Networking

Protocols

Think of protocols as a standard way of communication between a client and a server.

WAN

A Wide Area Network is a telecommunications network or computer network that extends over a large geographical distance. https://en.wikipedia.org/wiki/Wide_area_network

LAN

A Local Area Network is a computer network that interconnects computers within a limited area such as a residence, school, laboratory, university campus or office building. https://en.wikipedia.org/wiki/Local_area_network

Puertos

• The wireless router’s WAN (Internet) port (el puerto WAN (Internet) del wireless router).
• The wireless router’s LAN (Ethernet) ports.
• RS-232: is a standard for serial communication transmission of data. https://en.wikipedia.org/wiki/RS-232

Cables

• As a rule, between different divices we use a straight cable an between same divices a cross-over cable (Creo que el Prof. confirmó esto, no estoy seguro)
• Crossover cable:
  • From a PC to the wireless router’s WAN (Internet) port.
• Straight through cable:
  • From PC to one of the wireless router’s LAN (Ethernet) ports.

Applications

Transport

Internetwork

Network interface and Hardware [Datalink, Physical]

OSI model

https://en.wikipedia.org/wiki/OSI_model#Comparison_with_TCP.2FIP_model

Modem

https://www.webopedia.com/TERM/M/modem.html

http://homepages.uc.edu/~thomam/Net1/Modems%20&%20D-A%20Conversion/modem_main.html

A modem (Short for modulator-demodulator) is a device or program that convert digital information to analog signals (modulation), and to convert analog signals back into useful digital information (demodulation). It enables a computer to transmit data over, for example, telephone or cable lines. http://homepages.uc.edu/~thomam/Net1/Modems%20&%20D-A%20Conversion/modem_main.html

Computer information is stored digitally, whereas information transmitted over telephone lines is transmitted in the form of analog signal. A modem converts between these two forms.

Use of modem for sending digital data over analog lines. https://www.webopedia.com/TERM/M/modem.html

Router

http://www.diffen.com/difference/Router_vs_Switch

Router and switches are both computer networking devices that allow one or more computers to be connected to other computers, networked devices, or to other networks.

The functions of a routers, switch and hub are all different, even if at times they are integrated into a single device.

Routers can connect wired or wireless (WiFi) networks. A switch is used for wired networking connections.

A router is a networking device that connects computer networks (connect two or more logical subnets). For example, connecting a home network with the Internet.

Routers operate at Layer 3 (network layer) of the OSI model. They direct traffic and perform other functions to efficient network operation. For example, they receive TCP/IP packets, look inside each packet to identify the source and target IP addresses, then forward these packets as needed to ensure the data reaches its final destination.

In addition, routers often perform network address translation (NAT), which allows all devices on a subnetwork (e.g., all devices in a home) to share the same public IP address.

Como se mencionó arriba, routers can connect wired or wireless (WiFi) networks.

Existen diferentes tipos de Routers. El uso y la manera de configurarlos varía notablemente:

The largest routers (such as the Cisco CRS-1 or Juniper PTX) interconnect the various ISPs, or may be used in large enterprise networks. Smaller routers usually provide connectivity for typical home and office networks. https://en.wikipedia.org/wiki/Router_(computing)

Al parecer se habla también Wireless Routers. Creo sin embargo que este dispositivo sería un Router equipado con un AP y una tarjeta de red wireless.

En el Lab 1 se realiza un modelado de networks en el cual se emplea un Wireless Router. Este Wireless Router podría, por ejemplo, representar el Router que se encuentra integrado en la Box de nuestra home network. En el Lab 1, note que en este Router las configuraciones se ralizan a través de un GUI.

En el Lab 4: Configuring basic router settings with the Cisco IOS CLI, se presenta un modelado de network en el cual se emplea un Router Cisco. Note que este tipo de Routers son configuring with the Cisco IOS CLI (línea de comandos).

Switch

A network switch is a computer networking device that is used to connect many devices together on a single computer network (within one local area network (LAN)).

Switches are incapable of joining multiple networks or sharing an Internet connection.

A switch is also called switching hub, bridging hub, or MAC bridge. Switches use MAC addresses to forward data to the correct destination. A switch is considered a Layer 2 device, operating at the data link layer; switches use packet switching to receive, process and forward data.

A switch is considered more advanced than a hub because a switch will on send msg to device that needs or request it

Access point

The Access Point (AP) is the central node in 802.11 wireless implementations. It is the interface between wired and wireless network

An access point is a hardware device that receives data by wired Ethernet and, using 2.4GHz or 5GHz radio waves bands, converts to a wireless signal. It sends and receives wireless traffic to and from nearby wireless clients.

For a home environment, most often you have a router, a switch, and an AP «embedded in one box (into a single device)», making it really usable for this purpose.

IP address

Dirección IP

ifconfig

curl ipinfo.io/ip

Subnet mask

IP/Subnet Calculator:

• http://jodies.de/ipcalc (Éste me pareció excelente)
• http://www.subnet-calculator.com/ (Éste no me gustó pero tiene una pestaña que permite seleccionar la Subnet Mask. En ella se presentan las Subnets comúnmente usadas.

La subnet mask que generalmente he estado usando para los ejemplos es la 255.255.255.0 (/24). Esta subnet mask indica que los primeros 24 bits de una IP deben ser iguales para pertenecer a la misma subnet. Esta en particular es muy fácil, y se puede ver fácilmente el rango de IP's que define. Por ejemplo:

• Si tenemos: 172.17.0.1/24, podemos fácilmente saber que: ( Ver http://jodies.de/ipcalc )

Address:   172.17.0.1            10101100.00010001.00000000 .00000001
Netmask:   255.255.255.0 = 24    11111111.11111111.11111111 .00000000
Wildcard:  0.0.0.255             00000000.00000000.00000000 .11111111
=>
Network:   172.17.0.0/24         10101100.00010001.00000000 .00000000 (Class B)
Broadcast: 172.17.0.255          10101100.00010001.00000000 .11111111
HostMin:   172.17.0.1            10101100.00010001.00000000 .00000001
HostMax:   172.17.0.254          10101100.00010001.00000000 .11111110
Hosts/Net: 254                   (Private Internet)

• Ahora, en el caso de 172.17.0.1/27, las cosas no son tan evidentes:

Address:   172.17.0.1            10101100.00010001.00000000.000 00001
Netmask:   255.255.255.224 = 27  11111111.11111111.11111111.111 00000
Wildcard:  0.0.0.31              00000000.00000000.00000000.000 11111
=>
Network:   172.17.0.0/27         10101100.00010001.00000000.000 00000 (Class B)
Broadcast: 172.17.0.31           10101100.00010001.00000000.000 11111
HostMin:   172.17.0.1            10101100.00010001.00000000.000 00001
HostMax:   172.17.0.30           10101100.00010001.00000000.000 11110
Hosts/Net: 30                    (Private Internet)

• 172.17.0.1/30

Address:   172.17.0.1            10101100.00010001.00000000.000000 01
Netmask:   255.255.255.252 = 30  11111111.11111111.11111111.111111 00
Wildcard:  0.0.0.3               00000000.00000000.00000000.000000 11
=>
Network:   172.17.0.0/30         10101100.00010001.00000000.000000 00 (Class B)
Broadcast: 172.17.0.3            10101100.00010001.00000000.000000 11
HostMin:   172.17.0.1            10101100.00010001.00000000.000000 01
HostMax:   172.17.0.2            10101100.00010001.00000000.000000 10
Hosts/Net: 2                     (Private Internet)

Definición de una subred

A través de la Máscara de subred se define que IPs forman parte del la misma Red (directa)

La notación 192.160.136.4/24 define una máscara de subred en donde los primeros 24 bits son 1 --> 255.255.255.0

Network address

Broadcast address

https://www.techopedia.com/definition/2384/broadcast-address

Gateway

El comando route: http://www.thegeekstuff.com/2012/04/route-examples

route

Internet speed

https://askubuntu.com/questions/104755/how-to-check-internet-speed-via-terminal

La velocidad de la conexión Internet se puede medir en kbit/s (Download/Upload)

Podemos usar el siguiente script en línea:

curl -s https://raw.githubusercontent.com/sivel/speedtest-cli/master/speedtest.py | python -

o instalar el programa usado en la linea de comando anterior (speedtest-cli) como se explica aquí: https://fossbytes.com/test-internet-speed-linux-command-line/

sudo apt-get install speedtest-cli

OR

sudo apt-get install python-pip
pip install speedtest-cli

To test internet speed, just type the following command and press enter:

speedtest-cli

You can find various options in the help section of the utility:

speedtest-cli -h

Display the internet speed in megabytes/sec:

speedtest-cli --bytes

También podemos obtener una medida a través de wget:

wget -O /dev/null http://speedtest.wdc01.softlayer.com/downloads/test10.zip

Desplegar la ruta de un paquete enviado en Internet

El comando traceroute permite optener la ruta de un paquete enviado.

traceroute google.com

En el ejemplo anterio podemos ver que el paquete pasa por el IP 109.255.255.254 (que debería ser el Gateway de mi ISP). En la página que muestro a continuación se pude ver que dicho IP pertenece a mi ISP y está ubicado en Cork.

Who is my ISP

Este sitio muestra ISP: https://www.whoismyisp.org/

Wireless technologies

• PAN/WPAN (Personal Area Network (PAN)/ Wireless Personal Area Network (WPAN)
  • Bluetooth, IEEE 802.15.4
• LAN (Local Area Network)
  • IEEE 802.11

WLAN Components

• Wireless Client Receiver: it is needed to connect a computing device (e.g. desktop, laptop, PDA…) to the wired networked via an access point. It includes Onboard Cards (most laptops) PCMCIA, PCI card or USB adaptor
• Access points (APs): they are needed only in the Infrastructure Mode of WLANs. They provide the wireless client with a point of access into a network. They are like Ethernet switches in a wired network and operate in half-duplex mode (e.g. They either receive or transmit at any given time).

The WLAN supports four Network Topologies

• Peer-to-peer (Ad hoc) Topology
• Hybrid Topology
• Infrastructure Topology
• Point-to-point Topology

802.11 standards

• 802.11 is the generic name of a family of standards for wireless networking.
• Popular 802.11 standards include 802.11a, 802.11b, 802.1g, 802.11n, 802.11ac (Newest)

Some EEE 802.11 standards are:

Wireless Security

Cisco - PacketTracer

El paquete (Linux or Windows) se descarga de la página oficial de Cisco (netacad): https://www.netacad.com/group/offerings/packet-tracer

La versión 6.2 puede ser descargada aquí: https://arief-jr.blogspot.ie/2016/01/download-cisco-packet-tracer-62-for.html

Creé una cuenta en Cisco para poder tener acceso a PacketTracer. Contraseña: Aa1640774200

Packet Tracer is a powerful network simulation program which allows students to experiment with network behavior. It supplements physical equipment in the classroom by allowing students to create a network with an almost unlimited number of devices, encouraging practice, discovery and troubleshooting.

Intalación en Ubuntu

https://gabstutorials.wordpress.com/2017/06/15/install-and-configure-packet-tracer-7-on-ubuntu-16-04/

sudo ~/Downloads/PacketTracer70/./install

Luego de instalarlo encontré el error descrito y solucionado aquí: https://forum.ubuntu-fr.org/viewtopic.php?id=2014677

J'ai complété l'installation du logiciel puis j'ai essayé de me rendre dans le tableau de bord( dash) pour y trouver le logiciel où il ne se trouvait pas. Par ligne de commande, j'ai essayé de taper : packettracer et cela me dit simplement: "Starting Packet Tracer 7.1" et ne fait plus rien ensuite.

Donc tu ouvres un beau terminal, et tu lances :

/opt/pt/bin/PacketTracer7

Quand j'accède au fichier pour ./PacketTracer7: error while loading shared libraries: libQt5Script.so.5: cannot open shared object file: No such file or directory

Instalar:

libqt5script5

Je viens de le faire mais à l'instant mais ça ne résous pas mon cas,

je suis retourné voir le fichier /opt/pt/bin/PacketTracer7 et quand je l'ouvre, il m'indique qu'il me manque la librairie : " libQt5ScriptTools.so.5" j'ai donc essayé de refaire la même chose que précédemment en l'adaptant à la librairie , donc je tape :

sudo apt-get install  libqt5scripttools5

Et maintenant, ça fonctionne quand je vais chercher le fichier /usr/pt/bin/PacketTracer7

Luego para porder launch a través de packettracer in a terminal:

sudo ln -s /opt/pt/bin/PacketTracer7 /usr/local/bin/packettracer

Configuration más frecuentes using PacketTracer

• IP configuration on a PC: Click on the desktop tab, then selecting the IP configuration icon.
• Verify connectivity settings: On a PC, verify the connectivity settings by going to Desktop and clicking on command prompt. At the command prompt, type the command:

ipconfig : To view your network device information.

ipconfig /release :

ipconfig /renew : To force the PC to request an IP address from the Router.

Lab 1: Configuring Wireless Access and Security

In this lab, you will configure a Linksys WRT300N (https://en.wikipedia.org/wiki/Linksys_routers#WRT300N) in Packet Tracer.

Figure 1: Topology Network diagram.

Table 1: Addressing table.

Cofigurar la conección entre el Router y la WAN / LAN

Wireless settings

Basic wireless wettings on the Routher

The Linksys WRT300N allows you to choose which network mode to operate in. Currently, the most common network mode for clients is Wireless-G and for routers is BG-Mixed. When a router is operating in BG-Mixed, it can accept both B and G clients. However, if a B client connects, the router must scale down to the slower level of B. For this lab, pick the fastest speed your clients can support.

On WRS1, navigate to the Wireless page:

• Set the Network Name (SSID) to WRS_1
• Wireless-N Only – Radio Band – Change to Standard – 20MHz Channel.
• Standard Channel – Leave at default
• SSID Broadcast – Leave Enabled for now.

Incorporar una Wireless Network Card a la Laptop

Por defecto, Packet Tracer no incorpora una Wireless Network Card (en este caso compatible con Linksys WRT300N) a la Laptop. Debemos entonces incorporar una antes de intentar hacer la Wireless conection.

Si intentamos verificar la conexión en la Laptop antes de incorporar la Wireless Network Card:

• Go to the Desktop tab then select the PC Wireless Icon.

... el programa desplegará el siguiente mensaje: «A WMP300N or WPC300N wireless interface is required to connect»

Para incorporar la Wireless Network Card:

• Click on the Laptop > Physical
  • Observar el diseño de la Laptop (observar los diseños de los dispositivos que presenta la Laptop) (Figure 2)
  • Note que la Network Card corresponde a un puerto FastEthernet.
  • Antes de realizar el cambio, debemos apagar la Laptop. Para esto haga clic en el botón que se encuentra al lado de la conexión electrica. Arriba de la luz verde que simboliza que el dispositivo se encuentra encendido. Note que luego de prescionarlo desaparece la luz verde, lo cual indica que el dispositivo se encuentra apagado. (Figure 2 and Figure 3)
• Utilizando el cursor del mouse, arraste la actual tarjeta de red (FastEthernet) hacia la esquina inferior derecha, hacia el espacio en donde se muestra el diseño de los dispositivos físicos. Note que si se ha arrastrado correctamente, el espacio en donde se encontraba la tajeta de red en la Laptop quedará libre. (Figure 3 and Figure 4)
• Ahora arrastre la tarjeta que desea instalar desde las distintas opciones que se encuentran en el panel a la derecha hacia el espacio libre en la Laptop. (Figure 4)
• En este caso debemos escoger una WPC300N. (Figure 4)

Figure 2: Physical configuration of the Laptop - Changing the Network Card.

Figure 3: Physical configuration of the Laptop - Changing the Network Card.

Figure 4: Physical configuration of the Laptop - Changing the Network Card.

Verify wireless connection

Ahora que hemos incorporado una Wireless network card a nuestra Laptop, podemos entonces verificar la Wireless connection:

• Go to the Desktop tab then select the PC Wireless Icon. Click on the Connect Tab.
• If necessary, you may have to click on Refresh to update your wireless networks. You should see the new network (WRS_1).
• Click on the name to highlight it and then click Connect. Click on the Link Information Tab. When it is done, it will congratulate you on creating a profile (Message: You have successfully connected to the access point).

Configure DHCP Settings

Give a static DHCP binding to PC0 and Laptop0

• On Laptop0, verify connectivity settings going into cmd. At the command prompt, type the command Ipconfig /all to view your network device information. Note the Physical Address (MAC) of the Wireless Connection.
• On the Router, navigate back to the Setup page (the Basic Setup is the default tab). In the middle of the Basic Setup Page, under DHCP Server Settings, click the DHCP Reservations button. Una nueva ventana se abrirá...

• There are two ways to assign DHCP addresses:
  • The first method will always assign the client the same address the client has right now.
    • Find PC0 by its MAC address in the list of current DHCP clients (Hint: it should be listed as a LAN connection)
    • Check the Select box next to your PC. Click Add Clients. Now PC0 will show up under Clients Already Reserved.
    • This gives PC0 (in this example, the computer with a MAC address of 00:60:5C:D9:2D:1D) the same IP address it has right now (172.17.30.100) whenever it requests an address through DHCP.

• The second method to assign DHCP addresses is to select the address you want the machine to get. You will assign Laptop0 the static IP address listed in the Addressing Table, not the one it received initially.
  • Under Manually Adding Client, enter your client’s actual name (puse Laptop0 aquí pero no estoy seguro) , .24 for the IP address, the actual MAC address of your PC’s Wireless Connection, and click Add. Now whenever Laptop0 connects to the wireless router, it receives the IP address 172.17.30.24 via DHCP.

Configure other DHCP server settings

Right underneath the DHCP Reservation are the other settings for the DHCP server.

What is the default maximum number of users the WRS300N will hand out DHCP addresses to?

• 50 users.

• Start IP Address - Change to: 172.17.30.50.
• Maximum Number of Users - Change to: 75

These settings give any PC that connects (wired or wirelessly) to this router requesting an IP address through DHCP, an address between 172.17.30.50–124. Only 75 clients at a time are able to get an IP address and they can only have the address for 24 hours, after which time they must request a new one.

Verify the static IP address change and conection

On both PC0 and Laptop0, at the command prompt, type:

Ipconfig /release
Ipconfig /renew

... to verify the IP addresses you assigned are used. On Laptop0, ping the IP address of the WAN port to verify you can reach the Internet.

Lab 4: Configuring basic router settings with the Cisco IOS CLI

Cisco IOS (Internetwork Operating System) CLI (IOS Command Line Interface)

In this lab, you will build a multi-router network and configure the routers to communicate using the most common Cisco IOS configuration commands.

""" Resumen de comandos """

Al tratar de configurar un puerto serial en el cual conecté un cable serial DTE:
clock rate 250000
This command applies only to DCE interfaces

enable
#configure terminal
""""""""""""""""""""""""""""""""
(config)#hostname R1
""""""""""""""""""""""""""""""""
(config)#line console 0
(config-line)#password cisco
(config-line)#login
(config-line)#exit
""""""""""""""""""""""""""""""""
(config)#line vty 0 4
(config-line)#password cisco
(config-line)#login
(config-line)#exit
""""""""""""""""""""""""""""""""
(config)#enable password cisco
(config)#enable secret class
""""""""""""""""""""""""""""""""
(config)#banner motd #Unauthorized Use Prohibited#
""""""""""""""""""""""""""""""""
(config)#no ip domain-lookup
""""""""""""""""""""""""""""""""
(config)#line console 0
(config-line)#logging synchronous
""""""""""""""""""""""""""""""""
show ip interface brief
""""""""""""""""""""""""""""""""
(config)#interface serial 0/0/0
(config-if)#description WAN link to R2
(config-if)#ip address 172.17.0.1 255.255.0.0
(config-if)#clock rate 64000
(config-if)#no shutdown
(config-if)#exit

#show interfaces serial 0/0/0
""""""""""""""""""""""""""""""""
(config)#interface FastEthernet 0/0
(config-if)#description R1 LAN Default Gateway
(config-if)#ip address 172.16.0.1 255.255.0.0
(config-if)#no shutdown
(config-if)#exit

#show interfaces FastEthernet 0/0
""""""""""""""""""""""""""""""""
#copy running-config startup-config
""""""""""""""""""""""""""""""""
#show running-config

Would you like to enter the initial configuration dialog?

No (para así entrar a la línea de comandos desde el inicio, sin que el sistema nos proponga las opciones de configuración automáticamente).

Router> 
Router>enable 
Router#

Router#configure terminal
Router(config)#

Router>enable
Router#configure terminal
Router(config)#hostname R1
R1(config)#   // Después de configurar el host name, nuestra línea de comandos se verá así

R1(config)#line console 0
R1(config-line)#password cisco  // "cisco" will be our console password
R1(config-line)#login
R1(config-line)#exit
R1(config)#

R1(config)#line vty 0 4
R1(config-line)#password cisco
R1(config-line)#login
R1(config-line)#exit

R1(config)#enable password cisco  // "cisco" will be our enable password
R1(config)#enable secret class    // "class" will be our enable secret password

R1(config)#banner motd #Unauthorized Use Prohibited#

R1(config)#no ip domain-lookup

R1(config)#line console 0
R1(config-line)#logging synchronous

R1(config)#interface serial 0/0/0
R1(config-if)#description WAN link to R2
R1(config-if)#ip address 172.17.0.1 255.255.0.0
R1(config-if)#clock rate 64000
R1(config-if)#no shutdown
R1(config-if)#exit

R1#show interfaces serial 0/0/0

Serial0/0/0 is down, line protocol is down
  Hardware is PowerQUICC Serial
  Description: WAN link to R2
  Internet address is 172.17.0.1/16
  MTU 1500 bytes, BW 128 Kbit, DLY 20000 usec,
    reliability 255/255, txload 1/255, rxload 1/255
Encapsulation HDLC, loopback not set
Keepalive set (10 sec)
Last input never, output never, output hang never
Last clearing of "show interface" counters 00:01:55
Input queue: 0/75/0/0 (size/max/drops/flushes); Total output drops: 0
Queueing strategy: fifo
Output queue :0/40 (size/max)
5 minute input rate 0 bits/sec, 0 packets/sec
5 minute output rate 0 bits/sec, 0 packets/sec
  0 packets input, 0 bytes, 0 no buffer
  Received 0 broadcasts, 0 runts, 0 giants, 0 throttles
  0 input errors, 0 CRC, 0 frame, 0 overrun, 0 ignored, 0 abort
  6 packets output, 906 bytes, 0 underruns
  0 output errors, 0 collisions, 3 interface resets
  0 output buffer failures, 0 output buffers swapped out
  0 carrier transitions
  DCD=down DSR=down DTR=up RTS=up CTS=down

R1(config)#interface FastEthernet 0/0
R1(config-if)#description R1 LAN Default Gateway
R1(config-if)#ip address 172.16.0.1 255.255.0.0
R1(config-if)#no shutdown
R1(config-if)#exit

R1#show interfaces FastEthernet 0/0

FastEthernet0/0 is up, line protocol is up
  Hardware is AmdFE, address is 000c.3076.8460 (bia 000c.3076.8460)
  Description: R1 LAN Default Gateway
  Internet address is 172.16.0.1/16
  MTU 1500 bytes, BW 100000 Kbit, DLY 100 usec,
    reliability 255/255, txload 1/255, rxload 1/255
  Encapsulation ARPA, loopback not set
  Keepalive set (10 sec)
  Auto-duplex, Auto Speed, 100BaseTX/FX
  ARP type: ARPA, ARP Timeout 04:00:00
  Last input never, output 00:00:18, output hang never
  Last clearing of "show interface" counters never
  Input queue: 0/75/0/0 (size/max/drops/flushes); Total output drops: 0
  Queueing strategy: fifo
  Output queue :0/40 (size/max)
  5 minute input rate 0 bits/sec, 0 packets/sec
  5 minute output rate 0 bits/sec, 0 packets/sec
    0 packets input, 0 bytes
    Received 0 broadcasts, 0 runts, 0 giants, 0 throttles
    0 input errors, 0 CRC, 0 frame, 0 overrun, 0 ignored
    0 watchdog
    0 input packets with dribble condition detected
    52 packets output, 5737 bytes, 0 underruns
    0 output errors, 0 collisions, 1 interface resets
    0 babbles, 0 late collision, 0 deferred
    52 lost carrier, 0 no carrier
    0 output buffer failures, 0 output buffers swapped out

R1#copy running-config startup-config

R1#show running-config  //This command can be abbreviated as sh run

*** Some output omitted ***

Building configuration...
Current configuration : 605 bytes
!
hostname R1
!
enable secret 5 $1$eJB4$SH2vZ.aiT7/tczUJP2zwT1
enable password cisco
!
no ip domain lookup
!
interface FastEthernet0/0
 no ip address
 shutdown
 duplex auto
 speed auto
!
interface Serial0/0
 no ip address
 shutdown
!
banner motd ^CUnauthorized Use Prohibited^C
!
line con 0
 password cisco
 logging synchronous
 login
 line aux 0
 line vty 0 4
 password cisco
 login
!
end

Lab 5: Configuring Challenge Handshake Authentication Protocol Bi-directional

• PPP: point to point.
• CHAP: Challenge Handshake Authentication Protocol. Is'a PPP authentication protocol.

In this lab we will learn:

• How to configure CHAP on routers.
• How to set PPP encapsulation on routers

CHAP is the authentication options requiring that the calling side of the link, the peer, enter authentication information to help ensure that the user has the network administrator's permission to make the call. In this lab, however, two-way authentication will be used. Therefore, each router requires the peer router to authenticate.

CHAP does not itself prevent unauthorized access; it merely identifies the remote end. The router or access server then determines whether that user is allowed access.

When configuring PPP authentication, you can select:

• Challenge Handshake Authentication Protocol (CHAP) or,
• Password Authentication Protocol (PAP).

In general, CHAP is the preferred protocol:

• Because CHAP offers features such as periodic verification to improve security; this makes CHAP more effective than PAP because CHAP requires a challenge before authentication can take place.
  • CHAP is used to periodically verify the identity of the remote node, using a threeway handshake. This is done upon initial link establishment and can be repeated any time after the link has been established.
• Also, CHAP passwords are a shared secret and are not sent over the line in clear text like PAP.

Lab_A(config)#username Lab_B password clavechap

Lab_B(config)#username Lab_A password clavechap

Lab_A(config)#interface serial 0/0/0
Lab_A(config-if)#encapsulation ppp

Lab_A(config-if)#ppp authentication ?

Lab_A (config-if)#ppp authentication chap

Lab 6: Configuring and verifying static routes

objectives: Implement Static routing and verify that network routes working properly.

Static routing is one method of telling routers where to send traffic. Knowledge of static routes and how to configure them using the Cisco IOS CLI is essential to success as a network technician. In this lab, you build a multi-router network and use static routing to manually create routes, so hosts on remote networks can communicate.

Topology diagram of the network

Topology diagram of the network. Realizado en PacketTracer

When configuring static routes on the routers we need to specify either:

• The next-hop IP address OR
• The exit interface of the Router

In this lab, we will specify the next hop IP address.

""" Resumen de comandos """

>show ip route
>show ip route static
>show ip route connected

(config)#ip route 192.168.0.0 255.255.255.0 172.16.10.5

If you make a mistake with the route:
(config)#no ip route 192.168.0.0 255.255.255.0 172.16.10.5 
Undos the configuration of a static route to the 192.168.0.0/24 network sending traffic to a router interface with an address of 172.16.0.5

Extension Task:

1. How many valid ip addresses can be used on the WAN between router 1 and router 2 as the subnet mask is 255.255.255.224. Are all of these ddresses necessary? Suggest another mask that wastes fewer addresses.