70-410 Networking Flashcards
Link Local Address
These are used on a single link. All IPv6 interfaces on a device such as host or router is assigned a link-local address. The Link-local address is always a unicast address and /10 prefix is used for these addresses. The first filed will always be FE8x(1111 1110 10). These do not follow any hierarchy.FE80::1234:33FF:FE11:2222/10
Site Local Address
These are similar to the Private IP addresses used in IPv4. These addresses cannot be used on the Internet but can be used in organizations as Private IPs.The Site Local address has its first field as FECx (1111 1110 11). These are also unicast and follow to the hierarchy.FEC0::2642:E3FE:FF63:C172/64- FEC is the first 10 bits which are fixed also known as FP. Format Prefix.- The next 38 bits are set as 0- The following 16 bits are used for identification of Private subnet ID- The last 64 bits is the interface id based on the hardware address.
Aggregate Global Addresses
These are similar to the Public addresses in IPv4 and can be used over the Internet. So devices that need to communicate over the Internet need to have this address assigned and should be unique.The first field is always 2xxx (001). These addresses are unicast.2000::2532:E3EF:FE76:C234/64- The first 3 bits are the fixed Format Prefix FP.- The next 13 bits are the top-level aggregation identifier (TLA ID).- The following 8 bits are reserved for future use.- The next 24 bits are the next-level aggregation identifier (NLA ID).- The next 16 bits are the site-level aggregation identifier (SLA ID).- The last 64 bits similar to link and site local are used as the interface ID
Multicast Addresses
These addresses are equivalent of the multicast addresses used in IPv4. Packets are sent to more than one device. Multiple multicast groups can be can be set and interface are assigned to them.The multicast address always begins with FFxx (1111 1111)FF01:0:0:0:0:0:0:1IPv6 and IPv4 configured devices can still communicate with each other using transition mechanisms like:Dual IP Stack: In this both the version of protocols run on the same device / network infrastructure and no encapsulation is required. Tunneling: As many users do not have IPv6 support and cannot make use of IPv6 addresses, thus IPv4 infrastructure should be used to carry IPv6 packets. In tunneling the IPv6 packet is encapsulated in an IPv4 packet
DHCP Option Parameters
3 Router6 DNS server15 DNS domain name44 WINS server (NetBIOS name server)45 NetBIOS datagram distribution server (NBDD)46 WINS/NetBIOS node type47 NetBIOS scope IDDe
Copy-NetFirewallRule
Copy-NetFirewallRuleCopies an entire firewall rule, and associated filters, to the same or to a different policy store.
New-NetFirewallRule
New-NetFirewallRuleCreates a new inbound or outbound firewall rule and adds the rule to the target computer.
New-NetFirewallRule -Name Allow_Ping -DisplayName “Allow Ping”`
New-NetFirewallRule -Name Allow_Ping -DisplayName “Allow Ping” -Description "Packet Internet Groper ICMPv4"
-Protocol ICMPv4 -IcmpType 8 -Enabled True -Profile Any -Action Allow ` -CimSession $cim
netsh advfirewall firewall add rule
netsh advfirewall firewall add rule name=”Allow Inbound Telnet” dir=in program= %SystemRoot%\S
PowerS New-NetFirewallRule
New-NetFirewallRule -DisplayName “Allow Inbound Telnet” -Direction Inbound -Program %SystemRoot%\System32\tlntsvr.exe -RemoteAddress LocalSubnet -Action Allow
Copy firewall ruele
$Rule = Get-NetIPsecRule –DisplayName “Require Inbound Authentication”$Rule | Copy-NetIPsecRule –NewPolicyStore domain.costoso.com\new_gpo_name$Rule | Copy-NetPhase1AuthSet –NewPolicyStore domain.costoso.com\new_gpo_name
New-NetIPAddress
Creates and configures an IP address.
Remove-NetIPAddress
Remove-NetIPAddress
Removes an IP address and its configuration.