Module 6

Implementing Network Services

​ opyright © 2024 The Computing Technology Industry Association, Inc.

C 1
All rights reserved.
Learning Objectives
• Compare and contrast transport protocols.
• Use command line tools to scan network ports.
• Explain the use of network addressing services.
• Explain the use of name resolution services.
• Configure and troubleshoot DHCP and DNS
services.

​ opyright © 2024 The Computing Technology Industry Association,

C 2
Inc. All rights reserved.
Lesson [6.1]
Transport & Application Layer Protocols

​ opyright © 2024 The Computing Technology Industry Association, Inc.

C 3
All rights reserved.
Transport Layer
7 Application

6 Presentation

5 Session
Multiplexed application
4 Transport
data delivery
3 Network

2 Data Link Basic connectivity,

address, and forwarding
1 Physical

​ opyright © 2024 The Computing Technology Industry Association,

C 4
Inc. All rights reserved.
Transport Layer Ports and Connections

​Copyright © 2024 The Computing Technology Industry Association, Inc. All rights reserved.
5
Transmission Control Protocol (TCP)
Source port
Destination port
Sequence number
TCP helps For reliability, TCP
Ack number
computers send requires
information to numerous header Data length
each other in a fields to maintain Flags
reliable way. state information.
Window
Checksum
Urgent Pointer
Options
​ opyright © 2024 The Computing Technology Industry Association,
C 6
Inc. All rights reserved.
 TCP Handshake
Host A Host B

t’s SYN
Hey! Le
re’s
chat. He r. I can
be t
my num now. alk
H
my nu ere’s
mber
.
SYN + ACK

! I’m
Great y
read
now!
ACK
Connection
​ opyright © 2024 The Computing Technology Industry Association,
C Established 7
Inc. All rights reserved.
 UDP Exchange
Host A Host B

Request
Hello! I hope
Hello! I have you get this.
no idea if you Write back
are getting my Response soon!
letters but I’m
going to keep
writing!!

​ opyright © 2024 The Computing Technology Industry Association,

C 8
Inc. All rights reserved.
User Datagram Protocol (UDP)

Source port
UDP helps
computers send Destination port
information to
each other in a
Message length
non-guaranteed
way.
Checksum

​ opyright © 2024 The Computing Technology Industry Association,

C 9
Inc. All rights reserved.
Activity: Run netstat

1. Open the command prompt or Terminal.

2. Run netstat command to view all active
connections and their respective ports.
3. Use additional options like –a to show all
connections or –b to display the application
making the connection.

​ opyright © 2024 The Computing Technology Industry Association,

C 10
Inc. All rights reserved.
Lesson 6.2
DHCP

​ opyright © 2024 The Computing Technology Industry Association, Inc.

C 11
All rights reserved.
DHCP Process
Server Client

DHCP Discover I’m new here.

I need an IP
address!
Here’s an IP
address for you! DHCP Offer

Great thanks!
DHCP Request I’ll take it.

Sounds good. It’s

all yours! DHCP Ack

​ opyright © 2024 The Computing Technology Industry Association,

C 12
Inc. All rights reserved.
DHCP Server Configuration
A DHCP server must be
• Assigned a static IP address
• Configured with a range of IP
addresses/subnet masks
(scope)

​ opyright © 2024 The Computing Technology Industry Association,

C 13
Inc. All rights reserved.
DHCP Reservations and Exclusions
DHCP Reservations DHCP Exclusions
• Ensures a device always • Prevents a range of IP
receives the same IP addresses from being
address assigned
• Tied to a device’s MAC • A range of IP addresses
address is set aside and not
• Ideal for devices that distributed
need a consistent IP • Ideal for addresses
address statically assigned to
devices

​ opyright © 2024 The Computing Technology Industry Association,

C 14
Inc. All rights reserved.
Activity: Identify the Protocol

​ opyright © 2024 The Computing Technology Industry Association,

C 15
Inc. All rights reserved.
Lesson 6.3
APIPA and SLAAC

​ opyright © 2024 The Computing Technology Industry Association, Inc.

C 16
All rights reserved.
APIPA
Automatic Private IP Addressing

• Devices can self-assign an IP address

when DHCP servers unavailable
• Only for local network use

How APIPA Works on a Device

• Assigns itself an address between

169.254.0.1 and 169.254.254.255
• Uses ARP to ensure address is unique

​ opyright © 2024 The Computing Technology Industry Association,

C 17
Inc. All rights reserved.
IPv6 Autoconfiguration
IPv6 Autoconfiguration
Description
• Allows devices on an IPv6 network to
configure their own IP addresses without
DHCP

Types

• Stateless Address Autoconfiguration

(SLAAC)
• Stateful Address Autoconfiguration
(DHCPv6)
​Copyright © 2024 The Computing Technology Industry Association, 18
Inc. All rights reserved.
SLAAC
Function Advantages Limitations

Link-local address Simplified Does not provide

configuration network DNS server
configuration addresses
EUI-64 interface
identifier
Limited adoption
No need for a
Duplicate Address in certain
central server
Detection (DAD) environments

​ opyright © 2024 The Computing Technology Industry Association,

C 19
Inc. All rights reserved.
DHCPv6
Function Advantages Limitations

DHCPv6 request
and response Requires
Centralized
dedicates server
control
setup
Address
assignment and
management
Extensive network
More complex
configuration
Lease time and than SLAAC
options
renewal

​ opyright © 2024 The Computing Technology Industry Association,

C 20
Inc. All rights reserved.
Activity: Think About It
The university’s IT department is facing a
challenge with the deployment of IPv6
across their diverse campus network.

With a mix of student devices,

administrative workstations, and IoT-
enabled classroom technology, the team
needs an autoconfiguration protocol that
can handle dynamic environments and
provide ease of management.

Which protocol should they use?

​Copyright © 2024 The Computing Technology Industry Association, Inc. All rights reserved. 21
Lesson 6.4
DHCP Relay and Troubleshooting

​ opyright © 2024 The Computing Technology Industry Association, Inc.

C 22
All rights reserved.
DHCP Relay
DHCP Relay Agent

• Acts as a network bridge

• Receives DHCP broadcast messages from
clients and forwards them to DHCP server
• Enables clients to obtain IP address from
remote DHCP server

​ opyright © 2024 The Computing Technology Industry Association,

C 23
Inc. All rights reserved.
DHCP Relay
Network A Network B

DHCP Discover

Relay Agent
DHCP Offer

DHCP Server DHCP Request DHCP Client

(Different
DHCP Ack Network)

DHCP Clients (Same Network)

​ opyright © 2024 The Computing Technology Industry Association,
C 24
Inc. All rights reserved.
IP Helper
IP Helper

• Cisco network device feature

• Forwards DHCP and other broadcast traffic across
different subnets

Functionality

• Translates broadcasts to unicast to cross subnet

boundaries
• Sends DHCP requests from clients to a server in a
different subnet

​ opyright © 2024 The Computing Technology Industry Association,

C 25
Inc. All rights reserved.
Activity: Troubleshooting DHCP
Client is unable to
reach external
networks

Client received
address already in
use

​ opyright © 2024 The Computing Technology Industry Association,

C 26
Inc. All rights reserved.
Lesson 6.5
Domain Naming System

​ opyright © 2024 The Computing Technology Industry Association, Inc.

C 27
All rights reserved.
Think About It: DNS

What is DNS
(Domain Name System)?

​Copyright © 2024 The Computing Technology Industry Association, Inc. All rights reserved. 28
Domain Name Service (DNS)
• Local identifiers
• Assigned by administrator
Host Names • Human-friendly names
• Unique on the local network

• Global identifiers
• Hierarchical structure
Domain Names • Avoids duplications on the internet
• Registered with a registrar

​ opyright © 2024 The Computing Technology Industry Association,

C 29
Inc. All rights reserved.
 DNS Hierarchy
Root Domain
Root DNS
Servers

Top Level
.com DNS .org DNS .gov DNS
Servers Servers Servers Domain

Cisco.com Microsoft.com Comptia.org Owasp.org Nist.gov DNS Cisa.gov DNS

DNS Servers Servers DNS Servers DNS Servers Servers Servers Domain

Help.comptia.
org Sub-Domain

​ opyright © 2024 The Computing Technology Industry Association,

C 30
Inc. All rights reserved.
Name Resolution using DNS

​Copyright © 2024 The Computing Technology Industry Association, Inc. All rights reserved.
31
Resource Records

Resource
DNS name A single zone
A DNS zone records help There are
servers namespace
will contain to resolve numerous
maintain the may host
numerous queries for types of
DNS records for
resource names and resource
namespace multiple
records. services into records.
in zones. domains.
IP addresses.

​ opyright © 2024 The Computing Technology Industry Association,

C 32
Inc. All rights reserved.
Host Record Types
Host Mail
SOA Service Text Pointer
Address Exchange
Records Records Records Records
Records Records

Identify
Specify mail Store text
Indicate Map domain service Used for
servers information
authority for a names to IPv4 locations reverse DNS
responsible for external
DNS zone addresses within a lookup
for a domain sources
domain

Contain admin Needed for

Map IP
contact, DNS to Include port Used for SPF
addresses
refresh rates, translate Prioritize mail numbers and and DKIM
back to
and domain delivery priority for records to
domain
versioning names into IP services reduce spam
names
information addresses

​ opyright © 2024 The Computing Technology Industry Association,

C 33
Inc. All rights reserved.
DNS Server Configuration
Primary DNS Servers
• Translate domain names into IP addresses
• Act as the first point of contact for DNS queries

Secondary DNS Servers

• Provide redundancy and load balancing for DNS queries
• Serve as backup servers if the primary server fails

Cache-only DNS servers

• Cache DNS resolutions to speed up response times
• Handle repetitive queries to reduce load on primary/secondary servers

​ opyright © 2024 The Computing Technology Industry Association,

C 34
Inc. All rights reserved.
Internal vs. External DNS
Public access: Resolves internet domain names for
users
External DNS External management: Managed by providers, not
Servers: local network
• Public focus: Primarily handles public domain to
IP resolution

Private network: Resolves internal domain names

Internal DNS Internal control: Managed by IT for local network
Servers: • Security focus: Enhances network security by
isolating traffic

​ opyright © 2024 The Computing Technology Industry Association,

C 35
Inc. All rights reserved.
DNS Security
Threat Solution
DNS spoofing and DNSSEC (DNS Security
poisoning Extensions)
Eavesdropping and DNS over TLS (DoT)
interception attacks
Interception attacks DNS over HTTPS (DoH)
and tampering
DNS tunneling and Advanced DNS Firewall
advanced attacks
​ opyright © 2024 The Computing Technology Industry Association,
C 36
Inc. All rights reserved.
Activity: Two Truths and a Lie
Resource records help
Host names help to
resolve queries for
avoid duplications on
names and services
the Internet
into IP addresses

Pointer records map

IP addresses back to
domain names

​ opyright © 2024 The Computing Technology Industry Association,

C 37
Inc. All rights reserved.
Lesson 6.6
DNS Troubleshooting

​ opyright © 2024 The Computing Technology Industry Association, Inc.

C 38
All rights reserved.
Client DNS Issues

Symptoms of DNS Issues

• Timeouts and errors

• Partial DNS failures
• Page loading issues
• Delays in accessing websites

​ opyright © 2024 The Computing Technology Industry Association,

C 39
Inc. All rights reserved.
Name Resolution Issues
Name Resolution Methods

• Check local name caches

• Check HOSTS
• Verify DNS records using
nslookup or dig

​ opyright © 2024 The Computing Technology Industry Association,

C 40
Inc. All rights reserved.
Activity: Run nslookup and dig

Windows Machines
• Open command prompt or Terminal
• Type ns lookup comptia.org

Linux Machines
• Open Terminal
• Type dig comptia.org

​ opyright © 2024 The Computing Technology Industry Association,

C 41
Inc. All rights reserved.
Summary
• TCP (Transport): Reliable, connection-oriented, and error-
checked data delivery (acknowledgments)
• DHCP (Automatic IP): Assigns IP addresses, subnet masks, and
optional parameters (gateway, DNS).
• Relay Agents (DHCP): Forward DHCP traffic between subnets
• DNS (Global Hierarchy): Translates domain names to IP
addresses.

​ opyright © 2024 The Computing Technology Industry Association, Inc.

C 42
All rights reserved.