Lecture 1 - Basic Network and Routing Concepts

CCNP ROUTE: Implementing IP Routing 300-101
Josh Lowe
September 2015
INFR 2411U Advanced Networking I: CCNP ROUTE
Josh Lowe, 2015
Differentiating between Dynamic Routing Protocols

Understanding Network Technologies (Traffic Types, Network Types, and Overlaying
Network Technologies)
Connecting Remote Locations with Headquarters VPNs covered in tutorial
Routing and TCP/IP Operations
Implementing RIPng Covered in Lab and Tutorial
Josh Lowe, 2015
2014 Cisco and/or its affiliates. All rights reserved.
Cisco Confidential
Todays enterprise networks can be incredibly complex

For example, physical and logical topologies can look very different
e.g.:
Physical
Logical
Josh Lowe, 2015
Breaking the network down into smaller modules, each with its own purpose, helps with
the analysis of the network
Josh Lowe, 2015
Cisco recommends breaking the network up into two functional areas, the Enterprise
Campus and the Enterprise Edge
Josh Lowe, 2015
Enterprise Campus
Provides end users and devices with access to resources
Single geographic area spanning a single floor, building,

or several buildings in the same area
Commonly designed using a hierarchical model (access,

distribution, core)
Josh Lowe, 2015
Enterprise Edge
Goal is to provide remote users with the same access to

network services as local users
Aggregates private WAN links from service providers
Provides VPN connectivity site-to-site and for remote

users
Provides Internet connectivity for Enterprise Campus

users
Josh Lowe, 2015
The basic goal of routing protocols is to exchange network layer reachability information
(NLRI) between routers, and to adapt to changes in network topology
Josh Lowe, 2015
Best practices say to only use one IP routing protocol throughout the enterprise
Sometimes, this is not feasible/possible:
Your organization has acquired another organization which uses a different protocol
Some devices in your network do not support one or more of the protocols in use
Your organization is multi-homed to two or more ISPs
In a multi-homed environment routes are typically exchanged with the ISPs using BGP
(much more on that later!)

Within the organization, OSPF or EIGRP is typically used
In a single-homed environment (single ISP connection) static routes are typically
shared between the organization and the ISP

The customer often receives only a default route from the ISP in this situation
Josh Lowe, 2015
10
Asymmetric routing (asymmetric traffic) is traffic
that uses one path for packets leaving and a

different path for the return traffic
Often occurs when you have multiple redundant
paths through the network

Asymmetric routing is sometimes a desirable trait
because it maximizes use of the available

bandwidth
However, some technologies dont work well with
asymmetric routing, especially security

technologies
E.g. Firewalls and VPNs often have issues with

asymmetric traffic; NAT can also be problematic
As we will see later, BGP is a great protocol for
controlling path selection in redundant networks
Josh Lowe, 2015
11
With so many different routing protocols available, how do you know which one to use?
Each protocol has its own advantages and drawbacks
In general, you need to consider the following when choosing a routing protocol:
1.
Network size (some protocols scale better than others)
2.
Multivendor support (does that new Juniper router you purchased support EIGRP?)
3.
Knowledge level (how well do you understand the nuances of multi-area OSPF configuration?)
4.
Type of routing algorithm (link-state vs distance vector vs path vector, which is best for your needs?)
5.
Speed of convergence (how fast does the protocol recover from failures?)
6.
Scalability (how much overhead is introduced by the protocol? Small networks dont need complex
protocols)
Josh Lowe, 2015
12
An autonomous system (AS) represents a
collection of network devices under a common

administrator
Routing protocols can be divided based on
whether they exchange routes within an AS or

between different ASes
Interior Gateway Protocols (IGP) are used to
exchange routes within an AS

Exterior Gateway Protocols (EGP) are used to
exchange routes between ASes
Josh Lowe, 2015
13
Distance Vector Protocols:

Uses a direction (vector) and a distance to determine the path to any link in the network
Think of it like driving from A to B and relying only on the signs on the side of the road to figure out how
to get there
Routers only know what their immediate neighbors tell them; lack details of the full network topology
E.g. You can get to network B through me, and the distance is 100
Example protocols include RIP and EIGRP

A
Network A: Distance 30
Network B: Distance 100
Josh Lowe, 2015
14
Link-state Protocols:
You Are Here
Uses the Shortest Path First (SPF) algorithm

to create an exact map of the entire topology
in an area
Think of this like having a map of all the
roads in the province and using that to
determine how to get from A to B
A link-state map of the network allows routers
to determine the best path to a destination on
their own, instead of relying on their
neighbors to tell them
Example protocols include OSPF and IS-IS
Josh Lowe, 2015
15
Convergence describes the process of when routers notice changes in the network,
exchange the information about the change, and perform necessary calculations to reevaluate the best routes
A converged network is one where all routers have the same view of the network
topology
Josh Lowe, 2015
16
Convergence time describes how fast network devices can reach a state of convergence
after a topology change (faster is obviously better)

Each routing protocol has specific factors that influence how fast they converge. We will
cover them as we go over each protocol.
Josh Lowe, 2015
17
You can influence convergence time by fine-tuning timers

The faster a router notices a change, and notifies its neighbors of the change, the faster the neighbors
can recalculate the best path
You can also influence convergence time by configuring summarization and some
protocol-specific features
Josh Lowe, 2015
18
Route summarization helps to improve stability
and scalability in a network by reducing the

amount of routing information that is maintained
and exchanged between routers
The result is smaller routing tables and faster
convergence times
You can summarize routes by squeezing several
subnets into on aggregate entry that includes all

of them
This makes the routing tables much smaller, which

is especially important on routers on the Internet,
where they have over 500,000 routes!
Josh Lowe, 2015
19
Summarization also reduces the number of updates
that need to be exchanged between routers

For example, Router B is receiving the summary
route 10.12.0.0/21 from Router A

If the 10.12.4.0/24 network goes down, does Router
B need to know about that? Does it need to do any

route recalculations?
The result of summarization is faster convergence
time
Different protocols support different route
summarization options (e.g. auto-summary, weird

OSPF summary rules)
Keep in mind that in order to implement route
summarization efficiently, IP addresses must be

hierarchically assigned in contiguous blocks across
the network!
Josh Lowe, 2015
20
Larger networks are at increased risk of routing protocol instability or long convergence
times
Scalability describes the ability of a routing protocol to support further network growth.
Hierarchical addressing, structured address assignment, and route summarization
improve the overall scalability regardless of routing protocol.

Some protocols also have specific features to improve their scalability
For example, OSPF supports multiple areas that help reduce the complexity of the network and allow it
to scale very well
EIGRP supports stub routers which limits the amount of routing information that has to propagate
through certain parts of the network
Josh Lowe, 2015
21
Cisco Confidential
22
Unicast (one-to-one)
Traffic is exchanged between one sender and one receiver
Source IP addresses are always unicast
Josh Lowe, 2015
23
Broadcast (one-to-all)
Used to send traffic to all devices in a subnet
255.255.255.255 is a local broadcast address, which reaches all devices in the local subnet (not
forwarded by routers)
A directed broadcast allows you to reach all devices in a remote subnet (e.g. 10.1.1.255/24)
IPv6 does not have broadcast addresses
Josh Lowe, 2015
24
Multicast (one-to-some, one-to-group)

Traffic is sent to multiple (but not necessarily all) destinations at the same time (called a multicast group)
An interface may belong to any number of multicast groups, and will pick up traffic for any of them
In IPv4, the class D address range 224.0.0.0-239.255.255.255 is the multicast address range
In IPv6, any address that belongs to the FF00::/8 subnet is a multicast address
Josh Lowe, 2015
25
Anycast
(one-to-closest)
The same address is assigned to multiple

devices
Routers will route the packet to whichever
device is closest to the source (based on
routing protocol metric)
For example, the same DNS server can be
hosted in locations all over the world, using
the same address
When you need to resolve a hostname you
use that same address, and the router will
send you to the closest server
Josh Lowe, 2015
26
Early routing protocols used broadcasts to exchange routing information, which was
inefficient and generated extra traffic.

Most modern routing protocols use multicast to communicate
Josh Lowe, 2015
27
Josh Lowe, 2015
28
ICMPv6 is much more robust protocol than its IPv4 counterpart as it includes ICMPv6
Neighbor Discovery Protocol

ICMPv6 Neighbor Discovery is used for automatic address allocation, address resolution,
and duplicate address detection (and it also replaces ARP!)

There are five messages:
Router Solicitation (RS) Sent by a device to request that a neighboring router send a router advertisement (RA)
message
Router Advertisement (RA) Sent by routers periodically, or in response to an RS message. Includes link
information needed by hosts to automatically configure their global addresses (e.g. network prefix, default gateway)
Neighbor Solicitation (NS) Replaces an ARP request. Sent to the Solicited Nodes multicast of a destination
device asking it to reply with its MAC address
Neighbor Advertisement (NA) Unicast reply to a NS message, containing the requested MAC address
Redirect Tells a sending device that they should use a different next-hop router to get to the destination (These are
not the droids you are looking for)
Josh Lowe, 2015
29
Not all Layer 2 network topologies
support all traffic types

Because unsupported traffic types
influence the operation of routing

protocols, it is important to be aware
of the limitations of specific network
topologies
There are three general network
types:
Point-to-point
Broadcast
NBMA
Josh Lowe, 2015
30
Point-to-point
A network that connects a single pair of routers
A packet sent by one device is received by exactly one recipient on the other end
Typical Layer 2 protocols that run over P2P networks include HDLC and PPP
Josh Lowe, 2015
31
Broadcast
A network that can connect many devices on a single segment (usually via a Layer 2 switch)
Supports broadcast messages, which go to every other device on the segment
An example broadcast Layer 2 protocol is Ethernet
Josh Lowe, 2015
32
Nonbroadcast Multaccess (NBMA)

A network that can connect many devices to a single segment but does not have broadcast capability
A sender needs to make multiple copies of the same packet if he needs to reach all devices on the
segment, and needs to know the address of each recipient
Example protocols that run on NBMA networks include Frame Relay and ATM
Josh Lowe, 2015
33
NBMA networks can use a variety of topologies, but most often are hub-and-spoke, or
partial mesh. Full mesh NBMA networks are expensive and dont scale well
Hub-and-spoke NBMA topologies can be especially problematic for routing protocols.
Can you think of why? (there are multiple reasons)
Josh Lowe, 2015
34
Split Horizon
The split horizon rule is designed to prevent routing loops in distance vector protocols
The rule states that an update received on an interface cant be sent back out that same interface
In a hub-and spoke network, this means that if the hub receives an update from a spoke, it cant forward
it back out to the other spokes using the same physical interface!
The solution is to either disable split horizon on the interface, or else modify the network to use multiple
point-to-point subinterfaces (more later)
Josh Lowe, 2015
35
Neighbor Discovery
Most routing protocols multicast Hello packets in order to discover their neighbors automatically
Nonbroadcast networks dont allow broadcasts (or multicasts) so routers are unable to automatically find
each other
Instead, on these network types you must statically configure your neighbors
Additionally, since NBMA is a multi-access network type, OSPF needs to elect a designated router (DR)
By definition, the DR needs to be able to talk directly to all other routers on the segment
The hub is the only device with circuits to all other devices, so it must always be the DR
DR
Josh Lowe, 2015
36
As mentioned previously, you can use subinterfaces to circumvent some of the problems
associated with NBMA networks

Point-to-Point subinterface: Each subinterface uses its own subnet. Connectivity acts as though there
are just a collection of point-to-point links, which means there is no issues with neighbor discovery or
split horizon
Point-to-multipoint subinterfaces: One subnet is shared among all virtual circuits between devices.
Requires additional routing protocol configuration to support
Josh Lowe, 2015
37
Cisco Confidential
38
A static route can be used in the following circumstances:

When it is undesirable to have dynamic routing updates forwarded across slow bandwidth links link
When the administrator needs total control over the routes used by the router
When a backup to a dynamically route is necessary
When it is necessary to reach a network accessible by only one path (a stub network, see below)
When a router needs to have only a default route pointing toward the ISP router
When a router is underpowered and does not have the resources to handle a dynamic routing protocol
Josh Lowe, 2015
39
Configure a static route with the ip route command.

Router(config)#
ip route prefix mask address interface dhcp distance name next-hop-name permanent track
number tag tag
Parameter
Description
prefix mask
The IP network and subnet mask for the remote network to be entered into the IP routing table.
address
The IP address of the next hop that can be used to reach the destination network.
interface
The local router outbound interface to be used to reach the destination network.
dhcp
(Optional) Enables a Dynamic Host Configuration Protocol (DHCP) server to assign a static route to a default gateway (option 3).
distance
(Optional) The administrative distance to be assigned to this route.
name next-hop-name
(Optional) Applies a name to the specified route.
permanent
(Optional) Specifies that the route will not be removed from the routing table even if the interface associated with the route goes
down.
track number
(Optional) Associates a track object with this route. Valid values for the number argument range from 1 to 500.
tag tag
(Optional) A value that can be used as a match value in route maps.
Josh Lowe, 2015
40
R2 is configured with a static route to the R1 LAN and a default static route to the Internet.
R1 is configured with a default static route.
R2(config)# ip route 172.16.1.0 255.255.255.0 S0/0/0
R2(config)# ip route 0.0.0.0 0.0.0.0 192.168.1.1
R1(config)# ip route 0.0.0.0 0.0.0.0 10.1.1.1

R1(config)# exit
R1# show ip route
<output omitted>
Gateway of last resort is not set
C
172.16.1.0 is directly connected, FastEthernet0/0
C
10.1.1.0 is directly connected, Serial0/0/0
S*
0.0.0.0/0 [1/0] via 10.1.1.1
R1#
Josh Lowe, 2015
41
Point-to-Point Protocol (PPP) is a non-proprietary Layer 2 protocol for connecting two
endpoints together
Through the use of Network Conrol Protocols (NCPs) it can support a variety of Layer 3
protocols, such as IPv4 and IPv6

Basic PPP configuration is very straightforward:
R1(config)# interface serial 0/0/0
R1(config-if)# encapsulation ppp
Josh Lowe, 2015
42
PPP connections can be optionally authenticated using one of two protocols: PAP or
CHAP
You can enable PPP authentication on an interface using the following command:
ppp authentication { chap | chap pap | pap chap | pap }
PAP authentication requires the remote device to send a name and password (in plain
text), which is checked against a database

CHAP authentication sends a challenge string to the remote device which must be
encrypted using the shared secret key and sent back

After receiving the encrypted key the local router uses its configured shared secret key to
perform the same encryption on the challenge string

If the strings match, both routers have the same shared secret, if it doesnt match then
the secrets were not the same

Josh Lowe, 2015
43
PPP is traditionally used on serial links, however ISPs also like to use it on their
broadband networks (specifically, DSL)

ISPs value PPP because of the authentication, accounting, and link management
features
Customers tend to use Ethernet in their homes, and PPP is not natively supported on
Ethernet
PPP over Ethernet (PPPoE) allows the sending of PPP frames encapsulated inside
Ethernet frames
Josh Lowe, 2015
44
PPPoE creates a PPP tunnel over an Ethernet connection, allowing PPP frames to be
sent across the tunnel to the customer

A modem typically converts the PPPoE messages in the plain PPP messages, and vice
versa, by adding and removing Ethernet headers

PPPoE allows ISPs to authenticate customers (CHAP), provide them with IP addresses
automatically, and get detailed accounts of their connectivity, while still letting them use
Ethernet networks
Josh Lowe, 2015
45
Frame Relay provides several benefits
over traditional point-to-point leased

lines depending on the needs of the
organization
Leased lines provide permanent
dedicated capacity, but are expensive

and inflexible. You also require a
separate physical interface on the router
for each connection
Frame Relay, however, requires only a
single access circuit to the Frame Relay

provider to communicate with other sites
connected to the same provider, and the
capacity can vary between sites
Josh Lowe, 2015
46
Frame Relay uses virtual circuits (VCs) to connect sites together

Frame Relay allows multiple logical VCs to be multiplexed over a single physical
interface (for point-to-multipoint configurations)

These VCs are identified by the Layer 2 Frame Relay address, the Data-link Connection
Identifier (DLCI)
To provide IP layer connectivity, a mapping between IP addresses and DLCIs must be
defined, either dynamically (using Inverse ARP) or statically

By default, a Frame Relay network is an NBMA network, requiring manual configuration
of EIGRP and OSPF neighbors and route exchanges
Josh Lowe, 2015
47
Cisco Confidential
48
An IPv4 packet has a maximum size of 65,535 bytes.

An IPv6 packet can support up to 4,294,967,295 bytes.
However, most transmission links enforce a smaller maximum packet length called the
maximum transmission unit (MTU).

When a router receives an IPv4 packet larger than the MTU of the outgoing interface, it
must fragment the packet (unless the Dont Fragment, DF, bit has been set)
Reassembly of the packet is the responsibility of the destination device
Josh Lowe, 2015
49
Fragmentation causes several issues including the following:

CPU and memory overhead in fragmentation of the packet
CPU and memory overhead in destination devices during reassembly of packets
Retransmission of the entire packet when one fragment is dropped
Firewalls that do Layer 4 through Layer 7 filtering may have trouble processing IPv4 fragments correctly
Josh Lowe, 2015
50
To avoid fragmentation, the TCP Maximum Segment Size (MSS) defines the largest
amount of data that the receiving device is able to accept in a single TCP segment
The MSS is not negotiated between sender and receiver.
The sending device is required to limit the size of the TCP segment equal to or less than
the MSS reported by the receiving device.

To avoid fragmentation of an IPv4 packet, the selection of the TCP MSS is the minimum
buffer size and MTU of the outgoing interface minus 40 bytes. Why 40 bytes?
Example:
The default Ethernet MTU is 1500 bytes.
A TCP segment over IPv4 sent out an Ethernet interface will have a TCP MSS of 1460
This is 1500 bytes for the Ethernet MTU, minus 20 bytes for the IPv4 header, and 20 bytes for the TCP
header.
Josh Lowe, 2015
51
The TCP MSS helps avoid fragmentation at the two ends of the TCP connection but it
does not prevent fragmentation due to a smaller MTU on a link along the path
Path MTU Discovery (PMTUD) determines the MTU along a path from the packets
source to destination
A host uses the full MSS determined by the outgoing interface and sets the TCP DF bit
so that packets cannot be fragmented

If a router along the path needs to fragment the packet because of a lower MTU link on
the egress interface, it will drop the packet due to the DF bit being set and send an ICMP
Destination Unreachable message back to the originator of the packet
Size 1492
1500
DF
X
R1
MTU
1500
R2
MTU
1492
R3
MTU
1500
R4
Josh Lowe, 2015
52
IPv6 routers do not fragment a packet unless it is the source of the packet
If an IPv6 router receives a packet larger than the MTU of the outgoing interface, it will
drop the packet and send an ICMPv6 Packet Too Big message back to the source,
including the smaller MTU.
The PMTUD operations for IPv6 are similar to that of PMTUD for IPv4
Josh Lowe, 2015
53
Thank you.

Lecture 1 - Basic Network and Routing Concepts

Transféré par

Informations du document

Copyright

Formats disponibles

Partager ce document

Partager ou intégrer le document

Options de partage

Avez-vous trouvé ce document utile ?

Ce contenu est-il inapproprié ?

Droits d'auteur :

Formats disponibles

Lecture 1 - Basic Network and Routing Concepts

Transféré par

Droits d'auteur :

Formats disponibles

CCNP ROUTE: Implementing IP Routing 300-101

INFR 2411U Advanced Networking I: CCNP ROUTE

Josh Lowe, 2015

Differentiating between Dynamic Routing Protocols

INFR 2411U Advanced Networking I: CCNP ROUTE

Josh Lowe, 2015

2014 Cisco and/or its affiliates. All rights reserved.

Todays enterprise networks can be incredibly complex

INFR 2411U Advanced Networking I: CCNP ROUTE

Josh Lowe, 2015

the analysis of the network

INFR 2411U Advanced Networking I: CCNP ROUTE

Josh Lowe, 2015

Campus and the Enterprise Edge

INFR 2411U Advanced Networking I: CCNP ROUTE

Josh Lowe, 2015

Provides end users and devices with access to resources

Single geographic area spanning a single floor, building,

Commonly designed using a hierarchical model (access,

INFR 2411U Advanced Networking I: CCNP ROUTE

Josh Lowe, 2015

Goal is to provide remote users with the same access to

Aggregates private WAN links from service providers

Provides VPN connectivity site-to-site and for remote

Provides Internet connectivity for Enterprise Campus

INFR 2411U Advanced Networking I: CCNP ROUTE

Josh Lowe, 2015

(NLRI) between routers, and to adapt to changes in network topology

INFR 2411U Advanced Networking I: CCNP ROUTE

Josh Lowe, 2015

(much more on that later!)

shared between the organization and the ISP

INFR 2411U Advanced Networking I: CCNP ROUTE

Josh Lowe, 2015

Asymmetric routing (asymmetric traffic) is traffic

that uses one path for packets leaving and a

paths through the network

because it maximizes use of the available

asymmetric routing, especially security

E.g. Firewalls and VPNs often have issues with

As we will see later, BGP is a great protocol for

controlling path selection in redundant networks

INFR 2411U Advanced Networking I: CCNP ROUTE

Josh Lowe, 2015

Network size (some protocols scale better than others)

INFR 2411U Advanced Networking I: CCNP ROUTE

Josh Lowe, 2015

An autonomous system (AS) represents a

collection of network devices under a common

whether they exchange routes within an AS or

exchange routes within an AS

exchange routes between ASes

INFR 2411U Advanced Networking I: CCNP ROUTE

Josh Lowe, 2015

Distance Vector Protocols:

Example protocols include RIP and EIGRP

INFR 2411U Advanced Networking I: CCNP ROUTE

Josh Lowe, 2015

You Are Here

Uses the Shortest Path First (SPF) algorithm

INFR 2411U Advanced Networking I: CCNP ROUTE

Josh Lowe, 2015

INFR 2411U Advanced Networking I: CCNP ROUTE

Josh Lowe, 2015