routing techniques

Question 1

Where is information about other IP networks and hosts stored?

Answer 1

In the routing table.

Question 2

What parameters define a routing entry?

Answer 2

Protocol-The source of the route. Paths can be configured statically or learned by exchanging information with other routers via a dynamic routing protocol.

Destination- Routes can be defined to specific hosts but are more generally directed to network IDs. The most specific (longest) destination prefix will be selected as the forwarding path if there is more than one match.

Interface- The local interface used to forward a packet along the chosen route. Could be represented as the IP address of the interface or as a layer 2 interface ID.

Gateway/next hop- The IP address of the next router along the path to a destination.

Question 3

What are the 4 general categories that routing tables fall under?

Answer 3

Directly connected routes: for subnets which the router has a local interface

Remote routes: for subnets and IP networks that are not directly attached.

Host Routes: To a specific IP address

Default Routes: Used when a exact match for a network or host rout isn’t found.

Question 4

What are static routes

Answer 4

They are manually added to the routing table and only changes if edited by the administrator.
Can be problematic if the routing topologies changes often
Static routes can be configured as persistent or non persistent. Non persistent is removed from the routing table if the router is rebooted.
Better for smaller networks.
No automatic rerouting

Question 5

What is a default route?

Answer 5

A special type of static route that identifies the next hop router for a destination that cannot be matched by another routing table entry.
The default router is also described as the gateway of last resort.

Question 6

What is fragmentation?

Answer 6

When a IP fragments the packet into more manageable pieces to fit within the MTU (maximum transmission unit).
In IPv4, the ID, Flags, and Fragment Offset IP header fields are used to record the sequence in which the packets were sent.
Most systems try to avoid IP fragmentation.
IPv6 does not allow routers to perform fragmentation, instead the host performs path MTU discovery to work out the MTU supported by each hop and crafts IP datagrams that will fit the smallest MTU.

Question 7

What is dynamic routing?

Answer 7

A protocol that uses algorithm and metrics to build and maintain a routing information base.
Very scalable and routes are updated almost in real time.
Some router overhead is required

Question 8

How are algorithms used for path selection categorized?

Answer 8

As distance vector or as link state.
Distance Vector determines the best path based on distance and direction by sharing periodic routing tables with direct neighbors (causes slower convergence)
Link state maintains a full network map and exchanges incremental topological updates with all routers allowing for faster convergence and better scalability.

Question 9

What is convergence?

Answer 9

Process whereby routers agree on routes through the network to establish the same network topology in their routing tables (steady state). The time taken to reach steady state is a measure of a routing protocol’s convergence performance.

Question 10

What is steady state?

Answer 10

A network where all the routers share the same topology.
The time taken to reach steady state is a measure of a routing protocol’s convergence performance.

Question 11

What is a AS (autonomous system)

Answer 11

A network under the administrative control of a single owner.

Question 12

What is a IGP?

Answer 12

Interior gateway protocol.
It identifies routes within an AS

Question 13

What is a EGP?

Answer 13

Exterior Gateway Protocol.
It can advertise routes between autonomous systems

Question 14

What is RIP?

Answer 14

Routing interface protocol.
Distance vector-based routing protocol that uses a hop count to determine the least-cost path to a destination network.
Sends regular updates (about every 30 secs) of its entire routing database to neighboring routers, can also send triggered updates whenever changes occur.

Question 15

What is EIGRP?

Answer 15

Enhanced Interior Gateway Routing Protocol
Developed by Cisco, primarily used on Cisco devices
is a improved version of IGRP
A distance vector protocol.
Instead of hops it uses a metric composed of administrator weighted elements, the default elements are bandwidth and delay.
Bandwidth- applies a cost based on the lowest bandwidth link in the path.
Delay- Applies a cost based on the time it takes for a packet to traverse the link
sends a full routing information update when it first establishes contact with a neighbor and thereafter only sends updates when there is a topology change.

Question 16

What is OSPF?

Answer 16

Open Shortest Path First.
A common interior gateway protocol, commonly used withing a single AS
A link state protocol, so routing is based on connectivity between routers
Low ‘cost’ and fastest path wins

Question 17

What is BGP?

Answer 17

Boarder Gateway Protocol.
Designed to be used between routing domains in a mesh internetwork and as such is used as the routing protocol on the Internet, primarily between ISPs.
Primarily used for routing between autonomous systems.
aka the three napkins protocol
BGP works over TCP on port 179.

Question 18

What is AD?

Answer 18

Administrative distance.
Used to choose between routes from different routing protocols
Metric determining the trustworthiness of routes derived from different routing protocols.

Question 19

What are edge routers?

Answer 19

They are placed at the networks perimeter and are characterized by distinguishing external and internal interfaces.
Can perform framing to repackage data from the private LAN frame format to the WAN internet access format.
Customers router is referred to as the customers edge (CE) and the service providers router is referred to as the providers edge (PE).
Must facilitate connections between the private and public network.

Question 20

What is NAT?

Answer 20

Network Address Translation.
Primarily deployed as a service translating between a private(or local) addressing scheme used by hosts on the LAN and a public(or global) addressing scheme used by an internet facing device.
Stores port numbers and their associated private IPS in a translation table.

Question 21

What is PAT?

Answer 21

Port Address Translation
aka NAT overload.
Enables multiple devices on a private network to share a single public IP address.
Particularly useful for organizations with a limited number of public IP addresses.

Question 22

Explain a dynamic NAT vs a Static one.

Answer 22

Static NAT maps an internal IP address to a static port assignment. Static NAT is typically used to take a server on the private network (such as a web server) and make it available on the Internet

Dynamic NAT automatically maps internal IP addresses with a dynamic port assignment. On the NAT device, the internal device is identified by the public IP address and the dynamic port number. Dynamic NAT allows internal (private) hosts to contact external (public) hosts, but not vice versa. External hosts cannot initiate communications with internal hosts.

Question 23

What is the basic function of a firewall?

Answer 23

traffic filtering

Question 24

What are host based firewalls?

Answer 24

Software firewall that is installed on that computer.
Only protects the computer it is installed on.

Question 25

What is a network based firewall?

Answer 25

A combination of hardware and software. Protects the entire network

Question 26

How do packet filtering firewalls work?

Answer 26

It is configured by specific rules in a network ACL (access control list) Rules can be based on information in the following headers: IP filtering, Protocol ID type (TCP, ICMP routing protocols etc.), Port filtering/security

Question 27

What is another word for inbound and outbound traffic?

Answer 27

inbound= ingress, outbound = egress

Question 28

Explain the difference between a stateless and stateful firewall.

Answer 28

Stateless: Packet filtering firewalls are stateless meaning they do not preserve information about the connection between two hosts. Each packet is analyzed independently with no record of previously processed packets. Stateful: Maintains stateful information about the session established between two hosts. Information about each session is stored in a dynamically updated state table. Operates on layer 5 of the OSI model.

Question 29

List hybrid topologies

Answer 29

Hierarchal star: The links between nodes in the tree are referred to as backbones or trunks because they aggregate and distribute traffic from multiple different areas of the network. Hierarchical Star-mesh: Nodes at the top of the hierarchy can be configured in a partial or full mesh for redundancy. Switches or routers lower in the hierarchy establish star topologies that connect end systems to the network. Star of stars—A WAN might be configured as a hub and spoke between a central office and branch offices, with each site implementing a star topology to connect end systems. This is also referred to as a snowflake topology.

Question 30

What are the principals for a three tiered hierarchy?

Answer 30

access, distribution and core

Question 31

Describe the access layer of the three tiered hierarchy.

Answer 31

aka the edge layer. allows end user devices to connect to the network End systems connect to switches in the access/edge layer in a star topology, there are no direct links between the access switches.

Question 32

Describe the distribution/aggregation layer of the three tiered hierarchy

Answer 32

provides fault-tolerant interconnections between different access blocks and either the core or other distribution blocks. Each access switch has full or partial mesh links to each router or layer 3 switch in its distribution layer block. This layer is often used to implement traffic policies, such as routing boundaries, filtering, or quality of service (QoS).

Question 33

Describe the core layer of the three tiered hierarchy

Answer 33

provides a highly available network backbone. Devices such as client and server computers should not be attached directly to the core. Its purpose should be kept simple: provide redundant traffic paths for data to continue to flow around the access and distribution layers of the network

Question 34

What is a collapsed core?

Answer 34

A 2 tiered 3 tier hierarchal model. Better for medium sized network that do not need separate core and distribution layers.

Question 35

What is the primary purpose of hybrid topologies?

Answer 35

To ensure network reliability and availability through redundancy and fault tolerance.

Question 36

What is the primary difference between a router and a layer 3 switch?

Answer 36

The primary difference is that a layer 3 switch cannot usually perform WAN routing and works with interior routing protocols only. It is designed for high-speed routing within a LAN environment.

Question 37

What does trunk porting do?

Answer 37

AKA tagged ports Its a port configuration that allows allows multiple VLANs to connect through a single port. Also keeps each VLANs traffic in its own lane. Interconnection between switches are referred to as trunks.

Question 38

What network design goals can VLANs and subnets be used to acheive?

Answer 38

Breaking up broadcast domains Divides a network into logically distinct zones for security and administrative control. Can be used to group hosts and appliances with similar performance characteristics.

Question 39

What are trunks?

Answer 39

Backbone link established between switches and routers to transport frames for multiple VLANs.

Question 40

How are VIDs (VLAN IDs) normally defined?

Answer 40

By the 802.1Q standard. Under IEEE 802.1Q VLAN traffic is identified by a tag inserted in the Ethernet frame between the source address and EtherType fields.

Question 41

What is the difference between tagged and untagged ports?

Answer 41

Untagged: for switch ports that will only ever participate in a single VLAN, also referred to as a access port or a host port. If a frame needs to be transported over a trunk link the switch adds the relevant 802.1Q tag. Untagged ports don't add or remove VLAN tags from frames within the same VLAN. A tagged port is one that is operating as a trunk and is capable of transporting traffic addressed to multiple VLANs using the 802.1Q format.

Question 42

What is the purpose of voice or auxiliary VLAN?

Answer 42

A feature of VoIP handsets and switches to segregate data and voice traffic without having to configure a trunk.

Question 43

What is a native VLAN for?

Answer 43

Used for any untagged frames received on a trunk port. The native VLAN is initially set to the same VLAN ID as the default VLAN, you should change this for it helps mitigate VLAN hopping attacks.

Question 44

Tell me about the default VLAN.

Answer 44

The VLAN with ID 1 is referred to as the default VLAN, this cannot be changed. All ports on a switch default to being in VLAN 1. When implementing VLANs avoid sending user data traffic over the default VLAN. It should remain unused or used only for inter switch protocol traffic, for example STP. Ensure unused ports are not assigned to VLAN1.

Question 45

What are subinterfaces?

Answer 45

Configuring a routers physical interface with multiple virtual interfaces connected to separate VLAN IDs over a trunk. The subinterface acts as the default gateway for its VLAN/subnet. The router forwards inter-VLAN traffic between the subinterfaces.

Question 46

What are SVI (Switch virtual Interface)?

Answer 46

In a layer 3 switch it can route between VLANs. Each VLAN can be assigned a SVI to act as the default gateway

Question 47

What is a router on a stick?

Answer 47

A "router on a stick" is a configuration where a router with a single physical interface is connected to a trunk port on a switch. This single interface is configured with multiple subinterfaces, each serving a different VLAN.

Question 48

What must be configured if DHCP services are located in a different VLAN from the client devices?

Answer 48

A DHCP Relay. It forwards DHCP requests from clients to the server across VLANs.

Question 49

What is the preferred route selection when there are paths to the same destination with different prefix lengths?

Answer 49

The route with the longest prefix length is the most specific path and is preferred in route selection.

Question 50

What factor is considered when there are identical paths with equal administrative distances to a destination?

Answer 50

When there are identical paths with equal administrative distances, the path with the lowest metric value is preferred, as it represents the most efficient route.