of IP address
1 32 By definition
(bits)
Size of network part Assigned to
2 16
assigned to firm (bits) the firm
Remaining bits for firm Bits for the
3 16
to assign firm to assign
Selected subnet/host part The firm’s
4 8/8
sizes (bits) decision
Number of possible 254
subnets (2N - 2) (28 - 2)
Number of possible hosts 254
per subnet (2N - 2) (28 - 2)
Copyright © 2015 Pearson Education, Inc.
9-7
9.1: IPv4 Subnetting
Step Description
Total size of IP address
1 32 By definition
(bits)
Size of network part Assigned to
2 16
assigned to firm (bits) the firm
Remaining bits for firm to Bits for the
3 16
assign firm to assign
Selected subnet/host part The firm’s
4 6/10
sizes (bits) decision
Number of possible 62
subnets (2N - 2) (26 - 2)
Number of possible hosts 1,022
per subnet (2N - 2) (210 - 2)
Copyright © 2015 Pearson Education, Inc.
9-8
9.1: IPv4 Subnetting
Step Description
Total size of IP address
1 32 By definition
(bits)
Size of network part Assigned to
2 8
assigned to firm (bits) the firm
Remaining bits for firm to Bits for the
3 24
assign firm to assign
Selected subnet/host part The firm’s
4 12/12
sizes (bits) decision
Number of possible 4,094
subnets (2N - 2) (212 - 2)
Number of possible hosts 4,094
per subnet (2N - 2) (212 - 2)
Copyright © 2015 Pearson Education, Inc.
9-9
9.1: IPv4 Subnetting
Step Description
Total size of IP address
1 32 By definition
(bits)
Size of network part Assigned to
2 8
assigned to firm (bits) the firm
Remaining bits for firm to Bits for the
3 24
assign firm to assign
Selected subnet/host part The firm’s
4 8/16
sizes (bits) decision
Number of possible 254
subnets (2N - 2) (28 - 2)
Number of possible hosts 65,534
per subnet (2N - 2) (216 - 2)
Copyright © 2015 Pearson Education, Inc.
9-10
9.1: IPv4 Subnetting
Step Description
Exercise
2 Size of IP address 32
Number of possible
?
subnets (2N - 2)
Number of possible hosts
? 9-11
perEducation,
Copyright © 2015 Pearson subnet Inc. (2N - 2)
9.1: IPv4 Subnetting
Step Description
Exercise
2 Size of IP address 32
Number of possible
?
subnets (2N - 2)
Number of possible hosts
? 9-12
per subnet (2N - 2)
IP Subnetting
IP Security (IPsec)
IPv6 Management
NAT
◦ Sends packets with false external source IP
addresses and port numbers that are different
from internal source IP addresses and port
numbers
◦ To expand the number of IP addresses inside the
firm
◦ For security purposes
IP Security (IPsec)
IPv6 Management
Sends response to
local DNS server, not
the client host.
IP Security (IPsec)
IPv6 Management
Agents
Manager
Managed
Devices
Copyright © 2015 Pearson Education, Inc.
9-39
9.6: Simple Network Management Protocol
(SNMP)
Core Elements (from Chapter 4)
◦ Management information base (MIB).
◦ Stores the retrieved information.
◦ “MIB” can refer to either the database on the
manager or to the database schema.
Manager MIB
Response
Trap
IP Security (IPsec)
IPv6 Management
Copyright
© 2015 Pearsn
© 2015 Pearson Education, Inc.
9-50
9.8: VPNs
Copyright
© 2015 Pearso
© 2015 Pearson Education, Inc.
9-51
IPsec VPNs
Governed by the IPsec protocols
◦ Operate at the internet layer
◦ Protect transport header, application content, and
at least some IP header content.
◦ Protection is transparent. Upper-level content
does not even know that it is being protected
Copyright
© 2015 Pearso
© 2015 Pearson Education, Inc.
9-52
9.9: IPsec in Transport and Tunnel Modes
Copyright
© 2015 Pearso
© 2015 Pearson Education, Inc.
9-53
9.9: IPsec Transport and Tunnel Modes
Copyright
© 2015 Pearso
© 2015 Pearson Education, Inc.
9-54
9.9: IPsec Transport and Tunnel Modes
IP Security (IPsec)
IPv6 Management
Application
Single Network
Application
The IETF assumed that
Transport vendors would create
dual-stack products
IPv4 IPv6 and that IPv4 would
gradually fade away.
Single Network
Subnet ID
Global Routing Prefix Interface ID
(subnet part
(network part in IPv4) (host part in IPv4)
in IPv4)
(Almost)
Always 64 bits
Subnet ID
Global Routing Prefix Interface ID
(subnet part
(network part in IPv4) (host part in IPv4)
in IPv4)
(Almost)
Always 64 bits
Subnet ID
Global Routing Prefix Interface ID
(subnet part
(network part in IPv4) (host part in IPv4)
in IPv4
m bits n bits
64 bits
m + n = 64
adb1c2d3e5f5
adb1c2fffed3e5f5
adb1c2fffed3e5f5
afb1c2fffed3e5f5
IP Security (IPsec)
IPv6 Management
Routing Table
Information Router
Router
Dynamic
Routing Protocol
Copyright © 2015 Pearson Education, Inc.
9-80
Dynamic Routing Protocols