Basics of networking : Model,Router,firewall,Switch, wireless access points



Router:

 Layer 3 device of OSI model, deals with communication via IP address, Private Network, public network etc. routing protocols OSPF, etc are used, with concepts like routing tables.








DNS:

Domain Name server


DHCP:

Dynamic Host Configuration Protocol

========================================================================
NETWORKS , SUBNETWORKS and ROUTE

                                   ROUTING TABLE 

Destination     Gateway         Genmask         Flags Metric Ref    Use Iface
default             gateway             0.0.0.0         UG    100    0        0 em2
15.15.0.0       10.10.4.99      255.255.255.0   UG     0      0        0 em3


ESSENCE of routing table :
Which is the next HOP/Router for the current packet.

How it decides ?

it looks at current packet's destination address, say 15.15.0.1, it search for all Destination IP and Subnet, its does AND Operation of "Destination" and  "Genmask" to see, if it matches the route/row in routing table.
Once it finds the match, then it looks at "gateway" IP and forwards that packet to that "gateway".

What is Gateway ?

Gateway can be next attached/pingable routers, any pingable/reachable network/VM.
though which we can reach the packet's destination IP address.


In my case, I had to add below in .80 machine to reach 15.15.0.0 network's IPS
15.15.0.0       10.10.4.99      255.255.255.0   UG     0      0        0 em3





============NETSTAT=============

On .80 machine

tcp6       0      0 10.10.4.80:44016        15.15.0.1:3083          ESTABLISHED

Here local port 10.10.4.80:44016 is connected with remote 15.15.0.1:3083

On .99 machine

tcp6       0      0 15.15.0.1:3083          10.10.4.80:44016        ESTABLISHED

tcp6       0      0 15.15.0.1:3083          :::*                    LISTEN

and is listening from any connection from any ip and port from outside, so its a server socket on .99

===================TCP DUMP===========================================

tcpdump -vv -X -i em3 'port 44016' -w dump.log

=======================================================================


Segmentation is way to keep the virtual network separate.
Like 
 VLAN, VXLAN,GRE, OpenFlow Rules, Network Namespace.


Subnet provide layer3 Addressing scope for network.

DHCP Software is implmented via dnsmasq service of linux.
    










Comments

Post a Comment

Popular posts from this blog

Linux command

  ============NETSTAT============= On .80 machine tcp6       0      0 10.10.4.80:44016        15.15.0.1:3083          ESTABLISHED Here local port 10.10.4.80:44016 is connected with remote 15.15.0.1:3083 On .99 machine tcp6       0      0 15.15.0.1:3083          10.10.4.80:44016        ESTABLISHED tcp6       0      0 15.15.0.1:3083          :::*                    LISTEN and is listening from any connection from any ip and port from outside, so its a server socket on .99 ===================TCP DUMP================ tcpdump -vv -X -i em3 'port 44016' -w dump.log ========================DF =================== Filesystem               Size  Used Avail Use% Mounted on devtmpfs                 252G     0  252G   0% /dev tmpfs                    252G  4.0K  252G   1% /dev/shm tmpfs                    252G  652M  252G   1% /run tmpfs                    252G     0  252G   0% /sys/fs/cgroup /dev/mapper/centos-root  1.8T  4.8G  1.7T   1% / /dev/loop0               1.9G  6.1M  1.7G   1% /sr
Read more

devstack installation - Compute node

 0. sudo hostnamectl set-hostname compute-141 1. Remove any symlik of /etc/resolve.conf and add nameserver 8.8.8.8 nameserver 8.8.4.4 2. check df -h [ /, should have good space] 3. checl internet connectivity, ping www.google.com 4. if possible disable Ipv6, ip allocation #No mandatory /etc/netplan/50-cloud-init.yaml  5. And host name entry in /etc/host give root as default user and sudo priviledge sudo useradd -s /bin/bash -d /opt/stack -m stack echo "stack ALL=(ALL) NOPASSWD: ALL" | sudo tee /etc/sudoers.d/stack su - stack sudo apt install git -y git clone https://git.openstack.org/openstack-dev/devstack  # git clone https://opendev.org/openstack-dev/devstack -b stable/ussuri # All codes have been downloaded in /opt/stack/devstack directory cd devstack Edit local.conf and add your desired conf details run --> ./stack.sh --use-feature=2020-resolver Working compute node local.conf[change compute IP accordingly] **************************************************************
Read more