netkit lab static-routing Università degli Studi Roma Tre Dipartimento di Informatica e Automazione Computer Networks Research Group



Similar documents
netkit lab two-hosts Università degli Studi Roma Tre Dipartimento di Informatica e Automazione Computer Networks Research Group

netkit lab bgp: multi-homed Università degli Studi Roma Tre Dipartimento di Informatica e Automazione Computer Networks Research Group

netkit lab MPLS VPNs with overlapping address spaces 1.0 S.Filippi, L.Ricci, F.Antonini Version Author(s)

netkit lab single-host Università degli Studi Roma Tre Dipartimento di Informatica e Automazione Computer Networks Research Group

netkit lab bgp: prefix-filtering Università degli Studi Roma Tre Dipartimento di Informatica e Automazione Computer Networks Research Group

netkit lab Università degli Studi Roma Tre Dipartimento di Informatica e Automazione Computer Networks Research Group Version 1.

walkthrough Università degli Studi Roma Tre Dipartimento di Informatica e Automazione Computer Networks Research Group Version 1.

Version Author(s) Web Description

netkit lab dns Università degli Studi Roma Tre Dipartimento di Informatica e Automazione Computer Networks Research Group Version Author(s)

netkit lab load balancer web switch 1.1 Giuseppe Di Battista, Massimo Rimondini Version Author(s)

IP network tools & troubleshooting. AFCHIX 2010 Nairobi, Kenya October 2010

netkit lab Traffic Engineering with MPLS for Linux Version Author(s) F. Di Ciccio, F. Antonini (Kasko Networks S.r.l.)

netkit lab load balancer dns 1.2 Massimo Rimondini Version Author(s)

LAB THREE STATIC ROUTING

Host Configuration (Linux)

Sample Configuration Using the ip nat outside source static

netkit lab web server and browser 1.2 Giuseppe Di Battista, Maurizio Patrignani, Massimo Rimondini Version Author(s)

Instructor Notes for Lab 3

Sample Configuration Using the ip nat outside source list C

ICS 351: Today's plan

BASIC TCP/IP NETWORKING

Packet filtering with Linux

IP Network Layer. Datagram ID FLAG Fragment Offset. IP Datagrams. IP Addresses. IP Addresses. CSCE 515: Computer Network Programming TCP/IP

Workshop on Scientific Applications for the Internet of Things (IoT) March

Troubleshooting Tools

Configuration of Cisco Routers. Mario Baldi

Corso di Configurazione e Gestione di Reti Locali

Linux TCP/IP Network Management

Introduction to NetGUI

Network Interface Failover using FONA

TCP/IP Network Essentials. Linux System Administration and IP Services

Quick Note 53. Ethernet to W-WAN failover with logical Ethernet interface.

Linux Routers and Community Networks

A virtual network laboratory for learning IP networking

Homework 3 TCP/IP Network Monitoring and Management

Network Management and Debugging. Jing Zhou

Practical Network Forensics

Subnetting,Supernetting, VLSM & CIDR

Lab Objectives & Turn In

LAB FOUR Dynamic Routing Protocols

Unix System Administration

Lab 1: Introduction to the network lab

IP Address: the per-network unique identifier used to find you on a network

Lecture Computer Networks

Computer Networks. Lecture 3: IP Protocol. Marcin Bieńkowski. Institute of Computer Science University of Wrocław

Internet Firewall CSIS Packet Filtering. Internet Firewall. Examples. Spring 2011 CSIS net15 1. Routers can implement packet filtering

Network Security. Chapter 3. Cornelius Diekmann. Version: October 21, Lehrstuhl für Netzarchitekturen und Netzdienste Institut für Informatik

Tcpdump Lab: Wired Network Traffic Sniffing

Red Hat Linux Networking

Hands On Activities: TCP/IP Network Monitoring and Management

CS 326e F2002 Lab 1. Basic Network Setup & Ethereal Time: 2 hrs

Zarząd (7 osób) F inanse (13 osób) M arketing (7 osób) S przedaż (16 osób) K adry (15 osób)

Lab Configure Cisco IOS Firewall CBAC

Technical Support Information Belkin internal use only

Teldat Router. ARP Proxy

VM-Series Firewall Deployment Tech Note PAN-OS 5.0

Procedure: You can find the problem sheet on Drive D: of the lab PCs. 1. IP address for this host computer 2. Subnet mask 3. Default gateway address

Network Administration and Monitoring

PT Activity 8.1.2: Network Discovery and Documentation Topology Diagram

High Availability in Linux Firewalls using VRRP

04 Internet Protocol (IP)

Linux Networking Basics

Dynamic Host Configuration Protocol (DHCP) 02 NAT and DHCP Tópicos Avançados de Redes

Host Discovery with nmap

Network Layer: and Multicasting Copyright The McGraw-Hill Companies, Inc. Permission required for reproduction or display.

Project 2: Firewall Design (Phase I)

Understanding and Configuring NAT Tech Note PAN-OS 4.1

Configuring Static and Dynamic NAT Simultaneously

QualNet 4.5 Network Emulation Interface Model Library

Exercise 4 MPLS router configuration

1 PC to WX64 direction connection with crossover cable or hub/switch

Smoothwall Web Filter Deployment Guide

iproute2 and Advanced Linux Routing

NETWORK EMULATION AND NETKIT

Internetworking. Problem: There is more than one network (heterogeneity & scale)


Vocia MS-1 Network Considerations for VoIP. Vocia MS-1 and Network Port Configuration. VoIP Network Switch. Control Network Switch

Policy Based Forwarding

Lab 5 Explicit Proxy Performance, Load Balancing & Redundancy

Packet Sniffing and Spoofing Lab

Guide to IP Layer Network Administration with Linux

Computer Networks I Laboratory Exercise 1

Emulating Computer Networks with Netkit. Massimo Rimondini

Cisco Configuring Commonly Used IP ACLs

Configuring PA Firewalls for a Layer 3 Deployment

How to protect your home/office network?

Guideline for setting up a functional VPN

Comodo MyDLP Software Version 2.0. Installation Guide Guide Version Comodo Security Solutions 1255 Broad Street Clifton, NJ 07013

Internet Protocol: IP packet headers. vendredi 18 octobre 13

TCP/IP Networking An Example

Streaming Networks with VLC. Jean-Paul Saman

NQA Technology White Paper

How To Understand and Configure Your Network for IntraVUE

OpenCPN Garmin Radar Plugin

Module 2: Assigning IP Addresses in a Multiple Subnet Network

Load Balancing Sophos Web Gateway. Deployment Guide

Load Balancing Bloxx Web Filter. Deployment Guide

Transcription:

Università degli Studi Roma Tre Dipartimento di Informatica e Automazione Computer Networks Research Group netkit lab static-routing Version Author(s) E-mail Web Description 2.2 G. Di Battista, M. Patrignani, M. Pizzonia, F. Ricci, M. Rimondini contact@netkit.org http://www.netkit.org/ an example of configuration of static routes

copyright notice All the pages/slides in this presentation, including but not limited to, images, photos, animations, videos, sounds, music, and text (hereby referred to as material ) are protected by copyright. This material, with the exception of some multimedia elements licensed by other organizations, is property of the authors and/or organizations appearing in the first slide. This material, or its parts, can be reproduced and used for didactical purposes within universities and schools, provided that this happens for non-profit purposes. Information contained in this material cannot be used within network design projects or other products of any kind. Any other use is prohibited, unless explicitly authorized by the authors on the basis of an explicit agreement. The authors assume no responsibility about this material and provide this material as is, with no implicit or explicit warranty about the correctness and completeness of its contents, which may be subject to changes. This copyright notice must always be redistributed together with the material, or its portions.

step 1 network topology high level view pc2 195.11.14.0/24 200.1.1.0/24 r1 100.0.0.8/30 r2

step 1 network topology configuration details pc2.5.7 collision domaina collision domainc 195.11.14.0/24 200.1.1.0/24.1 r1 eth1 collision domainb 100.0.0.8/30 eth1 r2.1.9.10

step 2 the lab lab directory hierarchy lab.conf /.startup pc2/ pc2.startup r1/ r1.startup r2/ r2.startup

step 2 the lab lab.conf r1[0]="a" r1[0]="a" r1[1]="b" r1[1]="b" r2[0]="c" r2[0]="c" r2[1]="b" r2[1]="b" [0]="A" [0]="A" pc2[0]="c" pc2[0]="c".startup ifconfig ifconfig 195.11.14.5 195.11.14.5 netmask netmask 255.255.255.0 255.255.255.0 broadcast broadcast 195.11.14.255 195.11.14.255 up up #route add default gw 195.11.14.1 dev the the routing table entries will willbe beadded manually pc2.startup ifconfig ifconfig 200.1.1.7 200.1.1.7 netmask netmask 255.255.255.0 255.255.255.0 broadcast broadcast 200.1.1.255 200.1.1.255 up up #route add default gw 200.1.1.1 dev

step 2 the lab r1.startup ifconfig ifconfig 195.11.14.1 195.11.14.1 netmask netmask 255.255.255.0 255.255.255.0 broadcast broadcast 195.11.14.255 195.11.14.255 up up ifconfig ifconfig eth1 eth1 100.0.0.9 100.0.0.9 netmask netmask 255.255.255.252 255.255.255.252 broadcast broadcast 100.0.0.11 100.0.0.11 up up #route add -net 200.1.1.0 netmask 255.255.255.0 gw 100.0.0.10 dev eth1 r2.startup ifconfig ifconfig 200.1.1.1 200.1.1.1 netmask netmask 255.255.255.0 255.255.255.0 broadcast broadcast 200.1.1.255 200.1.1.255 up up ifconfig ifconfig eth1 eth1 100.0.0.10 100.0.0.10 netmask netmask 255.255.255.252 255.255.255.252 broadcast broadcast 100.0.0.11 100.0.0.11 up up #route add -net 195.11.14.0 netmask 255.255.255.0 gw 100.0.0.9 dev eth1 the routing table entries will be beadded manually

step 3 testing connectivity :~# ping 195.11.14.1 PING 195.11.14.1 (195.11.14.1 195.11.14.1) 56(84) bytes of data. 64 bytes from 195.11.14.1: icmp_seq=1 ttl=64 time=3.17 64 bytes from 195.11.14.1: icmp_seq=2 ttl=64 time=0.371 64 bytes from 195.11.14.1: icmp_seq=3 ttl=64 time=0.308 --- 195.11.14.1 ping statistics --- 3 packets transmitted, 3 received, 0% packet loss, time 2019 rtt min/avg avg/max max/mdev mdev = 0.308/1.285/3.176/1.337 :~# interfaces on on the same domain can reach each other pc2 195.11.14.5 200.1.1.7 195.11.14.1 100.0.0.9 100.0.0.10 200.1.1.1 r1 eth1 eth1 r2

step 3 testing connectivity :~# ping 100.0.0.9 connect: Network is unreachable :~# interfaces on on different domains cannot be be reached can you tell why? pc2 195.11.14.5 200.1.1.7 195.11.14.1 100.0.0.9 100.0.0.10 200.1.1.1 r1 eth1 eth1 r2

step 3 inspecting routing tables both routers and pcs don t know how to reach networks that are not directly connected to them :~# route Kernel IP routing table Destination Gateway Genmask Flags Metric Ref Use Iface 195.11.14.0 * 255.255.255.0 U 0 0 0 :~# r1 r1:~# route Kernel IP routing table Destination Gateway Genmask Flags Metric Ref Use Iface 100.0.0.8 * 255.255.255.252 U 0 0 0 eth1 195.11.14.0 * 255.255.255.0 U 0 0 0 r1:~# directly connected networks are automatically inserted into the routing table when the corresponding interface is brought up this is a common behavior of all ip devices (even real-world routers!)

step 4 default routes on pcs to fix the problem we could specify the default route on the pcs: through this gateway (ip number) you can reach all the other networks :~# route add default gw 195.11.14.1 :~# route Kernel IP routing table Destination Gateway Genmask Flags Metric Ref Use Iface 195.11.14.0 * 255.255.255.0 U 0 0 0 default 195.11.14.1 0.0.0.0 UG 0 0 0 :~# pc2 pc2:~# route add default gw 200.1.1.1 pc2:~# route Kernel IP routing table Destination Gateway Genmask Flags Metric Ref Use Iface 200.1.1.0 * 255.255.255.0 U 0 0 0 default 200.1.1.1 0.0.0.0 UG 0 0 0 pc2:~#

step 4 default routes on pcs: test :~# ping 100.0.0.9 PING 100.0.0.9 (100.0.0.9 100.0.0.9) 56(84) bytes of data. 64 bytes from 100.0.0.9: icmp_seq=1 ttl=64 time=0.451 64 bytes from 100.0.0.9: icmp_seq=2 ttl=64 time=0.299 64 bytes from 100.0.0.9: icmp_seq=3 ttl=64 time=0.320 --- 100.0.0.9 ping statistics --- 3 packets transmitted, 3 received, 0% packet loss, time 2003 rtt min/avg avg/max max/mdev mdev = 0.299/0.356/0.451/0.070 :~# the backbone interface of of r1 r1isis reachable pc2 195.11.14.5 200.1.1.7 195.11.14.1 100.0.0.9 100.0.0.10 200.1.1.1 r1 eth1 eth1 r2

step 4 default routes on pcs: test :~# ping 100.0.0.10 PING 100.0.0.10 (100.0.0.10) 56(84) bytes of data. --- 100.0.0.10 ping statistics --- 7 packets transmitted, 0 received, 100% packet loss, time 6105 :~# interfaces on on r2 r2seem unreachable! can you tell why? pc2 195.11.14.5 200.1.1.7 195.11.14.1 100.0.0.9 100.0.0.10 200.1.1.1 r1 eth1 eth1 r2

step 4 let s inspect the network do echo request packets reach r2? let s check... while pinging from 100.0.0.10 sniff on interface eth1 of r2 r2 r2:~# tcpdump -i eth1 tcpdump: verbose output suppressed, use -v or -vv for full protocol decode listening on eth1, link-type EN10MB (Ethernet Ethernet), capture size 96 bytes 16:06:58.977851 arp who-has has 100.0.0.10 tell 100.0.0.9 16:06:59.088906 arp reply 100.0.0.10 is-at fe:fd fd:64:00: :64:00:00 00:0a 16:06:59.089990 IP 195.11.14.5 > 100.0.0.10: icmp 64: echo request seq 1 16:06:59.989368 IP 195.11.14.5 > 100.0.0.10: icmp 64: echo request seq 2 16:07:01.001888 IP 195.11.14.5 > 100.0.0.10: icmp 64: echo request seq 3 5 packets captured 5 packets received by filter 0 packets dropped by kernel r2:~# echo requests are arriving!

step 4 r2 s routing table r2 r2:~# route Kernel IP routing table Destination Gateway Genmask Flags Metric Ref Use Iface 100.0.0.8 * 255.255.255.252 U 0 0 0 eth1 200.1.1.0 * 255.255.255.0 U 0 0 0 r2:~# s address is 195.11.14.5 r2 does not know how to reach such an address. echo requests arrive to r2 but r2 does not know where echo replies should be forwarded! somebody should teach r2 how to reach we may insert a static route into the routing table of r2

step 5 configuring a static route r2 r2:~# route add -net 195.11.14.0 netmask 255.255.255.0 gw 100.0.0.9 dev eth1 network 195.11.14.0......with netmask 255.255.255.0... is reachable via 100.0.0.9 on interface eth1 r2:~# route Kernel IP routing table Destination Gateway Genmask Flags Metric Ref Use Iface 100.0.0.8 * 255.255.255.252 U 0 0 0 eth1 200.1.1.0 * 255.255.255.0 U 0 0 0 195.11.14.0 100.0.0.9 255.255.255.0 UG 0 0 0 eth1 r2:~#

step 5 configuring a static route a similar configuration should be deployed on r1 r1 r1:~# route add -net 200.1.1.0 netmask 255.255.255.0 gw 100.0.0.10 dev eth1 r1:~# route Kernel IP routing table Destination Gateway Genmask Flags Metric Ref Use Iface 100.0.0.8 * 255.255.255.252 U 0 0 0 eth1 200.1.1.0 100.0.0.10 255.255.255.0 UG 0 0 0 eth1 195.11.14.0 * 255.255.255.0 U 0 0 0 r1:~#

step 5 testing static routes the pcs can reach each other :~# ping 200.1.1.7 PING 200.1.1.7 (200.1.1.7 200.1.1.7) 56(84) bytes of data. 64 bytes from 200.1.1.7: icmp_seq=1 ttl=62 time=111 64 bytes from 200.1.1.7: icmp_seq=2 ttl=62 time=1.05 64 bytes from 200.1.1.7: icmp_seq=3 ttl=62 time=0.820 --- 200.1.1.7 ping statistics --- 3 packets transmitted, 3 received, 0% packet loss, time 2042 rtt min/avg avg/max max/mdev mdev = 0.820/37.779/111.467/52.105 :~# pc2 pc2:~# ping 195.11.14.5 PING 195.11.14.5 (195.11.14.5 195.11.14.5) 56(84) bytes of data. 64 bytes from 195.11.14.5: icmp_seq=1 ttl=62 time=0.954 64 bytes from 195.11.14.5: icmp_seq=2 ttl=62 time=0.947 64 bytes from 195.11.14.5: icmp_seq=3 ttl=62 time=1.27 --- 195.11.14.5 ping statistics --- 3 packets transmitted, 3 received, 0% packet loss, time 2049 rtt min/avg avg/max max/mdev mdev = 0.947/1.057/1.271/0.153 pc2:~#

proposed exercises the default route can be statically configured by using route add default gw 195.11.14.1 dev can you give a command to configure a static route that is equivalent to the default route? route add -net netmask gw dev

proposed exercises not all the routing tables contain a default route the network of this lab is so simple that routers r1 and r2 can be also configured to exclusively use default routes try such a configuration and test it