Ethernet Flashcards
10Base-T ethernet
Unshielded twisted pair
10Mbps
100 meters
Deterministic access
Requires electronic token to transmit (token ring)
Contention-based access
Chaotic
Transmit whenever you want (Ethernet)
CSMA/CD access
Carrier Sense multiple Access/Collision Detect
Listening to wire, talk when there is an open gap
Collision domains
Every device on the same cable or hub
Ethernet speed
10 Mbps
Fast Ethernet speed
100 Mbps
Gigabit Ethernet speed
1 Gbps
Bandwidth
How many bits the network can transmit in 1 second
VLAN
Virtual LAN
Allows different logical networks to share the same physical hardware
VLAN trunking
802.1q
multiple VLANs transmitted over the same physical cable
STP
Spanning Tree Protocol
802.1D
Prevents looping of network traffic
Broadcast storm
Switches forward duplicate frame to each other
Eventually network is consumed by initial frame
Root bridge
Switch to act as reference point in spanning tree
Lowest bridge ID (BID)
Root port
Port on non-root bridge closest to root bridge in terms of cost
Designated port
Each network segment has a designated port
Closest to root bridge in terms of cost
All ports on root bridge are designated ports
Non-designated port
Block traffic to create loop free topology
Can transition to a forwarding state if failure detected
4 states of non-designated port becoming active
Blocking
Listening
Learning
Forwarding
Link cost
Lower speed = higher cost
802.3d
Link Aggregation
Allows for multiple physical connection into single logical connection
Bandwidth increased
Congestion decreased
PoE 802.3af
Power over Ethernet
CAT5 or higher
15.4 watts of power
PoE+ 802.3at
25.5 watts of power
Port monitoring
Port mirroring
Analyze packet flow
Copies all traffic from one port and sends it to another
802.1x
User Authentication
Switches must authenticate themselves before gaining access to network
Console port
Local administration of switch using separate laptop and roller over cable
SSH
Remote administration of switch over network
OOB
Out of Band management network
Keeps all network configuration devices on separate network
HSRP
Hot Standby Router Protocol
First hop redundancy
Cisco proprietary
Uses virtual IP and MAC addresses to provide active router and standby router
MAC filtering
Permit or deny traffic based on MAC address
Traffic filtering
Multilayer switches permit or deny traffic based on IP addresses or application ports
VPN Concentrator
Device that can terminate VPN tunnels
Stateful Firewall
Allows traffic out of network to internet
Blocks traffic from internet into network
NGFW
Next Generation Firewall
Deep packet inspection
More powerful than stateless or stateful firewalls
IDS/IPS
Intrusion Detection or Prevention System
IDS recognizes attacks
IPS recognizes and responds to attacks
FQDN
Fully Qualified Domain Name Domain name under top-layer domain .com .edu .org etc
URL
Uniform resource locator
Contains FGDN with method to access information
DNS “A” Record
IPv4 address
DNS “AAAA” Record
IPv6 address
DNS CNAME Record
Alias for existing network (liberty.edu)
DNS MX Record
Mail exchange
DNS NS Record
Authoritative name server for the domain
DNS PTR Record
Pointer record refers to canonical name - reverse DNS lookup
DNS SOA record
Start of Authority
Authoritative info about DNS zone - contact info, primary name server, refresh times
DHCP
Domain Host Configuration Protocol
Devices on network automatically receive IP address, subnet mask, default gateways, DNS server addresses
DHCP DORA
Discover
Offer
Request
Pack
Proxy Server
Device makes request to external network on behalf of a client
Used for security to perform content filtering and logging
Content Engine
Caching engine
Performs caching functions of proxy server - more efficiently
Content Switches
Load balancer
Distributes requests across various servers in farm
