Transcript Bind Cinfiguration Examples

IP Transmission Technologies
Hourglass of TCP/IP Protocols
email WWW phone...
SMTP HTTP RTP...
TCP UDP…
IP
ethernet PPP…
CSMA async sonet...
copper fiber radio...
Transmission Technologies
Ethernet (10Mbps – 1Gbps)
Copper
Fiber
Wireless
Leased Line (64Kbps – 2Mbps)
Frame Relay (64Kbps – 2Mbps)
Packet Over Sonet (155Mbps – 2.4Gbps)
ATM (155Mbps – 2.4Gbps)
Access: DSL, CATV, ISDN, GPRS, Dial-up
Routers, Swicthes, VLANs
VLAN Standard: IEEE 802.1q
CFI-Canonical Format Identifier (Ethernet/TokenRing)
Some Switches Support
Priorities
Switching Tables
0260.8c01.1111
E0:
E0:
E1:
E1:
E0
0260.8c01.2222
0260.8c01.1111
0260.8c01.2222
0260.8c01.3333
0260.8c01.4444
0260.8c01.3333
E1
0260.8c01.4444
Spanning Tree Protocol
X
Y
Segment 1
Broadcast
Segment 2
Gigabit Ethernet over Fiber
Wave Division Multiplexing
DWDM 1528 to 1560 nm: erbium doped fiber amplifiers (EDFA)
EDFA every 60km, regeneration every 500km
Erbium doped fiber amplifiers
 A pump laser injects a high intensity pulse of light exciting the
erbium and causing the erbium atoms to release their stored
energy.
 The EDFA amplifies all the wavelengths to the same level (gain
flatness).
 DWDM 1528 to 1560 nm: EDFA every 60km, regeneration every
Input
Coupler
500km
Isolator
1480 or 980 nm
Pump Laser
Output
Erbium Doped Fiber
Leased Line
Link Control Protocol (LCP)
Code
Identifier
Length
Data
PPP
Flag
Address
Control
Protocol
LCP
Control
Proprietary
FCS
Flag
FCS
Flag
Cisco HDLC
Flag
Address
S
S
DTE
DCE
V.35
S
Data
S
S
S
DCE
DTE
V.35
Selecting a PPP
Authentication Protocol
Remote Router
(SantaCruz)
PAP
2-Way Handshake
Central-Site Router
(HQ)
"santacruz, boardwalk"
Accept/Reject
Hostname: santacruz
Password: boardwalk
username santacruz
password boardwalk
Passwords sent in cleartext
Peer in control of attempts
Selecting a PPP
Authentication Protocol
Remote Router
(SantaCruz)
CHAP
3-Way Handshake
Central-Site Router
(HQ)
Challenge
Response
Hostname: santacruz
Password: boardwalk
Accept/Reject
username santacruz
password boardwalk
Use “secret” known only to authenticator and
peer
Frame Relay
s0.1-DLCI=110
RTR2
s0.2-DLCI=110
s0.3-DLCI=130
RTR1
s0.3-DLCI=120
s0.2-DLCI=130
s0.1-DLCI=120
RTR3
Packet Over Sonet (POS)
SONET/SDH
OS
SONET
ES
SDH
ES
OC-1
STS-1
OC-3
STS-3
STM-1
155.52
OC-9
STS-9
STM-3
466.56
OC-12
STS-12
STM-4
622.08
OC-18
STS-18
STM-6
933.12
OC-24
STS-24
STM-8
1244.16
OC-36
STS-36
STM-12
1866.24
OC-48
STS-48
STM-16
2488.32
Link Rate
Mbps
51.84
ATM
ATM AAL5
MPLS VPNs
Layer 3 VPNs =
BGP/MPLS VPNs
(RFC 2547 bis)
InterProvider
Connectivity
(I-AS)
Layer 2 VPNs & AToM
(Any Transport over MPLS)
Carrier
Supporting
Carrier
(CSC)
Multicast over
MPLS VPNs
Managed VPN Services
(MPLS/BGP VPNs)
Inter--Area TE
Inter
Traffic Engineering
(TE)
Layer 2 VPN Services
(L2VPN)
Any Transport over MPLS
(AToM)
DiffServ-aware
Traffic Engineering
(DS-TE)
MPLS Forwarding and/or LDP
Quality of Service
(DiffServ QoS)
Ethernet over MPLS
Point to Point, Metro Ethernet Service
ISP C
MPLS Network
Enterprise
LAN
ISP A
PE
ISP 2
PE
PE
ISP B
PE
ISP 1
PE
ISP 3
PE
Distributed NAP
Based on draft-martini
VCs to VLANs => VCid maps to VLAN id
Enterprise
LAN
Ethernet 802.1q VLAN
Transport
Interface GigabitEthernet0/0.2
encapsulation dot1q 41
mpls l2transport route 1.0.0.8 312 <sequencing>
!
Interface GigabitEthernet1/0.2
encapsulation dot1q 56
mpls l2transport route 1.0.0.8 313 <sequencing>
VLAN 41
PE1
1.0.0.4
MPLS
VLAN 56
Customer
Site
PE1
1.0.0.8
VLAN 41
VLAN 56
Customer
Site
Customer
Site
802.1q to 802.1q VLAN Transport
Customer
Site
AToM - MTU
Considerations
Ingress PE checks
Egress PE outbound
interface MTU AND
egress interface into
MPLS backbone
Customer
Site
PDU
Incoming PDU
dropped if MTU
exceeded
Egress MTU
Signalled
using LDP
PE1
PE2
NO mechanism to
check backbone MTU
Provider MUST dictate MTU or direct traffic
away from low MTU links
Customer
Site
Strategy for MPLS VPNs
MPLS VPNs for Single
Networks
MPLS VPNs for
Multiple Networks
MPLS VPNs for Multiple
Transport Types
Layer 2 VPNs –Using AToM
Optical VPNs
•Carrier
Supporting
Carrier
•Inter AS
•VPN ID
•ATM (AAL5) over
MPLS
•Ethernet over MPLS
•Frame Relay over
MPLS
•PPP over MPLS
•HDLC over MPLS
•Cell Relay over MPLS
Cisco’s MPLS
VPNs L3 (rfc2547)
Time
Network Address Translation (NAT)
NAT
Inside
station B
IP :10.2.2.1
Outside
Interface E1
Interface E0
IP :10.1.1.1
IP :171.69.20.1
station A
IP :171.69.2.1
NAT router
Internet
IP :10.3.3.1
station D
NAT Pool
IP :171.69.3.1
171.69.89.1
station C
NAT Table
protocol
Inside source
Address : port
Outside source
Address : port
Outside Destination
Address : port
TCP
10.2.2.1:1024
171.69.89.1:1024
171.69.2.1:23
TCP
103.3.1:1723
171.69.89.1:1723
171.69.3.1:23
DHCP
Dynamic Host Configuration Protocol
Based on old BootP protocol for diskless
workstations
DHCP server on Router or Network Server
ip dhcp pool soho
network 10.0.0.0 255.0.0.0
default-router 10.0.0.1
dns-server 195.13.160.52 195.122.1.59