NETWORK DESIGN

DESIGNING MODELS FOR ADDRESSING AND NAMING

Oppenheimer

OBJECTIVES

To provide guidelines for assigning addresses and names

to
Internetwork components, including networks, subnets,
routers, servers, and end systems

To demonstrate the importance of using a structured

model for network layer addressing and naming

AAB-SEM1 2014

GUIDELINES FOR
ASSIGNING NETWORK
LAYER
Design a structured
model forADDRESSES
addressing
before assigning any addresses.

Leave room for growth in the addressing

model.

Assign blocks of addresses in a hierarchical

fashion to foster scalability and availability.

Use dynamic addressing for end systems for

flexibility and minimize configuration.

Use private addresses with NAT in IP

environment maximize security and
adaptability.
AAB-SEM1 2014

USING A STRUCTURED
MODEL FOR NETWORK
LAYER ADDRESSING

A structured model for addressing

means that addresses are meaningful,
hierarchical and planned.

Example: IP address has prefix and host

A clearly documented structured model

for addressing facilities management
and troubleshooting.

AAB-SEM1 2014

ADVANTAGES OF
STRUCTURE ADDRESSING

Easy to understand network maps

Operate network management software

Recognize devices in protocol analyzer

tracers and reports.

Facilitate network optimization and

security since it is easy to implement
network filters at firewalls, routers and
switches.

AAB-SEM1 2014

PROBLEMS WITH NO
MODEL

Duplicate network and host addresses

Illegal addresses that cannot be routed

on the Internet.

Not enough addresses in total or by

group

Addresses that cannot be used - waste

AAB-SEM1 2014

ADMINISTERING
ADDRESSES BY A CENTRAL
AUTHORITY

A corporate IS should develop a global

model for network layer addressing.

The model should identify network

numbers for the core of the enterprise
and blocks of subnets for the
distribution and access layer.

Depending on the organizational

structure of the enterprise, network
managers within each branch/region
can further divide the subnets.

AAB-SEM1 2014

IP ADDRESS

The IP address can be public or private.

Public IP are globally unique and are

registered with a numbering authority.

Private IP address are never route on

global Internet and are assigned from a
special range, documented in RFC
1918.

AAB-SEM1 2014

PUBLIC VS PRIVATE-IP
ADDRESS

Early in address designing process: designer need to

answer the following questions

Are public ,private or both address type required?

How many end systems need access to private network

only?

How many end systems need to be visible to the public

address?

How will translation between private and public address

occur?

Where in the network topology will the boundary between

private and public address exist?

AAB-SEM1 2014

PUBLIC IP ADDRESSES

10

Managed by the Internet Assigned

Numbers Authority (IANA)
Users are assigned IP addresses by
Internet service providers (ISPs).
ISPs obtain allocations of IP addresses
from their appropriate Regional Internet
Registry (RIR)

AAB-SEM1 2014

REGIONAL INTERNET
REGISTRIES (RIR)

11

APNIC (Asia Pacific Network Information Cen

tre)
Asia/Pacific Region

ARIN (American Registry for Internet Numbe

rs)
North America and Sub-Sahara Africa

LACNIC (Regional Latin-American and Caribb

ean IP Address Registry)
Latin America and some Caribbean
Islands

RIPE NCC (Rseaux IP Europens) Europe,

the Middle East, Central Asia, and African
countries located north of the equator

AAB-SEM1 2014

USING DYNAMIC
ADDRESSING FOR END
SYSTEMS

12

Dynamic addressing reduces the

configuration task required to connect
end systems to an internetwork.

It is also support users who change

office frequently, travel or work at home.

With dynamic addressing, a station can

automatically learn the network segment
to which it is currently attached and
adjust its network layer address
accordingly.

AAB-SEM1 2014

STATIC VS DYNAMIC
ADDRESSING

13

Static address used for /at

servers, routers, network management

systems

The edge in the e-commerce, internet

edge, VPN/remote-access and WAN
edge modules of a modular network
design.

Dynamic address used for end systems,

workstations and IP phones.

AAB-SEM1 2014

OTHER CRITERIA FOR

USING STATIC VS DYNAMIC
ADDRESSING

14

The number of end systems- >30 used

DHCP

Renumberings

High availability static are available

anytime

Security dynamic

Address tracking static easier to track

Additional parameter dynamic-dhcp

AAB-SEM1 2014

15

DYNAMIC HOST
CONFIGURATION
PROTOCOL (DHCP)
DHCP uses a client/server model.

Servers allocate network layer addresses and save

information about which addresses have been
allocated.

Clients dynamically request configuration parameters

from servers.

The goal of DHCP is that clients should require no

manual configuration.

In addition, the network manager should not have to

enter any per-client configuration parameters into
servers.
AAB-SEM1 2014

DHCP-CONTINUE..

16

DHCP supports 3 methods for IP address allocation:

Automatic allocation: a DHCP server assigns a

permanent IP address to a client.

Dynamic allocation : A DHCP server assigns an IP

address to a client for a limited period of time.- most
popular.

A client request the use of an address for a limited period

of time called a lease.

Manual allocation: A network administrator assigns a

permanent IP address to a client, and DHCP is used
simply to convey the assigned address to the client.
(requires per-client configuration)
AAB-SEM1 2014

PRIVATE ADDRESSING IN AN
IP ENVIRONMENT

17

Private IP address are addresses that an

enterprise network administrator assigns to
internal networks and hosts without any
coordination from an ISP or one of the RIRs.

Public addresses are not necessary for internal

hosts and networks.

Addressing for internal hosts that need access

to outside services such as emails, FTP or web
servers can be handled by NAT gateway.

AAB-SEM1 2014

PRIVATE ADDRESSING

18

Ranges for private networks:

10.0.0.0 10.255.255.255

172.16.0.0 172.31.255.255

192.168.0.0 192.168.255.255

AAB-SEM1 2014

19

PRIVATE NETWORK
NUMBER
Advantage: security

The number is private!!! it is not advertised to

Internet.

Meets goals for adaptability and flexibility- using

private addressing makes it easier to change ISPs in
the future.

When moved to a new ISP, the only address change s

required are in the router or firewall providing NAT
services and in any public servers.

Enterprise can advertise one network number or

small block of network numbers to the Internet.

Easy to manage routing table

AAB-SEM1 2014

PRIVATE ADDRESSINGDISADVANTAGE

20

Outsourcing network management is difficult.

Difficult to communicate with partners, vendors,

suppliers etc.

AAB-SEM1 2014

NETWORK ADDRESS
TRANSLATION (NAT)

21

NAT is an IP mechanism that is described in RFC

3022 for converting addresses from an inside
network to addresses that are appropriate for an
outside network vice versa.

Nat is useful for host that use private address to

access the Internet.

NAT can be implemented in a separate

appliance, router or firewall.

AAB-SEM1 2014

NAT-HOW IT WORK?

22

The NAT administrator configures a pool of

outside addresses that can be used for
translation.

When an inside host sends a packet, the source

address is translated dynamically to an address
from the pool of outside addresses.

Nat also has a provision for static addresses for

servers that need a fixed address web
server/email server that must always map to the
same well-known address.
AAB-SEM1 2014

NAT-CONTINUE..

23

Some NAT products offer port translation for mapping

several addresses to the same address.

With port translation, all traffic from an enterprise has

the same address.

Port numbers are used to distinguish separate

conversations.

It is reduces the number of required outside addresses.

It is also called NAT overload or Port Address

Translation (PAT).

NAT gateway must be low delay and higher throughput

since all traffic will need to passed by it.
AAB-SEM1 2014

24

USING A HIERARCHICAL MODEL

FOR ASSIGNING ADDRESSES

Hierarchical addressing is a model for applying

structure to addresses so that numbers in the
left part of an address refer to large blocks of
network/nodes and numbers in the right part of
an address refer to individual networks/nodes.

Benefit of hierarchical addressing = similar to

benefit of hierarchy in topology design

Allow hierarchical routing (HR) = distribute

knowledge of a network topology among the
internetwork routers.

using HR, no single router needs to understand

the complete topology.
AAB-SEM1 2014

25

THE TWO PARTS OF AN IP

ADDRESS
32 Bits

Prefix

Prefix Length

AAB-SEM1 2014

Host

CONTINUE..

26

Prefix- identifies a block of host numbers

Used for routing to that block

AAB-SEM1 2014

27

CLASSFULL ADDRESSING

AAB-SEM1 2014

DOTTED DECIMAL
NOTATION

28

It divides the 32 bit internet address into four

8 fields and specifies the value of each field
independently as a decimal number.

AAB-SEM1 2014

CONTINUE..

29

AAB-SEM1 2014

30

EXAMPLE OF NETWORK

AAB-SEM1 2014

SUBNETTING

31

A procedure that divide a single class A,B,C

network number into smaller pieces.

Why need to subnet?

Internet routing continue to grow

Local admin need to request new network

number as network grow

AAB-SEM1 2014

CONTINUE..

32

AAB-SEM1 2014

SUBNET MASK

33

32 bits long

Specifies which part of an IP address is the

network/subnet field and which part is the host field

The network/subnet portion of the mask is all 1s in

binary.

The host portion of the mask is all 0s in binary.

Convert the binary expression back to dotted-decimal

notation for entering into configurations.

Alternative

Use slash notation (for example /24)

Specifies the number of 1s

AAB-SEM1 2014

SUBNET MASK EXAMPLE

34

11111111 11111111 11111111

00000000

What is this in slash notation?

What is this in dotted-decimal notation?

AAB-SEM1 2014

ANOTHER SUBNET MASK

EXAMPLE

35

11111111 11111111 11110000

00000000

What is this in slash notation?

What is this in dotted-decimal notation?

AAB-SEM1 2014

ONE MORE SUBNET MASK

EXAMPLE

36

11111111 11111111 11111000

00000000

What is this in slash notation?

What is this in dotted-decimal notation?

AAB-SEM1 2014

DESIGNING NETWORKS
WITH SUBNETS

37

Determining subnet size

Computing subnet mask

Computing IP addresses

AAB-SEM1 2014

ADDRESSES TO AVOID
WHEN SUBNETTING

38

A node address of all ones (broadcast)

A node address of all zeros (network)

A subnet address of all ones (all

subnets)

A subnet address of all zeros (confusing)

AAB-SEM1 2014

Cisco IOS configuration permits a subnet

address of all zeros with the ip subnetzero command

PRACTICE

39

Network is 172.16.0.0

You want to divide the network into

subnets.

You will allow 600 nodes per subnet.

What subnet mask should you use?

What is the address of the first node on

the first subnet?

What address would this node use to

send to all devices on its subnet?

AAB-SEM1 2014

MORE PRACTICE

40

Network is 172.16.0.0

You have eight LANs, each of which will

be its own subnet.

What subnet mask should you use?

What is the address of the first node on

the first subnet?

What address would this node use to

send to all devices on its subnet?

AAB-SEM1 2014

ONE MORE

41

Network is 192.168.55.0

You want to divide the network into subnets.

You will have approximately 25 nodes per

subnet.

What subnet mask should you use?

What is the address of the last node on the

last subnet?

What address would this node use to send

to all devices on its subnet?

AAB-SEM1 2014

CLASSLESS INTERDOMAIN
ROUTING(CIDR)

42

To solve the problem with routing overhead.

CIDR is a method used for summarized routes.

It specifies that IP network address should be

assigned in blocks and that routers in the
Internet should group routes to cut down on the
quantity of routing information shared by
Internet routers.

AAB-SEM1 2014

CLASSLESS ADDRESSING

43

Prefix/host boundary can be anywhere

Less wasteful

Supports route summarization

AAB-SEM1 2014

Also known as

Aggregation

Supernetting

Classless routing

Classless inter-domain routing (CIDR)

Prefix routing