Ch04 Network Applications
Ch04 Network Applications
CHAPTER Four
1 Ch04_Network_Applications (Prep. By
Werkineh E)
Outline
4.1. Introduction 4.3. DNS
4.3.1. DNS principles and Operations
4.2. DHCP
4.3.2. Basic Name Server and Client Configuration
4.2.1. DHCP Principle
4.3.3. Caching Only name server
4.2.2. DHCP Server Configuration
4.3.4. Primary and Slave Name Server
4.2.3. DHCP Options, Scope, 4.3.5. DNS Zone Transfers
Reservation and Relaying 4.3.6. DNS Dynamic Updates
4.2.4. DHCP Troubleshooting 4.3.7. DNS Delegation
4.3.9. Troubleshooting
2 Ch04_Network_Applications (Prep. By Werkineh E)
Outline ….
4.4. Web and Proxy Server Configuration 4.5. FTP, File and Print Server
4.4.1. HTTP Server Configuration Basics 4.5.1. FTP Principles
4.6.6. Troubleshooting
DHCP
Server1 DHCP
Client
11 DHCP
DHCP client
client broadcasts
broadcastsaaDHCPDISCOVER
DHCPDISCOVERpacket
packet
Note: All four broadcasts are layer
22 DHCP servers
DHCP servers broadcast
broadcastaaDHCPOFFER
DHCPOFFERpacket
packet 2 ethernet broadcast to mac
address ff:ff:ff:ff:ff:ff and a layer 3
33 DHCP
DHCP client
client broadcasts
broadcastsaaDHCPREQUEST
DHCPREQUESTpacket
packet ip broadcast to 255.255.255.255.
44 DHCP
DHCP Server1 broadcastsaaDHCPACK
Server1 broadcasts DHCPACKpacket
packet with
Configuration parameters
Ch04_Network_Applications (Prep. By Werkineh E)
How DHCP Lease Renewal Works
DHCP
DHCP
Server2
Server2
DHCP
Client
DHCP Client
DHCP
DHCP
Server1
Server1
50%
50%of
87.5%
100% oflease
of
of lease
lease
lease
duration
duration has
durationhas has
expired
expired
expired
expired
If the
1 client
DHCP fails
clientto renew
sends it’s lease, after
a DHCPREQUEST 87.5% of the
packet
If1theDHCP
clientClient
fails sends a DHCPREQUEST
to renew its lease, afterpacket
50% of the lease
lease has expired, then the DHCP lease generation process
duration has expired, then the DHCP lease renewal process
starts
2 over
begins DHCPagain
again Server1
after with a DHCP
sends
87.5% client
a DHCPACK broadcasting
packet a
2 DHCP Server1 sends a of the
DHCPACK lease duration
packet has expired
DHCPDISCOVER
Unicast
Broadcast Broadcast
Subnet A Subnet B
Routers
(Non–RFC
1542
Compliant)
Client Client Client Client
DHCP Server2
DHCP Client Unauthorized
Does not service
DHCP requests
DHCP Server2
If DHCP checks
Server2 does with
notthe domain
find its IP
DHCP client receives IP address
address on
controller to the list,athe
obtain list service does not
of authorized DHCP
12 from authorized DHCP Server1
Ch04_Network_Applications
start and support DHCP clients (Prep. By Werkineh E)
servers
DEPLOYING AND CONFIGURING THE
DHCP SERVICE
host centos-node {
hardware ethernet 00:f0:m4:6y:89:0g;
fixed-address 192.168.10.105;
}
host fedora-node {
hardware ethernet 00:4g:8h:13:8h:3a;
fixed-address 192.168.10.106;
}
8. Next, do not forget to permit DHCP service (DHCPD daemon listens on port
67/UDP) on firewall as below:
Login to the client computers and edit the Ethernet interface configuration file
to be automatic
At this point, if all settings are correctly configured, your client machine should
be receiving IP addresses automatically from the DHCP server.
•
com domain
net edu com
• • •
google
ripe.net domain ripe isi sun tislabs
•
moon •
www disi
net domain ftp • www
ws2 ws1
•
net zone
net edu com
net domain •
google
• •
28
28 Ch04_Network_Applications (Prep. By Werkineh E)
Forward and Reverse Lookups Queries
http://www.somecompany.com/closing/shirt.php
IP
74.45.56.17
2-33
10001010.11110010.10101111.11011011
root DNS server
www.somecompany.com
Com TLD
3. DNS resolver checks it’s cheche and if there is no record, DNS serve
it will forward the request to the most large domain (the DNS Resolver
Root domain the dot(.)) <<IP address for
www.somedomain.com>> (how it knows the root?)
2
4. The Root name server doesn’t know www.somedomain
but it knows were .com is so it gives IP for .com TLD to
the DNS resolver <<TLD(.com) Name Server IP authoritative DNS server
A:
somedomain.com
address>> requesting host
5. The DNS resolver requests .com TLD IP of 1
<<www.somedomain.com>> Cashe Memory
www.somedomain.com
2-34 Ch04_Network_Applications (Prep. By Werkineh E)
root DNS server
www.somecompany.com
www.somedomain.com>> 6 DNS serve
<<IP:somedomain.com
8. The authoritative name server will reply ip address to DNS DNS >>
Resolver
<<IP: x.x.x.x>>
resolver <<IP: www.somedomain.com
9. DNS resolver maintaines new information in it’s chache 2 8
7
memory and forward the ip reply to the requesting DNS client 10
10. Requesting client receives IP address stores it to its cache for authoritative DNS server
A:
later use somedomain.com
requesting host
11. DNS starts TCP connection to the server 11
1
www.somedomain.com
Cashe Memory
www.somedomain.com
2-35 Ch04_Network_Applications (Prep. By Werkineh E)
Primary and Secondary
Primary dns server.
This server will have a readable and writable copy of the zone database.
secondary dns server: For reasons of fault tolerance, performance or load balancing
you may decide to set up another dns server with authority over that zone.
type=A type=CNAME
▪ name is hostname ▪ name is alias name for some “canonical” (the
▪ value is IPv4 address real) name
▪ www.ibm.com is really
type=NS servereast.backup2.ibm.com
▪ value is canonical name
name is domain (e.g., foo.com)
value is hostname of authoritative name type=MX
server for this domain ▪ value is name of mailserver associated with
name
type=AAAA SOA record
▪ name is hostname
The SOA record of a zone contains meta information
▪ value is IPV6 address
2-38
about the zone itself. There is exactly one SOA record
Ch04_Network_Applications (Prep. By Werkineh E)
each zone.
Configuring DNS service: BIND
BIND or BIND 9 is an open source implementation of DNS, available for
almost all Linux distributions.
BIND stands Berkeley Internet Name Domain & it allows us to publish
DNS information on internet as well as allows us to resolve DNS queries
for the users.
BIND is by far the most used DNS software on Internet.
/etc/squid/squid.conf
http_port 3128
After making changing let’s restart Squid service to reload the configuration
changes
cat /etc/squid/blockwebsites.lst
yahoo.com
www.rediff.com
cat /etc/squid/blockkeywords.lst
yahoo
gmail
facebook
Congratulation’s you have successfully install and configured Squid proxy server. Read
next article to Configure Squid for Mac Address Based Filtering.
1. Installation Of Samba
sudo apt-get update
sudo apt-get install samba
Post Office Protocol 3 POP3 the whole mailbox will be cleared (transferred) from server to local
computer; view mail only once
Multipurpose Internet Mail MIME allows non-ASCII data to be sent using the existing mail programs and
protocols
Extensions
it transforms non-ASCII data at the sender site to ASCII and back to non-
ASCII at the receiving site
Internet Mail Access Protocol IMAP IMAP is similar to POP3 but with the following additional features
a user can: check the email header prior to downloading, search the
contents of the email for a specific string, partially download, email;
allows you to download emails from your email server onto multiple devices.
It keeps your messages on the email server.