Sreedeep A.L.

STDC CDAC
 Inter Connection of More than One Devices.
 A Computer Network is defined as a set of two or
more devices that are linked together with the
purpose of communicating, exchanging, sharing
or distributing data, files and resources.

STDC,CDAC 11/18/2023 2
 Primary Requirements
◦ Connectivity - Path, Channel
 Wired Connection
 Wireless Connection
◦ Communication
 Wired Connection - Examples include telephone
networks, cable television or internet access, and
fiber-optic communication. Most wired networks
use Ethernet cables to transfer data between
connected PCs.

STDC,CDAC 11/18/2023 3
 Wireless Connection
◦ Wireless communications is the transmission of voice
and data without cable or wires. In place of a physical
connection, data travels through electromagnetic signals
(Radio Waves) broadcast from sending facilities to
intermediate and end-user devices.
◦ Access Point - Device that creates a wireless local area
network.
◦ Each Access point have a
SSID.
◦ SSID –Service Set Identifier.
 Name of the wireless
network

STDC,CDAC 11/18/2023 4
 Communication
◦ Set an IP Address
◦ Protocols – Set a Rules
 SMTP , POP3 , HTTPS , IMAP
 Ports
◦ Network Communication Ports
◦ 0 – 65535 Ports
◦ 0 – 1023 –> Well Known Ports, Day-to-Day use more.
 Port numbers from 0 to 1023 are reserved for common
TCP/IP applications and are called well-known ports.
 Internet Assigned Numbers Authority (IANA)
POP3 – 110
SMTP – 25
IMAP4 - 143

STDC,CDAC 11/18/2023 5
 Network Classification
◦ Based on Size
◦ Based on Role
◦ Based on Computing
 Based on Size
◦ LAN – Local Area Network
 Private, Secured, High Speed
 Organization owned
 Communication stays locally
 Support not required
◦ CAN – Campus Area Network.
◦ MAN – Metropolitan Area Network.
◦ WAN – Wide Area Network.

STDC,CDAC 11/18/2023 6
 Based on Role
◦ Peer – To – Peer Model
 LAN with out a Server , will have client OS. Eg: WIN 10
◦ Client / Server Model
 LAN with a Client Server Architecture will have Windows
Server OS , Linux , Unix, Services like DHCP
 Based on Computing
◦ Centralized
 Activities happening in a centralized manner. Eg. Ticket
Booking, Core Banking
◦ Distributed – one service /one machine
 Distribute the services, load sharing, with multiple servers.
◦ Collaborative (Cluster) - Failover
 Group of servers work for a single task. eg. Amazon, IRCTC

STDC,CDAC 11/18/2023 7
 Topology
◦ A network topology is the physical and logical
arrangement of nodes and connections in a network.
 Two ways of Approach
◦ Physical & Logical
 Physical – The way its connected Physically.
 Logical – The way communication takes place.

STDC,CDAC 11/18/2023 8
 Bus Topology
◦ Bus topology, also known as line topology, is a type of
network topology in which all devices in the network are
connected by one central RJ-45 network cable or coaxial
cable. The single cable, where all data is transmitted
between devices, is referred to as the bus, backbone, or
trunk.

STDC,CDAC 11/18/2023 9
 Ring Topology
◦ A ring topology is a network configuration where device
connections create a circular data path. Each networked
device is connected to two others, like points on a circle.
Together, devices in a ring topology are called a ring
network.
◦ FDDI – Fiber Distributed Data
Interface used in Ring .
◦ MSAU – Multi station Access
Unit (MAU or MSAU) .
MSAU – Looks Like a Switch

STDC,CDAC 11/18/2023 10
 Star Topology
◦ Star topology is a network topology in which each
network component is physically connected to a central
node such as a router, hub or switch. In a star topology,
the central hub acts like a server and the connecting
nodes act like clients.

STDC,CDAC 11/18/2023 11
 Mesh Topology
◦ Mesh topology is a type of network topology in which all
devices in the network are interconnected. In a mesh
topology, data can be transmitted by routing (sent the
shortest distance) and flooding (sent to all devices).

STDC,CDAC 11/18/2023 12
 Hybrid Topology
◦ A hybrid topology is a kind of network topology that is a
combination of two or more network topologies, such
as mesh topology, bus topology, and ring topology. Its
usage and choice are dependent on its deployments and
requirements like the performance of the desired
network, and the number of computers, their location.

STDC,CDAC 11/18/2023 13
 Logical Topology
◦ A logical topology is a concept in networking that
defines the architecture of the communication
mechanism for all nodes in a network.
 TRANSMISSION TYPES
 Unicast – (1 : 1) a single, direct request sent from one host
to another (specific), and only the two hosts interact over
the established route. Eg. Request in Web Browser.
 Multicast – (1 : Many, Many : Many , but not to
all) multicast is group communication where data
transmission is addressed to a group of destination
computers simultaneously.
 Broadcast - In computer networking, broadcasting refers
to transmitting a packet that will be received by every
device on the network.

STDC,CDAC 11/18/2023 14
 Logical Topology
 COMMUNICATION TYPES
 Simplex Mode:- In simplex transmission mode, the
communication between sender and receiver occurs in
only one direction. The sender can only send the data,
and the receiver can only receive the data. The receiver
cannot reply to the sender.
 Half-duplex Mode:- In half-duplex mode, Sender can
send the data and also can receive the data one at a
time. It is two-way directional communication but one
at a time.
 Full-duplex Mode:- In full duplex transmission
mode, the communication between sender and receiver
can occur simultaneously. The sender and receiver can
both transmit and receive at the same time.

STDC,CDAC 11/18/2023 15
 Media Types
◦ In data communication terminology, a transmission medium is a
physical path between the transmitter and the receiver i.e. it is
the channel through which data is sent from one place to another.

STDC,CDAC 11/18/2023 16
 Twisted Pair Cable
◦ Unshielded Twisted Pair (UTP)
 UTP consists of two insulated copper wires twisted around one
another.
 Advantages:
 Least expensive ,Easy to install ,High-speed capacity
 Disadvantages:
 Susceptible to external interference.
 Lower capacity and performance in comparison to STP.
 Short distance transmission due to attenuation.
 Applications:
 Used in telephone connections and LAN networks.

STDC,CDAC 11/18/2023 17
 Twisted Pair Cable
◦ Shielded Twisted Pair (STP):
 This type of cable consists of a special jacket (a copper braid
covering or a foil shield) to block external interference.
 Advantages:
 Better performance at a higher data rate in comparison to UTP
 Eliminates crosstalk , Comparatively faster.
 Disadvantages:
 Comparatively difficult to install and manufacture, More
expensive, Bulky.
 Applications:
 Used in fast-data-rate Ethernet & in voice and data channels of
telephone lines.

STDC,CDAC 11/18/2023 18
 Coaxial Cable
 Used earlier in computer networks.
 Cable TVs & analog television networks widely use Coaxial
cables.
 10 Base 5 (Thick Net) , 10 Base 2 (Thin Net).
 Advantages:
 High Bandwidth, Better noise Immunity, Easy to install and
expand, Inexpensive
 Disadvantages:
 Single cable failure can disrupt the entire network.

STDC,CDAC 11/18/2023 19
 STP – Costly , Can be used in Networking
◦ A twisted-pair cable simply refers to a cable in which pairs -- one or
more -- of insulated strands of copper wire are twisted around one
another.
 UTP – Connector – RJ45
◦ Comes with 4 Pairs – Orange , Green, Blue, Brown
◦ CAT – 1 , 2, 3, 4 – Outdated

STDC,CDAC 11/18/2023 20
 Crimping
◦ Crimping is commonly used in electrical work, to attach
wires together or wire to other connectors.
 Straight Through Cable (Different)
 Straight-through cable is a type of CAT5 with RJ-45 connectors at each
end, and each has the same pin out. It is in accordance with either the
T568A or T568B standards. It uses the same color code throughout the
LAN for consistency. This type of twisted-pair cable is used in LAN to
connect a computer or a network hub such as a router.

STDC,CDAC 11/18/2023 21
 Crossover Cable(Similar)
◦ A Crossover cable is a type of CAT 5 where one end is T568A
configuration and the other end as T568B Configuration.
◦ In this type of cable connection, Pin 1 is crossed with Pin 3, and Pin 2 is
crossed with Pin 6.
◦ Crossover cable is used to connect two or more computing devices. The
internal wiring of crossover cables reverses the transmission and receive
signals. It is widely used to connect two devices of the same type: e.g.,
two computers or two switches to each other.

STDC,CDAC 11/18/2023 22
STDC,CDAC 11/18/2023 23
 Fiber Optic Cable
◦ A fiber-optic cable, also known as an optical-fiber cable,
is an assembly similar to an electrical cable but
containing one or more optical fibers that are used to
carry light.
◦ No Electromagnetic Interference, Fiber-optic cables
transmit data via fast-traveling pulses of light.
◦ Single Mode
 Carries the signal in one direction.
 Costly, Supports Long Distance & High Speed, Uses Laser
Tech.

STDC,CDAC 11/18/2023 24
 Fiber Optic Cable
◦ Multi Mode
 Multiple Signals will pass at a time
 Low cost, Limited Distance, Less Speed, Uses LED technology

STDC,CDAC 11/18/2023 25
 Network Devices
◦ NIC
◦ HUB
◦ SWITCH
◦ BRIDGE
◦ ROUTER
◦ REPEATER
 NIC – Network Interface Card
 Each device connected to network must have a NIC.
 PC – Router , PC – PC , PC - Modem
 It provides functionality such as support for I/O interrupt,
Direct Memory Access (DMA) interfaces, partitioning, and
data transmission, data conversion.

STDC,CDAC 11/18/2023 26
 Network Devices – NIC
◦ Got an Address MAC – Media Access Control
 Hardware , Physical or Permanent Address
 48 Bit Hexa Decimal Address
 Separators - { - , . , : }
◦ IP Address
 Logical address which can be changed any time

STDC,CDAC 11/18/2023 27
 Switch Function
◦ Learning MAC Address
 CAM (Content Addressable Memory) Table
◦ Forwarding & Filtering Decision.
◦ Based on Transmission Type.
 UNICAST,MULTICAST,BROADCAST.
◦ Avoid Looping.

STDC,CDAC 11/18/2023 28
 HUB SWITCH
8,16, 24, 32 Ports 8,16,24,32,64 & More Ports
10 Mbps 10 , 100 Mbps & 1Gbps
(Dedicated)
Broadcast Unicast

 Additional Features of Switch

 CAM Table or MAC Table is available in ASIC.
 ASIC- Application Specific Integrated Circuit
 Media Adoption Feature – 1Gbps, each port will
support 10 Mbps , 100 Mbps and also 1 Gbps.
 Un-Manageable & Manageable

STDC,CDAC 11/18/2023 29
 Bridge
◦ Outdated Device,
◦ LAN Device
◦ Also like a switch , Use a table called BAT
◦ Limited Ports
◦ Software Based Technology (Slow)
 Router
◦ WAN Device
◦ Connects different networks together
◦ Responsible to Route Packets till Destination
◦ Path Selection
◦ Maintains a Routing Table (IP Subnet)
 Repeater
Booster or Amplifier
STDC,CDAC 11/18/2023 30
 A Network Packet

DATA SOURCE DESTINATION SOURCE DESTINATION SOURCE DESTINATION

MAC MAC IP IP PORT PORT

STDC,CDAC 11/18/2023 31
 ISO’s 7 Layer OSI Model
 Open System Interconnection Reference Model
 International Organization for Standardization

STDC,CDAC 11/18/2023 32
 ISO’s 7 Layer OSI Model
◦ Reduces Complexity
 One big problem to Seven Smaller ones
◦ Standardizes Interfaces
◦ Facilitates Modular Engineering
◦ Assures Interoperable Technology
◦ Accelerates Evolution
◦ Simplifies Teaching and Learning

STDC,CDAC 11/18/2023 33
 ISO’s 7 Layer OSI Model

Host Layer – Provide

Accurate Data Delivery
between Computers
Upper Layer

Media Layer – Control

Physical Delivery of
Message over the
Network
Lower Layer

STDC,CDAC 11/18/2023 34
 ISO’s 7 Layer OSI Model
Provides network services to
Application application processes. - Email
Can be – Computer Applications
- Network Applications
- Internetwork Applications
Eg. Microsoft Office , Database,
Client Server Process, File Transfer ,
World Wide Web, Conferences(Audio,
Video).

Presentation Data Representation & Compression.

As – Text Data - Pdf, Word
- Audio & Video – Midi, Mpeg
- Graphic Images – Jpeg, Tiff
- Encrypted

STDC,CDAC 11/18/2023 35
 ISO’s 7 Layer OSI Model
Inter Host Communication.
Session Establishes, Manages and Terminates
sessions between Applications.

TAB1 TAB2 TAB3 TAB4

YOUTUBE AMAZON GMAIL FTP
Source Port 5001 5002 5003 5004
Destination Port Https 443 Https 443 Https 443 Https 443

 Session comes with time also Eg. OTP

STDC,CDAC 11/18/2023 36
 ISO’s 7 Layer OSI Model
End –To – End Connection Reliability.
Data Transport Reliability.
Transport Establishes maintains and terminates
Virtual Connection.
Fault Detection and Recovery.
Information Flow Control.
TCP UDP
Reliable Unreliable
Connection-oriented Connectionless
Segment sequencing No Segment sequencing
Acknowledge Segments No Acknowledgements
Segment retransmission No Windowing or
and flow control through retransmission
windowing

STDC,CDAC 11/18/2023 37
 ISO’s 7 Layer OSI Model -3 Way Handshaking

STDC,CDAC 11/18/2023 38
 Three-way Handshaking
 Step 1 (SYN): In the first step, the client wants to
establish a connection with a server, so it sends a
segment with SYN(Synchronize Sequence Number)
which informs the server that the client is likely to
start communication and with what sequence number
it starts segments with.
 Step 2 (SYN + ACK): Server responds to the client
request with SYN-ACK signal bits set.
Acknowledgement(ACK) signifies the response of the
segment it received and SYN signifies with what
sequence number it is likely to start the segments
with.
 Step 3 (ACK): In the final part client acknowledges the
response of the server and they both establish a
reliable connection with which they will start the
actual data transfer.
STDC,CDAC 11/18/2023 39
 ISO’s 7 Layer OSI Model
Network
Address the best path.
Provides connectivity and path
selection between two end systems.
Domain of routing. (Pass through
multiple devices)

Access to Media(Cable).
Provides reliable transfer of data
Data Link across media (cable).
Physical Addressing, Network
Topology, Error Notification, Flow
Control.

 Divides in to LLC (Logical Link Control) and MAC.

◦ Controls the synchronization, flow control, and error-
checking functions of the data link layer.

STDC,CDAC 11/18/2023 40
 ISO’s 7 Layer OSI Model
Binary Transmission.
Physical Wires, Connectors, Voltages and Data
transfers.
DATA DATA

STDC,CDAC 11/18/2023 41
 ISO’s 7 Layer OSI Model

STDC,CDAC 11/18/2023 42
 Network layer Protocols
◦ IP V4 and IP V6
◦ ARP
 It resolves IP to MAC
 It’s a Broadcast Message
◦ ICMP – Internet Control Message Protocol
 It updates errors in the network.
 Ping uses ICMP protocol, Echo Message.
◦ IGMP – Internet Group Management Protocol
 Used for Multicasting
◦ Ping – Google.com , Tracert Google.com,
◦ Pathping Google.com
STDC,CDAC 11/18/2023 43
 Devices in Layers
Network Layer Router & Layer 3 Switch IP Address
(Routing Table)

Data link Layer NIC Switch & Bridge MAC Address

(MAC Table, BAT)

Physical Layer NIC, Hub & Repeater NO Address

STDC,CDAC 11/18/2023 44
 IP Addressing
◦ IP address is an address having information
about how to reach a specific host, especially
outside the LAN.
◦ An IP address is a 32 bit unique address
having an address space of 232

 The value of any segment (byte) is between 0 and 255 (both included).
 There are no zeroes preceding the value in any segment (011 is wrong, 11
is correct).

STDC,CDAC 11/18/2023 45
 IP Addressing
 Classfull Addressing
◦ The 32 bit IP address is divided into five sub-classes.
◦ Class A
◦ Class B
◦ Class C
◦ Class D
◦ Class E
 Class D is for multicast networking
 Class E address range is reserved for future or experimental
purposes.
 IP addresses are globally managed by Internet
Assigned Numbers Authority(IANA) and regional
Internet registries(RIR).
STDC,CDAC 11/18/2023 46
 IP Addressing
◦ IPv4 address is divided into two parts:
◦ Network ID
◦ Host ID
 The class of IP address is used to determine the bits
used for network ID and host ID and the number of
total networks and hosts possible in that particular
class.

STDC,CDAC 11/18/2023 47
 Class A
◦ The network ID is 8 bits long.
◦ The host ID is 24 bits long.

 The higher order bit of the first octet in class A is always

set to 0.
 The remaining 7 bits in first octet are used to determine
network ID.
 The 24 bits of host ID are used to determine the host in
any network.
 The default subnet mask for class A is 255.x.x.x.

STDC,CDAC 11/18/2023 48
 Class A
◦ The network ID is 8 bits long.
◦ The host ID is 24 bits long.

 2^7-2= 126 Network ID

◦ Two Address is subtracted because 0.0.0.0 and 127.x.y.z
are special address.
 2^24 – 2 = 16,777,214 Host ID
 IP addresses of Class A ranges from 1.x.x.x – 126.x.x.x.

STDC,CDAC 11/18/2023 49
 Class B
◦ The network ID is 16 bits long.
◦ The host ID is 16 bits long.

 The higher order bits of the first octet of IP

addresses of class B are always set to 10.
 The remaining 14 bits are used to determine
network ID.
 The 16 bits of host ID is used to determine the
host in any network.
 The default sub-net mask for class B is
255.255.x.x.
STDC,CDAC 11/18/2023 50
 Class B
◦ The network ID is 16 bits long.
◦ The host ID is 16 bits long.

 2^14 = 16384 network address/Network ID

 2^16 – 2 = 65534 host address /Host ID
 IP addresses of Class B ranges from 128.0.x.x –
191.255.x.x.

STDC,CDAC 11/18/2023 51
 Class C
◦ The network ID is 24 bits long.
◦ The host ID is 8 bits long.

 The higher order bits of the first octet of IP addresses

of class C are always set to 110.
 The remaining 21 bits are used to determine network
ID.
 The 8 bits of host ID is used to determine the host in
any network.
 The default sub-net mask for class C is
255.255.255.x.
STDC,CDAC 11/18/2023 52
 Class C
◦ The network ID is 24 bits long.
◦ The host ID is 8 bits long.

 2^21 = 2097152 Network address/ Network Id

 2^8 – 2 = 254 Host address/ Host Id
 IP addresses belonging to class C ranges from 192.0.0.x
– 223.255.255.x

STDC,CDAC 11/18/2023 53
 Class D
 IP address belonging to class D are reserved for
multi-casting.
 The higher order bits of the first octet of IP
addresses belonging to class D are always set to
1110.
 Class D does not posses any sub-net mask.
 IP addresses belonging to class D ranges from 224.0.0.0
– 239.255.255.255.

STDC,CDAC 11/18/2023 54
 Class E
 IP addresses belonging to class E are reserved
for experimental and research purposes.
 IP addresses of class E ranges from 240.0.0.0 –
255.255.255.254.
 This class doesn’t have any sub-net mask.
 The higher order bits of first octet of class E are
always set to 1111.

STDC,CDAC 11/18/2023 55
 Summary

 Range of special IP addresses:

 169.254.0.0 – 169.254.255.255 : Link local addresses
 127.0.0.0 – 127.255.255.255 : Loop-back addresses
 0.0.0.0 – 0.255.255.255 : Used to communicate within
the current network.
STDC,CDAC 11/18/2023 56
STDC,CDAC 11/18/2023 57
 SUBNETTING
◦ Subnetting is a method of dividing a single physical
network into logical sub-networks (subnets).
◦ Subnetting helps to reduce the network traffic and
also conceals network complexity.
NETWORKID SUBNETMASK NO. NETWORKS IP/SUBNET -Hosts
192.168.10.0 255.255.255.0 1 254 *(256-2)

◦ Subnetting is used to avoid the wastage of addresses.

STDC,CDAC 11/18/2023 58
STDC,CDAC 11/18/2023 59
 CIDR
◦ Classless Inter Domain Routing
 CIDR or supernetting is a method of assigning IP
addresses that improves the efficiency of address
distribution and replaces the previous system based on
Class A, Class B and Class C networks.
Class Full (Default)
10.0.0.0 255.0.0.0
176.16.0.0 255.255.0.0
196.168.10.0 255.255.255.0
 IP
Class Less (Subnetted)
10.0.0.0 255.128.0.0
10.0.0.0 255.255.128.0
176.16.0.0 255.255.192.0
196.168.10.0 255.255.255.252
STDC,CDAC 11/18/2023 60
 VLSM
◦ Variable Length Subnet Mask (VLSM) is a subnet --
a segmented piece of a larger network -- design
strategy where all subnet masks can have varying
sizes.
◦ This process of "subnetting subnets" enables
network engineers to use multiple masks for
different subnets of a single class A, B or C
network.
◦ Eg:- Seg 1 100 IP – 192.168.10.0 – 192.168.10.127,
255.255.255.128.
◦ Seg 2 30 IP – 192.168.10.128 – 192.168.10.159,
255.255.255.224.
◦ Seg 1 2 IP – 192.168.10.160 – 192.168.10.163,
255.255.255.252.
STDC,CDAC 11/18/2023 61
 Router
◦ Layer 3 Device , works at Network Layer.
◦ Maintains a Routing Table.
◦ Routes packets till Destination.
 A gateway IP refers to a device on a network which
sends local network traffic to other networks.
 Cisco
◦ IOS – Internetwork Operating System- Command Line
◦ v12.x Currently v15.x
◦ IOS Working Modes
 User Mode : No New Configuration/Can view Limited existing one
 Privileged Mode : No New Configuration/Can view All
 Configuration Mode (Global Configuration) : New Configuration possible
 User Mode - Router> , Privileged Mode - Router # , Configuration Mode -
◦ Router(Config)#

STDC,CDAC 11/18/2023 62
 Routing
◦ Routing is the process of selecting and defining paths
for IP-packet traffic within or between networks as
well as the process of managing network traffic
overall.
◦ Routing is performed by a special device known as a
router.

STDC,CDAC 11/18/2023 63
 Routing – Static Routing & Dynamic Routing
 Static Routing
◦ It is a technique in which the administrator manually
adds the routes in a routing table.
◦ When ever we have Less Number of Routers.
◦ No routing overhead for the router.
◦ It adds security because an only administrator can
allow routing.
◦ It has not bandwidth usage between the routers.
 For a large network, it becomes a very difficult task to
add each route manually to the routing table.
 The system administrator should have a good
knowledge of a topology as he has to add each route
manually.
STDC,CDAC 11/18/2023 64
 Routing – Static Routing & Dynamic Routing
 Dynamic Routing
◦ Also called adaptive routing, is a process where a
router can forward data via a different route for a
given destination based on the current conditions of
the communication circuits within a system.
◦ We are leaving to the router to decide the Routing.
◦ Dynamic routing provides key advantages over static
routing, including scalability and adaptability.
◦ A dynamically routed network can grow larger more
quickly and is able to adapt to changes in the network
topology brought about by this growth or by the
failure of one or more network components.
◦ We have to enable Dynamic Routing Protocols
STDC,CDAC 11/18/2023 65
 Routing – Static Routing & Dynamic Routing
 Dynamic Routing
 Protocols

IGP EGP

BGP
Distance
Link State Hybrid
Vector

STDC,CDAC 11/18/2023 66
 OSPF
◦ Open Shortest Path First.
◦ It’s a Link state Protocol.
◦ It supports fast convergence – Adaptive to changes in
Topology.
◦ It uses Multicast Address 224.0.0.5 & 224.0.0.6
(Reserved for OSPF) – Directly not, Indirectly with OSPF.
◦ It uses SPF or Dijsktra's algorithm.
◦ It Supports Plain Text & MD5 Authentication.
 Routers can be Protected with Passwords.
 Password in Plain Text and Secret Text.
◦ Three state use to establish Neighbour relationship
 Down-State , Init-State, Two-Way State

STDC,CDAC 11/18/2023 67
 Dijsktra's Algorithm

STDC,CDAC 11/18/2023 68
 Virtual Private Network
◦ VPN stands for "Virtual Private Network" and describes
the opportunity to establish a protected network
connection when using public networks.
◦ VPNs encrypt your internet traffic and disguise your
online identity.
◦ This makes it more difficult for third parties to track
your activities online and steal data.
◦ Not Expensive.
◦ Installed/Enabled on Varieties of Devices.
◦ Allow to Secure Connection

STDC,CDAC 11/18/2023 69
 Virtual Private Network
◦ VPN Types
 Remote Access (Point to Site) – Users Connecting
 Site – To- Site – Branch Office to Head Office
◦ VPN Protocols
 PPTP – Point to Point Tunneling Protocol
 L2TP – Layer 2 Tunneling Protocol
 SSTP – Secure Socket Tunneling Protocol
 IKEV2 – Internet Key Exchange Version 2

STDC,CDAC 11/18/2023 70
STDC,CDAC 11/18/2023 71
 Network address translation is a way to map
multiple private addresses inside a local network
to a public IP address before transferring the
information onto the internet.
 Private IP
◦ Locally Unique (Any one can use at the same time).
◦ Free, Present in a Secure LAN.
◦ Non Routable in the Internet.
◦ ISP support is not required.
 Private Address Ranges
Class A: 10.0. 0.0 to 10.255. 255.255.
Class B: 172.16. 0.0 to 172.31. 255.255.
Class C: 192.168. 0.0 to 192.168. 255.255.

STDC,CDAC 11/18/2023 72
 Network address translation is a way to map
multiple private addresses inside a local network
to a public IP address before transferring the
information onto the internet.
 Public IP
◦ Globally Unique, Assigned by internet service provider.
◦ Cost and Support by ISP.
◦ Its Routable in Internet.
◦ All IP other than Private IP Ranges are available for Sale.
 NAT is used to minimize the usage of Public IP
directly to Internet.

STDC,CDAC 11/18/2023 73
 Types of NAT
◦ Static NAT (1: 1) – For a single Private IP we use a single
public IP . eg. Email, Web Servers , FTP Servers.
◦ Dynamic NAT – A Range of private IP’s will make use of a
pool of Public IP.
 Ex. 192.168.10.0/24 Pool – 9.0.0.1 – 9.0.0.100
 Dynamic NAT is the least common type of translation
deployed. (Only 100 can go out at a time).
 Dynamic NAT being temporary by nature, and therefore
inconsistent.
◦ Port Address Translation – A range of Private IP’s will
make use of a Single Public IP.
 Ex. 192.168.10.0/24 9.0.0.1
 PAT also uses source port numbers, allowing multiple hosts
to share a single IP.(All 254 can go out) ,use different Ports.

STDC,CDAC 11/18/2023 74
 Used to allow or block the Traffic.
 Controlling (eg. Access a Website but Block a Ping)
 General Steps to Configure ACL
◦ Select the type of ACL.
◦ Select a specific Router to configure ACL.
◦ Select a specific Router Interface to apply ACL.
◦ Make decision of Permit or Deny
 Select the type of ACL
◦ Standard ACL
 ACL Numbers Ranges from 1-99 & 1300-1999
 ACL will be applied near to Destination.
 It Talks only about Source Network.
 Packets cannot be filtered based on Protocol or Port Number.

STDC,CDAC 11/18/2023 75
 Extended ACL.
◦ ACL Number Ranges from 100-199 & 2000-2699.
◦ ACL will be applied near to Source.
◦ It talks about Both Source & Destination.
◦ Packets be filtered based on Protocol or Port Number.

STDC,CDAC 11/18/2023 76
 DHCP is a client/server protocol that
automatically provides an Internet Protocol (IP)
host with its IP address and other related
configuration information such as the subnet
mask and default gateway.

STDC,CDAC 11/18/2023 77
 DHCP – Some Understanding (Just For U)
◦ Can be Executed in Router, PC, Server etc.
◦ We have to Install DHCP Services in PC and Server.
 Chances of Conflicts as different PC’s can Supply different
IP’s (10.0.0.1 ,11.0.0.1 ) same as Servers
◦ Router the Best Choice

STDC,CDAC 11/18/2023 78
 Switch
◦ Basically Switch Works in Layer 2 It’s a Layer 2 Device
◦ Router is a Layer 3 Device
◦ Un-Manageable - Switch with out Console Port.
◦ Manageable - Switch with Console Port. (HyperTerminal)
◦ Layer 2 Switch - Normal like a Switch.
◦ Layer 3 Switch - Works Like a Router and Switch.
◦ 2950 & 3550
◦ Layer 3 Switch better than Router ? I don’t Want Router…
 No Serial Port
 Long Distance Not Supported
 Costly
 Used With in the Organization
 15 Departments Needs Minimum 5 Routers OR 1 Layer 3 Switch
STDC,CDAC 11/18/2023 79
 Switch Function
◦ Learning MAC Address
 CAM (Content Addressable Memory) Table
◦ Forwarding & Filtering Decision.
◦ Based on Transmission Type.
 UNICAST,MULTICAST,BROADCAST.
◦ Avoid Looping.

STDC,CDAC 11/18/2023 80
 Switch Port States
◦ Blocking State
◦ Listening State
◦ Learning State
◦ Forwarding State
 To Go from Blocking State to Forwarding State it takes 30 S.
 To Avoid the delay use “portfast” in Access Port NOT in
Truck Port.
 No Shut down

STDC,CDAC 11/18/2023 81
 Virtual LAN
 A virtual local area network (VLAN) is a virtualized
connection that connects multiple devices and
network nodes from different LANs into one
logical network.
◦ Not Physically Exist But Logically.
◦ Its Find in all Unmanageable Switch (Default). – Vlan1
◦ Essentially It’s a Broadcast Domain.
 32 Ports ……. VLan1 – (1-20) , Vlan2-(21-32).
 Broadcast Message will be restricted only in One VLAN.
◦ Management Interface
 VLAN Interface IP can be assigned , Switch as a Whole NO.
◦ To Manage Department We use VLAN.

STDC,CDAC 11/18/2023 82
 Virtual LAN Advantages
◦ Creates Privacy & Security Between Departments.
◦ Better Management & Utilization of Network.
 1000 Computers as a Whole or 200 X 5 VLANs.
 Easy to Manage ,Easy to Trouble Shoot.
◦ Flexibility.
◦ Can make a logical grouping of devices by function
rather than location.
◦ Additional layer of security , enhance network security.
◦ Physical Device management simple and easier.
◦ Higher performance and reduced latency.
◦ Do not require additional hardware and cabling, which
helps you to saves costs.
 Making a subnet is more complicated than a VLAN.
STDC,CDAC 11/18/2023 83
 Types Virtual LAN
◦ Static VLAN – Port based VLAN
VLAN10:Fa0/1-20

32 Port Switch

VLAN20:Fa0/21-32

◦ Dynamic VLAN – MAC based VLAN

 MAC Address are binded to VLANS.
 10 Computers – 5 in MAC VLAN10, 5 in VLAN20.
 Have to Setup VLAN Membership Policy Server.
 VLAN id’s – 0-4095.
◦ 0 – No Vlan. , 1- Default ., 1002 – 1005 Reserved., 4095 – Broadcast.

STDC,CDAC 11/18/2023 84
 IPV6
◦ Latest version of IP address.
◦ An IPv6 address is 128 bits in length and
consists of eight, 16-bit fields, with each field
bounded by a colon.
◦ IPv4 will be in Binary where as IPv6 is
Hexadecimal.
◦ Each field must contain a hexadecimal
number, in contrast to the dotted-decimal
notation of IPv4 addresses.

STDC,CDAC 11/18/2023 85
 IPV6
◦ 128 Bit Address will be in the Form of HEXA Decimal.
◦ Larger Address Space – More number of IP address.
◦ Hierarchical Address & Routing Infrastructure.
 There is No Class A , Class B …and Its Compact as there is
no load on the Router End
◦ Stateless and State full address Configuration.
 In IPV4 DHCP is only used for Automatic IP Assignment .
 With or With Out DHCP we can automatically assign
◦ No Broad Cast Support , Will Do Only Unicast/Multicast
Unspecified 0.0.0.0 ::
Loopback 127.0.0.1 ::1

STDC,CDAC 11/18/2023 86
◦ Global Unicast Addresses
 Routable on the IPv6 Internet. (Public IP Address).
 Begin with 2 or 3.
 Eg:-2001:0db8:85a3:0000:0000:8a2e:0370:7334
◦ Unique Local Unicast Address
 Equivalent to IPv4 .(Private IP Address).
 Start with FD
 11111101 ……………….
 Eg:- FDAB:1234:5678:0000::
◦ Link – Local Unicast Address
 These addresses only work on the local link, we never route
these addresses.
 Automatically generated on all IPv6 Hosts – used for LAN.
 Eg:- FE80::
 Automatic Private IP Addressing (APIPA)
STDC,CDAC 11/18/2023 87
 Port mirroring is a method of copying and
sending network packets transmitted as input
from a port to another port of a monitoring
computer/switch/device.
 It is a network monitoring technique
implemented on network switches and similar
devices.

STDC,CDAC 11/18/2023 88
 Network Time Protocol (NTP) is used by hundreds
of millions of computers and devices to synchronize their
clocks over the Internet.
◦ Provides Online Clock, uses the Port 123
◦ In all devices we have a Lithium Battery thru which time
is maintained.
 1000 Computers in a Network – 1000 Battery , if one
goes down --- may can affect the network time .
 We have to make sure the time is Accurate in the
Network.
◦ We can give a the Time through an Online Server –NTP
so that time is not dependent on a Machine/Battery.
◦ Updation can be given Online so that the changes will
reflect on all connected Clients.

STDC,CDAC 11/18/2023 89
 A service set identifier (SSID) is a sequence of
characters that uniquely names a Wi-Fi network.
 An SSID is sometimes referred to as a network
name.
 This name allows stations to connect to the
desired network when multiple independent
networks operate in the same physical area.
 Wlan uses Radio Waves as the Physical Layer.
 WLAN uses CSMA/CD for media Devices.
 WLAN must meet country specific RF
specifications.

STDC,CDAC 11/18/2023 90
 FCC (Federal Communications Commission),
www.fcc.gov: Regulates the use of wireless devices in the
United States.
 ETSI (European Telecommunications Standards Institute),
www.etsi.org: Chartered to produce common standards in
Europe.
 IEEE (Institute of Electrical and Electronic Engineers),
www.ieee.org: Creates and maintains operational
standards.
 Wi-Fi Alliance, www.wi-fi.com: Promotes and tests for
WLAN interoperability.
 WLANA (WLAN Association), www.wlana.org: Educates and
raises consumer awareness regarding WLANs.
 CCX (Cisco Compatible Extensions): The CCX specification
is for makers of 802.11 wireless LAN chips to ensure
compliance with the Cisco proprietary WLAN protocols.

STDC,CDAC 11/18/2023 91
STDC,CDAC 11/18/2023 92
 Mitigating the Threats
◦ Encryption
◦ Authentication
◦ Intrusion Detection System and Intrusion Prevention
System

STDC,CDAC 11/18/2023 93
[email protected]
+91-98955-58105

STDC,CDAC 11/18/2023 94