Chapter 1: Networking Protocols Flashcards

Question 1

Q

What are the four layers of the TCP/IP model?

Answer

A

Application
Transport
Internet (Networking)
Link

Question 2

Q

What are the two layers of the Link layer?

Answer

A

Data Link

- Physical

Question 3

Q

Link Layer

Answer

A

provides physical transmission support and includes the protocols used to transmit information over a link between two devices
frames
includes hardware and protocol necessary to send information between two hosts that are connected by a physical link (cable) or over the air (radio waves)
Most popular protocol is Ethernet

Question 4

Q

Internet Layer

Answer

A

aka Networking
provides networking services and includes protocols that allow for the transmission of information through multiple hops
each “hop device” knows how to reach the destination IP address and transmit the information to the next best node to reach the destination
Packets

Question 5

Q

Routing Protocol

Answer

A

the way each node (router) determines the best next node to the destination

Question 6

Q

Transport Layer

Answer

A

when transmitting information, the sending host knows when the information is sent, but has no way to know whether it actually made it to the destination
so, Transport Layer provides services to successfully transfer information between two end-to-end process
detects whether any information went missing
provides information about which type of information is being transmitted
Segments

Question 7

Q

How does the Transport Layer distinguish between separate transactions, such as requesting a web page and starting an FTP transaction?

Answer

A

the Transport Layer helps to separate the two requests by using the concept of a Transport Layer PORT
port 80 for web request
port 21 for an FTP transaction
this service is called MULTIPLEXING

Question 8

Q

Application Layer

Answer

A

top layer and most familiar to end users
## a user may use the mail client to send an email message (SMTP), or use a web browser to browse a website (HTTP)

Question 9

Q

TCP/IP Model Encapsulation

Answer

A

each layer provides services for the level above it
protocols at each layer include a protocol header
the header includes enough information for the protocol to work toward the delivery of the information
this process is called ENCAPSULATION

Question 10

Q

DNS Resolution

Answer

A

Step 1: Host A sends a recursive DNS query for a type A record to resolve www.cisco.com to its own DNS server (DNS A)
Step 2: DNS A server checks its DNS cache, but does not find the information. So, it sends an iterative DNS query to the root DNS server, which is authoritative for all of the Internet
Step 3: The root DNS server is not authoritative for that host, so it sends back a referral to the .com DNS server, which is authoritative server for the .com domain.
Step 4: The .com DNS server performs a similar process and sends a referral to the cisco.com DNS server
Step 5: The cisco.com DNS server is the DNS authoritative server for www.cisco.com so it can reply to DNS A with the information
Step 6: DNS A receives the information and stores it in its DNS cache for future use.
Step 7: Host A receives the information from DNS A and can start sending packets to www.cisco.com using the correct IP address.

Question 11

Q

How long does a DNS server store information in its cache?

Answer

A

finite time based on the TTL value in the response from the authoritative DNS server for a given doamin

Question 12

Q

TCP

Answer

A

Transmission Control Protocol
reliable, connection-oriented protocol for communicating over the Internet
Connection-oriented means that TCP requires a connection between two hosts established through a specific packet exchange before any data packets can be sent
—-Services provided——
multiplexing
connection establishment and termination
reliability (error detection and recovery)
flow control

Question 13

Q

Why not use TCP for all applications?

Answer

A

the reliability offered by TCP is done at the cost of lower speed and the need for increased bandwidth

Question 14

Q

Multiplexing

Answer

A

allows multiple transport layer connections between the same hosts
sockets are used to distinguish to which application a connection belongs

Question 15

Q

Connection Establishment and Termination

Answer

A

a connection is established before data is sent
this ensures that the other host is ready to receive data
the connection is also terminated through a formal data exchange

Question 16

Q

Reliability

Answer

A

data lost due to error or from the underlying datagram can be recovered by asking the remote device to send the information again

Question 17

Q

Flow Control

Answer

A

TCP uses a windowing system to adjust the speed of transmission

Question 18

Q

TCP Header Fields

Answer

A

Source and Destination Ports
Sequence Number
Acknowledgment Number
Control Flags
Window
Urgent Pointer

Question 19

Q

TCP Flags

Answer

A

URG
ACK
PSH
RST
SYN

Question 20

Q

ACK

Answer

A

Acknowledgement flag

- Set to 1 after the connection has been established

Question 21

Q

PSH

Answer

A

Push flag

- signifies that the data should be pushed directly to an application

Question 22

Q

RST

Answer

A

Reset flag

- Resets the connection

Question 23

Q

SYN

Answer

A

Synchronization
sequence numbers
relevant for connection establishment
should only be set within the first packets from both of the hosts

Question 24

Q

FIN

Answer

A

this flag signifies that there is no more data from sender

Question 25

Q

Window

Answer

A

this field indicates the number of data bytes the sender of the segment is able to receive
this field enables flow control

Question 26

Q

TCP Three-way Handshake

Answer

A

First Packet (SYN): the client starts process of establishing a connection by sending a TCP segment that has the SYN bit set to 1. The client sends its initial sequence number X (random number chosen by client)
Second Packet (SYN-ACK): the server responds with a SYN-ACK packet where it sends its own request for synchronization and its initial sequence number Y. Within the same packet, the server also sends the acknowledgment number X+1 (acknowledging the receipt of a packet with sequence number X, and requesting the next packet with sequence number X+1)
Third Packet (ACK): the client responds with a final acknowledgment, requesting the next packet with the sequence number Y+1

Question 27

Q

What is the purpose of SYN from sender

Answer

A

signals to the peer that it wants to synchronize the sequence numbers and establish the connection
the client also sends its initial sequence number, which is random number chosen by the client

Question 28

Q

What are the steps of TCP/IP Model Encapsulation for a host requesting a web page using HTTP?

Answer

A

Host requests a web page using the HTTP application layer protocol. The HTTP application generates the DATA payload.
HTTP DATA payload send to the transport layer and a TCP header is created. The DATA payload and TCP header result in the TCP segment.
The Internet layer receives the TCP information, attaches an IP header, and encapsulates it in an IP Packet.
The IP packet is passed to the Data Link layer. An Ethernet header and trailer, and then transmits the Frame to the NIC, which will take care of the physical transmission of the frame.

Question 29

Q

IEEE 802.2

Answer

A

Standard for LLC (Logical Link Control)

Question 30

Q

IEEE 802.3

Answer

A

Standard for Ethernet Medium Access Control (MAC)

Question 31

Q

LLC

Answer

A

Logical Link Control
Initially used to allow several types of Layer 3 protocols to work with the MAC
However, LLC is seldom used now because IP can be directly encapsulated using MAC.

Question 32

Q

What is the nomenclauture format for Ethernet Physical Layer standards?

Answer

A

sTYPE-M
s = speed
TYPE = the modulation type (example, BASE = baseband)
M = medium (example, T = twisted pair, F = fiber, L = long wavelength, X = external sourced coding)

Question 33

Q

100BASE-T

Answer

A

standard = 802.3 (Ethernet)
speed = 10 Mbps
media = twisted pair (copper)
distance = 100 m

Question 34

Q

100BASE-T

Answer

A

standard = 802.3u (FastEthernet)
speed = 100 Mbps
media = twisted pair (copper)
distance = 100 m

Question 35

Q

1000BASE-T

Answer

A

standard = 802.3ab (GigaEthernet)
speed = 1000 Mbps
media = twisted pair (copper)
distance = 100 m

Question 36

Q

1000BASE-LX

Answer

A

standard = 802.3z (GigaEthernet)
speed = 1000 Mbps
media = Long wavelength (single-mode fiber)
distance = 5 km

Question 37

Q

10GBASE-T

Answer

A

standard = 802.3an (Gigabit Ethernet)
speed = 10 GBps
media = twisted pair (copper)
distance = 100 m

Question 38

Q

What is the speed of Ethernet?

Question 39

Q

What is the speed of FastEthernet?

Question 40

Q

What is the speed of GigaEthernet?

Answer

A

1000 Mbps

Question 41

Q

What are the two modes of medium access with Ethernet MAC?

Answer

A

half duplex

- full duplex

Question 42

Q

Half Duplex

Answer

A

two Ethernet devices share a common transmission medium
access is controlled by Carrier Sense Multiple Access with Collision Detection (CSMA/CD)
if a collision occurs, stations delay transmission set by the “backoff time”
half duplex is rarely seen today

Question 43

Q

Full duplex

Answer

A

two Ethernet devices can share simultaneously because there is a dedicated channel for the transmission
no need to detect collisions or waiting before transmitting
“collision free” medium access

Question 44

Q

What is an example of a device that uses Full Duplex?

Answer

A

Switch

- provides a collision-free domain and dedicated transmission channel

Question 45

Q

What are the components of an Ethernet frame?

Answer

A

Preamble
Start Frame Delimiter
Destination Address
Source Address
Length/Type
MAC Client Data and Pad
Frame Check Sequence

Question 46

Q

Preamble

Answer

A

used for the two stations for synchronization purposes

Question 47

Q

SFD

Answer

A

Start Frame Delimiter
Indicates the start of the Ethernet frame
Always set to 10101011

Question 48

Q

MAC Client Data and Pad

Answer

A

contains information being encapsulated at the Ethernet layer
Minimum length is 46 bytes
Maximum length depends on the type of Ethernet Frame:
- Basic frames (most common) = 1500 bytes
- Q-tagged frames = 1504 bytes
- Envelope frames = 1982

Question 49

Q

FCS

Answer

A

Frame Check Sequence
used by the receiving device to check for errors in transmission
called the “Ethernet Trailer”

Question 50

Q

What are the three types of MAC addresses?

Answer

A

broadcast
multicast
unicast

Question 51

Q

Broadcast MAC address

Answer

A

obtained by setting all 1s in the MAC address field
the result is an address like FFFF.FFFF.FFFF
a frame with a broadcast destination address is transmitted to all the devices within a LAN

Question 52

Q

Multicast MAC address

Answer

A

transmitted to all frames belonging to a specific group

Question 53

Q

Unicast MAC address

Answer

A

associated with a particular device’s NIC or port
composed of two sections:
- first 24 bits = OUI (Organizational Unique Identifier)
- second 24 bits = Vendor assigned

Question 54

Q

Broadcast Storm

Answer

A

when a frame loops between switches indefinitely, causing degradation of the network performance due to the useless forwarding of frames
prevented by using STP (Spanning Tree Protocols)

Question 55

Q

STP

Answer

A

Spanning Tree Protocols
used to avoid layer 2 loops
this is done by allowing traffic on certain ports and blocking it on others
if the topology changes, (i.e. a link fails) STP will recalculate the new logical topology (aka “reconverge”) and unblock certain ports to adapt to the new topology

Question 56

Q

Reconvergence

Answer

A

When STP detects a change in topology (i.e. a link failure) and recalculate the new logical topology to unblock certain ports in order to adapt to the new topology

Question 57

Q

STA

Answer

A

Spanning Tree Algorithm used by STP to create a tree-like, loop-free logical topology

Question 58

Q

BID

Answer

A

Bridge ID
8-byte ID that is independently calculated on each switch
the first 2-bytes contain the priority
the remaining 6-bytes include the MAC address of the switch

Question 59

Q

Root Switch

Answer

A

represents the root of the spanning tree
determined through “root election”
the root switch BID is called the “root BID”

Question 60

Q

Port Cost

Answer

A

numerical value associated to each spanning tree port
usually this value depends on the speed of the port
the higher the speed the lower the cost

Question 61

Q

Root Cost

Answer

A

represents the cost to reach the root switch

Question 62

Q

What are the different port states?

Answer

A

Blocking
Listening
Learning
Forwarding
Disabled

Question 63

Q

What are the benefits of Vlans?

Answer

A

Reduces the number of devices receiving the broadcast frame and the related overhead
Creates Layer 2 network separation
Reduces management protocols’ load and complexity
Segments troubleshooting and failure areas, as failure in one VLAN will not propagate to the rest of the network

Question 64

Q

Trunking

Answer

A

Placing two hosts on separate Switches in the same VLAN
It is a special link because it can transport frames belonging to several VLANs
VLAN tagging is used to enable the forwarding between hosts in the same VLAN, across multiple switches
This is done using dot1q standard (IEEE 802.1Q) or ISL (Inter-Switch Link)

Answer 63

A

4 Bytes
VLAN Protocol ID (16 bits)
Priority (3 bits)
CFO (1 bit)
VLAN ID (12 bits)

Answer 64

A

VLAN Trunking Protocol
Cisco proprietary protocol used to manage VLAN distribution across switches
Used to distributed information about existing VLANs to all switches in a VTP domain so that VLANs do not have to be manually configured (reducing admin burden)
Not to be confused with protocols that actually handle the tagging of frames with VLAN information (dot1Q)
VTP relies on 802.1Q to transmit information

Answer 65

A

Server mode
Client mode
Transparent mode

Answer 66

A

allows the administrator to configure a remote VLAN

- VTP will take care of distributing the information to other switches in the VTP domain

Answer 67

A

a switch receives updates about a VLAN and advertises the VLAN configured already
however, a VLAN cannot be added or removed

Answer 68

A

the switch does not participate in VTP, so it does not perform a VLAN database update and does not generate VTP advertisement
However, it forwards VTP advertisements from other switches

Answer 69

A

Hosts

- Servers

Answer 70

A

Stateful firewalls

Answer 71

A

WLAN (Wireless Local Area Network) standard

Answer 72

A

There is no defined boundary
It is more prone to interference by other signals on the same medium
It is less reliable
The signal can propagate in asymmetric ways

Answer 73

A

half-duplex

- stations are not able to transmit and receive at the same time due to the limitation of the medium

Answer 74

A

CSMA/CD (Carrier Sense Media Access with Collision Avoidance)

Answer 75

A

CSMA/CA does not allow WLAN stations to detect a collision

Answer 76

A

Basic Service Set
Used by the IEEE 802.11 standard (WLAN)
identifies a set of devices that share common parameters and can communicate through a wireless connection.

Answer 77

A

IBSS (Independent Basic Service Set)
formed by two or more wireless stations communicating directly.
sometimes called “ad-hoc wireless network”

Answer 78

A

utilizes an AP (access point)
each station associates to an AP
stations send frames to the AP, and then the AP forwards the frame to the intended receiving station

Answer 79

A

releasing a client from one AP in order to associate to another AP

Answer 80

A

Extended Service Set

- Multiple Infrastructure Basic Service Set APs linked together

Answer 81

A

Frame Control
Duration Field
Address Fields
Sequence Control Field
Frame Body
Frame Check Sequence Field

Answer 82

A

provides information on the frame type and whether the frame is directed toward the DS or is coming from the DS toward the wireless network

Answer 83

A

provides the expected time the frame will be traveling on the channel for the Virtual Carrier Sense functionality

Answer 84

A

Typically includes the following:
- Transmitter Address (TA): MAC of the sender
- Receiver Address (RA): MAC of the receiver
- Source Address (SA): MAC of the source
- Destination Address (DA): MAC of the destination

Answer 85

A

Autonomous APs: work in a standalone mode

- Lightweight APs: works with a Wireless LAN Controller (WLC)

Answer 86

A

the destination IP address

- next-hop IP address

Answer 87

A

Version
Internet Header Length (20 bytes = standard)
Notification and Explicit Congestion ECN (Q of S)
Total Length (Header plus payload)
Identification (used for fragmentation)
Flags and Fragment offset (used for fragmentation)
TTL
Protocol (TCP = 6, UDP = 7)
Header checksum
Source Address
Destination Address

Answer 88

A

1.0.0.0 - 127.255.255.255

Answer 89

A

128.0.0.0 - 191.255.255.255

Answer 90

A

192.0.0.0 - 233.255.255.255

Answer 91

A

-224.0.0.0 - 239.255.255.255 (Multicast)

Answer 92

A

240.0.0.0 - 255.255.255.255 (Reserved)

Answer 93

A

Class A: 8 Network bits, 24 Host bits
Class B: 16 Network bits, 16 Host bits
Class C: 24 Network bits, 8 Host bits

Answer 94

A

10.0.0.0/8
172.16.0.0/12
192.168.0.0/16

Answer 95

A

Port 67 = server

- Port 68 = client

Answer 96

A

used by a client to discover DHCP servers w/in a LAN

Answer 97

A

sent by a DHCP server to a client
includes a proposed IP address, called YIADDR, and a network mask
aka SIADDR

Answer 98

A

sent from the client to the broadcast network
used to confirm the offer from a particular server
includes the SIADDR of the DHCP server
broadcasted to the entire network

Answer 99

A

sent from the client to the server to release the allocation of an IP address and to end the lease

Answer 100

A

Host sends DHCPDISCOVERY packet to discover the DHCP servers within the LAN
Each DHCP server responds with DHCPOFFER message
The client receives several offers, picks one of them, and responds with a DHCPREQUEST
The DHCP server that has been selected responds to the client to confirm the leasing of the IP address

Answer 101

A

Interior Gateway Protocol (operates w/in organizational boundaries)

Open Shortest Path First (OSPF)
Intermediate System to Intermediate System (ISIS)
Enhanced Interior Gateway Routing Protocol (EIGRP)
Routing Information Protocol V.2 (RIPv2)

Answer 102

A

Exterior Gateway Protocol (operates between service providers)
- Border Gateway Protocol (BGP)

Answer 103

A

Distance Vector
one of the first algorithms used for exchanging routing information
based on Bellman-Ford algorithm
most well-known is RIPv2

Answer 104

A

Term used in DV

- two routers or Layer 3 devices that are directly connected

Answer 105

A

Term used in DV

- number that represents the distance (number of routers) between a router and a specific network

Answer 106

A

Using hop count as the cost to determine the best path to a destination is not the best method
Routers do not have full visibility into the network topology
Each update includes the exchange of the full list of networks and costs, which can consume bandwidth
It is not loop free

Answer 107

A

Introduced advanced distance vector, or hybrid protocols

- Such as EIGRP

Answer 108

A

they do not use hop counts as metrics to determine the best path to a network
full database updates are only sent at initialization
partial updates are sent in the event of topology changes
include more robust methods to prevent loops and reduce convergence times

Answer 109

A

EIGRP routers maintain a partial topology table and include an algorithm called Diffused Update Algorithm (DUAL) which is used to calculate the best path to a destination and provides a mechanism to avoid loops

Answer 110

A

Link-state algorithms operate in a totally different way than DV
devices using Link-State have full view of the network topology
this allows devices to use algorithms such as Dijkstra or Shortest Path First (SPF) to calculate the best path to each network
examples include OSPF and IS-IS
Higher the bandwidth the lower the cost
During the initiation phase, each router will send a link-state advertisement (LSA) to neighbors, which will in turn forward to all other neighbors
Routers can then use SPF algorithm to calculate the best way to reach each network
Once this is done, the information is added to the router’s routing table

Answer 111

A

a better way to calculate the cost to a destination
less protocol overhead compared to DV because updates do not require sending the full topology
better best-path calculation because each router has a full view of the full topology
loop-free

Answer 112

A

used to determine the precedence based on the way the router has learned about a specific network

Answer 113

A

Exterior Gateway Protocol

- 140

Answer 114

A

On Demand Routing

- 160

Answer 115

A

Internet Control Message Protocol
main purpose is to provide a way to communicate that an error occurred during the routing of IP packets
encapsulated directly within the IP payload
An IP packet transporting an ICMP message in its payload sets the Protocol field in the header to 1
An ICMP packet starts with an ICMP header that always includes the Type and Code fields of the ICMP message, which define what the message is used for

Answer 116

A

Echo Reply

Answer 117

A

Destination Unreachable

Answer 118

A

Network Unreachable

Answer 119

A

Host Unreachable

Answer 120

A

Protocol Unreachable

Answer 121

A

Port Unreachable

Answer 122

A

Fragmentation Required, and DF flag set

Answer 123

A

Echo Request

Answer 124

A

Time Exceeded

Answer 125

A

TTL Exceed in transit

Answer 126

A

Fragment reassembly time exceeded

Answer 127

A

Root (.)
Top-level domain (.com)
Second-level domain (cisco)
Subdomains (eg. tools)
Resource name (hostname of the resource, www)

Answer 128

A

Address record IPv4

- Mapping between IPv4 and FQDN

Answer 129

A

Address record IPv6

- Mapping between IPv6 and FQDN

Answer 130

A

Mail Exchange Record

- Includes information about mail exchange servers in a domain

Answer 131

A

Name Server Record

- Indicates the authoritative servers for a DNS zone

Answer 132

A

Start of Authority Record

- Includes information about the zone, such as the authoritative name server for that zone

Answer 133

A

DNS databases are divided into Zones
A Zone is a portion of the DNS database that is managed by an entity
Each zone must have an SOA RR that includes information about the management of the zone and the primary authoritative name server
Each DNS Zone must have an authoritative name server

Answer 134

A

the server that has the information about the resources present in the DNS zone and can respond to queries concerning those resources

Brainscape's Knowledge GenomeTM

Chapter 1: Networking Protocols Flashcards

Brainscape's Knowledge Genome^TM