Chapter 16 - Overlay Tunnels Flashcards

1
Q

egress tunnel router (ETR)

A

A router that de-encapsulates LISP-encapsulated IP packets coming from other sites and destined to EIDs within a LISP site.

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
2
Q

endpoint identifier (EID)

A

The IP address of an endpoint within a LISP site.

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
3
Q

ingress tunnel router (ITR)

A

A router that LISP-encapsulates IP packets coming from EIDs that are destined outside the LISP site.

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
4
Q

Internet Key Exchange (IKE)

A

A protocol that performs authentication between two endpoints to establish security associations (SAs), also known as IKE tunnels. IKE is the implementation of ISAKMP using the Oakley and Skeme key exchange techniques.

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
5
Q

Internet Protocol Security (IPsec)

A

A framework of open standards for creating highly secure VPNs using various protocols and technologies for secure communication across unsecure networks such as the Internet.

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
6
Q

Internet Security Association Key Management Protocol (ISAKMP)

A

A framework for authentication and key exchange between two peers to establish, modify, and tear down SAs that is designed to support many different kinds of key exchanges. ISAKMP uses UDP port 500 to communicate between peers.

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
7
Q

LISP router

A

A router that performs the functions of any or all of the following: ITR, ETR, PITR, and/or PETR.

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
8
Q

LISP site

A

A site where LISP routers and EIDs reside.

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
9
Q

map resolver (MR)

A

A network device (typically a router) that receives LISP-encapsulated map requests from an ITR and finds the appropriate ETR to answer those requests by consulting the map server. If requested by the ETR, the MS can reply on behalf of the ETR.

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
10
Q

map server (MS)

A

A network device (typically a router) that learns EID-to-prefix mapping entries from an ETR and stores them in a local EID-to-RLOC mapping database.

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
11
Q

map server/map resolver (MS/MR)

A

A device that performs MS and MR functions. The MS function learns EID-to-prefix mapping entries from an ETR and stores them in a local EID-to-RLOC mapping database. The MR function receives LISP-encapsulated map requests from an ITR and finds the appropriate ETR to answer those requests by consulting the mapping server. If requested by the ETR, the MS can reply on behalf of the ETR.

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
12
Q

nonce

A

A random or pseudo-random number issued in an authentication protocol that can be used just once to prevent replay attacks.

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
13
Q

overlay network

A

A logical or virtual network built over a physical transport network referred to as an underlay network.

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
14
Q

proxy ETR (PETR)

A

An ETR but for LISP sites that sends traffic to destinations at non-LISP sites.

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
15
Q

proxy ITR (PITR)

A

An ITR but for a non-LISP site that sends traffic to EID destinations at LISP sites.

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
16
Q

proxy xTR (PxTR)

A

A router that performs proxy ITR (PITR) and proxy ETR (PETR) functions.

17
Q

routing locator (RLOC)

A

An IPv4 or IPv6 address of an ETR that is Internet facing or network core facing.

18
Q

segment

A

An overlay network.

19
Q

segmentation

A

A process that enables a single network infrastructure to support multiple Layer 2 or Layer 3 overlay networks.

20
Q

tunnel router (xTR)

A

A router that performs ingress tunnel router (ITR) and egress tunnel router (ETR) functions (which is most routers).

21
Q

underlay network

A

The traditional physical networking infrastructure that uses an IGP or a BGP.

22
Q

virtual private network (VPN)

A

An overlay network that allows private networks to communicate with each other across an untrusted underlay network such as the Internet.

23
Q

virtual tunnel endpoint (VTEP)

A

An entity that originates or terminates a VXLAN tunnel. It maps Layer 2 and Layer 3 packets to the VNI to be used in the overlay network.

24
Q

VXLAN Network Identifier (VNI)

A

A 24-bit field in the VXLAN header that enables up to 16 million Layer 2 and/or Layer 3 VXLAN segments to coexist within the same infrastructure.