Networking Protocols

11K

Solutions

16K

Contributors

Networking software modules are interfaced with a framework implemented on the machine's operating system that implements the networking functionality of the operating system. The best known frameworks are the TCP/IP model and the OSI model. Systems typically do not use a single protocol to handle a transmission. Instead they use a set of cooperating protocols, sometimes called a protocol family or protocol suite.[9] Some of the best known protocol suites include: IPX/SPX, X.25, AX.25, AppleTalk and TCP/IP. Other protocols indirectly related to networking include the hypertext transfer protocol (HTTP) and its related technologies, Dynamic Host Configuration Protocol (DHCP), Domain Name Server (DNS) and other Internet protocols.

Share tech news, updates, or what's on your mind.

Sign up to Post

I have a verizon wireless net extender for signal increase. The extander needs port tcp 53 allowed for this to work. I have included the below packettrace and it looks like it's passing through just fine but... the extender does not work. If I bypass the ASA, it works even though I did not configure any NAT or permit ACL's. I was assuming that since the device start the communication, that I dont need it. I also included a link to verizon about what config I need on ASA. How can I make this work>?

https://www.verizonwireless.com/support/knowledge-base-25525/

FW/pri/act# packet-tracer input inside tcp 10.255.8.20 1234 69.78.34.151 53 detailed
Phase: 1
Type: ACCESS-LIST
Subtype:
Result: ALLOW
Config:
Implicit Rule
Additional Information:
 Forward Flow based lookup yields rule:
 in  id=0x2aaadaf78770, priority=1, domain=permit, deny=false
        hits=2410723433, user_data=0x0, cs_id=0x0, l3_type=0x8
        src mac=0000.0000.0000, mask=0000.0000.0000
        dst mac=0000.0000.0000, mask=0100.0000.0000
        input_ifc=inside, output_ifc=any

Phase: 2
Type: ROUTE-LOOKUP
Subtype: Resolve Egress Interface
Result: ALLOW
Config:
Additional Information:
found next-hop ******* using egress ifc  outside

Phase: 3
Type: ACCESS-LIST
Subtype: log
Result: ALLOW
Config:
access-group inside_in in interface inside
access-list inside_in extended permit ip any4 any4 log disable
Additional Information:
 Forward Flow based lookup yields rule:
 in  id=0x2aaad7b2c010, priority=13, 

Open in new window

0
Learn how to optimize MySQL for your business need
LVL 2
Learn how to optimize MySQL for your business need

With the increasing importance of apps & networks in both business & personal interconnections, perfor. has become one of the key metrics of successful communication. This ebook is a hands-on business-case-driven guide to understanding MySQL query parameter tuning & database perf

I need to redistribute two (of about 10) static routes into BGP.  My memory  of route-map configurations are a little fuzzy.... does this look right?

ip route 1.1.1.1 255.255.255.255 2.2.2.2 tag 100
ip route 1.1.1.2 255.255.255.255. 2.2.2.2 tag 101

Route-map Static_Routes permit 10
 match tag 100 101

router bgp 00000
 redistribute static route-map Static_Routes
0
bgp
On the  screenshot above R1 is in AS1 and R2 in AS 2
I advertised Loopback networks from both Routers, but cannot see it in each other router BGP table

R1#sh run
Building configuration...

Current configuration : 1519 bytes
!
! Last configuration change at 19:08:12 UTC Tue Jul 25 2017
!
upgrade fpd auto
version 15.0
service timestamps debug datetime msec
service timestamps log datetime msec
no service password-encryption
!
hostname R1
!
boot-start-marker
boot-end-marker
!
!
no aaa new-model
!
!
!
ip source-route
no ip icmp rate-limit unreachable
ip cef    
!
!
!
!
no ip domain lookup
no ipv6 cef
!
multilink bundle-name authenticated
!
!
!
!
!
!
!
!
!
redundancy
!
!
ip tcp synwait-time 5
! 
!         
!
!
!
!
!
!
interface Loopback0
 ip address 1.1.1.1 255.255.255.255
 !
!
interface FastEthernet0/0
 ip address 192.168.12.1 255.255.255.0
 duplex half
 !
!
interface Ethernet1/0
 no ip address
 shutdown
 duplex half
 !
!
interface Ethernet1/1
 no ip address
 shutdown
 duplex half
 !
!
interface Ethernet1/2
 no ip address
 shutdown
 duplex half
 !
!
interface Ethernet1/3
 no ip address
 shutdown
 duplex half
 !
!
!
router bgp 1
 no synchronization
 bgp log-neighbor-changes
 network 1.1.1.1 mask 255.255.255.255
 network 192.168.12.0
 neighbor 192.168.12.2 remote-as 2
 no auto-summary
!
ip forward-protocol nd
no ip http server
no ip http secure-server
!
!
ip route 2.2.2.2 255.255.255.255 192.168.12.2
!
no cdp log mismatch duplex
!
!
!
!
!
!

Open in new window

0
Hello

I dont understand why I would have this in my eigrp config. What is this filtering at this point? To me, this looks as not having any distribution list at all.

Router#
Router#sh run | sec eigr
router eigrp 2
 distribute-list prefix BLOCK-EIGRP-DEFAULT in
 network 10.0.0.0
 passive-interface default
 no passive-interface Tunnel0
 eigrp stub connected
Router#
Router#
Router#
Router#
Router#
Router#
Router#sh ip prefix-list BLOCK-EIGRP-DEFAULT
ip prefix-list BLOCK-EIGRP-DEFAULT: 2 entries
   seq 5 deny 0.0.0.0/0
   seq 10 permit 0.0.0.0/0 le 32
Router#

Open in new window

0
Hello Experts,
Please suggest how to configure Precision Time Protocol (PTP) client with Mellanox (driver: mlx4_en, version: 4.1-1.0.2 (27 Jun 2017), firmware-version: 2.40.7000) on Centos 6.8 64bit system.
0
Is there any cisco switch which can take the full internet BGP table?
0
We just moved from WinINET to WinHTTP. The latter does not have an equivalent InternetCanonicalizeUrl function.

The WinHTTP docs say that WinHTTPOpenRequest does this automatically but there is nothing there that specifically addresses this.

According to this reference you can use WinHTTPCreateURL which uses a URL_COMPONENTS structure to define the various URL parts. In the latter the lpszExtraInfo property is where you put the ?param=xyz& ... part.

Here is my problem - one of the parameters in the paramter string needs to be canonicalized as it could contain non-URL friendly characters (Example &).

With the WinINET version we used InternetCanonicalizeUrl on the specific URL parts which were then appended to the URL string.

Example
If we have a URL now that looks like this
mydomain.com?param='Name & Surname','Description'

Open in new window

And we pass that to WinHTTPOpenRequest - it does not know that the & in Name & Surname is data and not a parameter separator.

Question:
How do we canonicalize individual parameters in the URL with WinHTTP
0
Hi,



Can anyone help in identifying why once my vpn client enabled. I can  ping all other internal IPs except 192.168.4.1(interface DatabaseZone)  and 192.168.3.1. My vpn client assigned 192.168.5.100 which is in  the range ov VpHi,



Can anyone help in identifying why once my vpn client enabled. Cant ping any of internal IPs configuration like 192.168.4.1(interface DatabaseZone) . My vpn client assigned 192.168.5.100 which is in  the range of Vpnclients object-group configuration.nclients object-group configuration.

here attached output from "show vpn-sessiondb detail remote"
vpn-sesssiondb-detail.txt
0
There's been a lot of discussion lately about Net Neutrality and the various pros/cons. While I'm loath to have unnecessary legislation or "solutions in search of a problem" and greatly respect those viewpoints of the debate, I've ultimately fallen on the side in favor of Net Neutrality. Nilay Patel over at The Verge pulls no punches in his eloquent article that highlights so many of the reasons that have shaped my view on the issue.

It's a long read, but well worth it. This sort of thing impacts all of us in IT and no matter what happens or what opinions you hold on the matter, I'm hopeful we can all find common ground in keeping the internet great.
3
Hi All,

Could you all help with this config I'd like to implement OSPF ?& if this is the correct configuration to implement?



MAN(config-if)# ip address 10.10.12.13 255.255.255.0
MAN(config-if)# no shut

BEL(config-if)# ip address 10.10.12.12 255.255.255.0
BEL(config-if)# no shut

2. The routing OSPF between routers:
MAN(config)# router OSPF 1
MAN(config-router)# network 10.10.14.0 0.0.0.255 a 0
MAN(config-router)# network 10.10.12.0 0.0.0.255 a 0
MAN(config-router)# network 10.200.3.0 0.0.0.255 a 0

BEL(config)# router OSPF 1
BEL(config-router)# network 10.10.120 0.0.0.255 a 0
BEL(config-router)# network 10.10.11.0 0.0.0.255 a 0
BEL(config-router)# network 10.202.3.0 0.0.0.255 a 0

LON(config)# router OSPF 1
LON(config-router)# network 10.10.0.0 0.0.0.255 a 0
LON(config-router)# network 10.10.0.0 0.0.0.255 a 0
LON(config-router)# network 10.0.3.0 0.0.0.255 a 0

BATH(config)# router OSPF 1
BATH(config-router)# network 10.0.14.0 0.0.0.255 a 0
BATH(config-router)# network 10.0.10.0 0.0.0.255 a 0
BATH(config-router)# network 10.0.3.0 0.0.0.255 a 0
OSPF-NEW.PNG
0
Database Solutions Engineer FAQs
LVL 2
Database Solutions Engineer FAQs

In this series, we will discuss common questions received as a database Solutions Engineer at Percona. In this role, we speak with a wide array of MySQL and MongoDB users responsible for both extremely large and complex environments to smaller single-server environments.

Wake-up on Lan over the internet???

Inside LAN environment Wake-up on LAN is working for my PC.
But i want to make Wake-up on Lan working over the internet, I don't have public ip address.
Is it possible? If yes let me know how??


OS: Windows 7 Ultimate 64 bit edition
Processor: Intel i3 3.5Ghz
RAM: 16GB
HDD: 1TB
0
Which traffic will use the next hop in the PBR? The DENY traffic or PERMIT traffic under the ACL? I am pretty sure it means the PERMIT traffic will use the PBR but just want to double check


ip access-list extended PBR
 deny   ip 10.90.28.224 0.0.0.15 any
 deny   ip 10.0.0.0 0.255.255.255 10.0.0.0 0.255.255.255
 permit ip 10.0.0.0 0.255.255.255 any


route-map PBR permit 10
 match ip address PBR
 set ip next-hop 10.255.14.1

Open in new window

0
We have Verizon FIOS triple play.  They supplied an actiontech modem router.  

The contract is ending and we are moving to Comcast internet only service.  Verizon wants just the TV boxes back - says I can keep the actiontech.

can we just plug in the coax from comcast into the actiontech and it'll work?  or is it set up / proprietary for Verizon service only?  (right now the actiontech is fed from the Verizon optical box with a cat 5 on the WAN port, but it has a coax connector also.)

Again, we're looking to use this for just the internet only service

Thanks!
0
I have cisco 3650 and 3560G connected one to one port as trunk. Ports are gig1/1/1 to g0/1

What is the recommended etherchannel configuration from port gig1/1/1, gig 1/1/2 to g0/1, g0/2?
0
We currently have a Dell Sonic Firewall that is our firewall as well as our company router.  This is our main router for all of our sites in the company.  We have 16.  We implemented through our EMR (Electronic Medical Records) software an upload to a billing company.  They in turn configure and print bills and send them out to our customers.  This has worked fine for over two years.  When this was implemented, we were not required to make any firewall changes at all.

A week ago, the user doing this procedure received an error that the file could not be uploaded.  She called the EMR company, who in their effort to troubleshoot the problem, changed the upload method from ftp to sftp.  She then tried to upload and she got an additional error that port 22 was unable to send.  Seeing that error, the EMR said that the problem has to do with our firewall.  I spoke with the billing company who tried to do a trace route to our external IP.  They were unsuccessful, but I was able to do a trace route to them.  The only caveat is that the user can do this procedure from home with no problem.

I am willing to make firewall changes if necessary, I just don't know what they would be or why it is necessary now, if no one has made any changes other than the upload method from ftp to sftp.

Please help.  I am desperate.
0
IS-IS router summarization can only be done on L1/L2 router is this correct.
There is now other place to do route summarization.
0
Hello all,

I have some Win 2012 3cx v15 phone systems and was having trouble with apple push notifications for calls to remote devices.  I've determined it to be a TLS issue.  I had used IIS Crypto to remove the less secure SSL 3.0, TLS 1.0 and 1.1, leaving just TLS 1.2 and more secure ciphers.  This breaks apple push notifications from the 3cx server/software.  I put back TLS 1.1, no luck.  Put back TLS 1.0, now push notifications work.  I find it odd that I should still need 1.0 enabled on the server.  

Is apple push still using that protocol and not 1.1 or 1.2, or might there be something else going on here.

I'm by no means familiar with protocols/ciphers, just determined what fixes the problem.
0
How to scan a network for running services?
In this brief tutorial Pawel from AdRem Software explains how you can quickly find out which services are running on your network, or what are the IP addresses of servers responsible for each service. Software used is freeware NetCrunch Tools.
0
I have a very simple exports files

/chroots   cati.vm.domain.com(rw,sync)
/chroots/talex/myhome web.vm.domain.com(rw,sync)


The first one has been there and works fine - the second one, I can't get to work... not sure if it's because I the second export is a subdir of the first?.... but when I try to mount it on the client, it just hangs and never completes.

Here is the fstab config I am using

192.168.1.29:/chroots/talex/myhome  /mnt/talexftp  nfs  _netdev,soft  0  0

Open in new window


any ideas?
0
Prepare for your VMware VCP6-DCV exam.
LVL 1
Prepare for your VMware VCP6-DCV exam.

Josh Coen and Jason Langer have prepared the latest edition of VCP study guide. Both authors have been working in the IT field for more than a decade, and both hold VMware certifications. This 163-page guide covers all 10 of the exam blueprint sections.

Hello, I have Windows 10 and Windows 7 systems  in a SBS2011 domain environment and at least once a day the windows explorer freezes and I have to reboot. After selecting reboot it hangs at reboot mode. I have to force it to shutdown and and start it again for it to work.  Most of the time windows explorer does not work and also internet access goes away too. I even can not access the C-Drive and the Network Drives. Nothing at all.  I have Symantec Endpoint and Malware Byte endpoint protection installed on these systems. Please help.

Thank you
0
Why would I be getting these errors on my logs. I am running DMVPN.
 dest_addr 4.5.6.7, SPI 0x8e584d60
000058: May 15 09:18:21: %IOSXE-3-PLATFORM: SIP0: cpp_cp: QFP:0.0 Thread:000 TS:00000309438262163039 %IPSEC-3-REPLAY_ERROR: IPSec SA receives anti-replay error, DP Handle 3, src_addr 1.2.3.4 dest_addr 4.5.6.7, SPI 0x8d670b5e
000059: May 15 09:19:53: %IOSXE-3-PLATFORM: SIP0: cpp_cp: QFP:0.0 Thread:000 TS:00000309529825315373 %IPSEC-3-REPLAY_ERROR: IPSec SA receives anti-replay error, DP Handle 3, src_addr 1.2.3.4 dest_addr 4.5.6.7, SPI 0x8d670b5e
000060: May 15 09:39:13: %IOSXE-3-PLATFORM: SIP0: cpp_cp: QFP:0.0 Thread:000 TS:00000310690125718495 %IPSEC-3-REPLAY_ERROR: IPSec SA receives anti-replay error, DP Handle 3, src_addr 1.2.3.4 dest_addr 4.5.6.7, SPI 0x8d670b5e
000061: May 15 09:50:40: %IOSXE-3-PLATFORM: SIP0: cpp_cp: QFP:0.0 Thread:000 TS:00000311376506767405 %IPSEC-3-REPLAY_ERROR: IPSec SA receives anti-replay error, DP Handle 3, src_addr 1.2.3.4 dest_addr 4.5.6.7, SPI 0x8d670b5e
000062: May 15 09:52:37: %IOSXE-3-PLATFORM: SIP0: cpp_cp: QFP:0.0 Thread:000 TS:00000311493607193615 %IPSEC-3-REPLAY_ERROR: IPSec SA receives anti-replay error, DP Handle 3, src_addr 1.2.3.4 dest_addr 4.5.6.7, SPI 0x8d670b5e
000063: May 15 09:53:38: %IOSXE-3-PLATFORM: SIP0: cpp_cp: QFP:0.0 Thread:000 TS:00000311554565979494 %IPSEC-3-REPLAY_ERROR: IPSec SA receives anti-replay error, DP Handle 3, src_addr 1.2.3.4 dest_addr 4.5.6.7, SPI 0x8d670b5e
000064: May 15 09:58:38: 

Open in new window

0
Hi All, need some EE advice!

Scenario first, then question after. Please read through - although it may appear to be, this is not a printing question, it is a DNS setting question for assigning primary DNS domains on the VPN connection/ certificate.

Scenario:
I manage a VPN connection with a .pcf. connecting to a Cisco 5510 ASA
Users in a non-connected, non-trusted network on Domain B access a RDS on Domain A to run a particular application.
This access and use of the program is required all day as part of their job. It cannot be connected and disconnected frequently.
Static IPs are used for all connections via VPN.
I did not build the VPN connections but do have a little knowledge on modifying .PCF files etc. Configuring the Cisco 5510 ASA is not my strong suit.

- Connection path:
Users in Domain B Log onto their local PC with Domain B credentials.
They then launch Cisco VPN client v. 5.0.0.9 and log onto Domain A with Domain A credentials.
Next, they use a pre-configured RDP connection to RDP to the RDS in Domain A, using the same Domain A credentials.
Once on the RDS, TerminalWorks TS Print is used to print documents fro the application launched from the RDS.  
They have had ZERO problems for 2 years.

Problem:
- The IT guy at Domain B replaced the print server and purchased all new printers.
- Now, whenever these Users attempt to print it can take upwards to 20 minutes for the print dialogue to appear.
- Attempting to …
0
What physical communications ports and technical communications protocols do IP-Enabled UPS systems use to communicate with the network?
0
I have been trying to re establish a lost scanning connection with my Ricoh Aficio 2022 with my computer workstation.   No matter, SMB just failed for no reason.    I gave up.  it was working for years then just suddenly failed

So I installed filezilla.   Still does not work but i think I just do not have the correct syntax.

Filezilla server invoked for my computer.  192.168.1.xxx
The Ricoh then set up as follows

FTP
Port 21
Server 192.168.1.xxx (my workstation)  or \\servername    (tried both)
Path:    \folder    or  \sharename\folder
user:    username
password   password

None of this works.

I am missing one syntax call.  What is it?

The FTP connections work just fine on the LAN.       This is all LAN based.  I am not making any external WAN calls (yet)

Ports 21 and 22 forwarded to my 192.168.1.xxx computer

thank you
0
Every 10 seconds, a consumer gets hit with ransomware. Enroll in June’s featured Course of the Month to learn the basics of ransomware, how it works, how to prevent it, and what to do if you’ve been infected. Premium members, Team Accounts, and Qualified Experts will enjoy this free course written by our resident security expert, Thomas Zucker-Scharff. Learn more and enroll today!

facebook-ad-1200x628.png
6

Networking Protocols

11K

Solutions

16K

Contributors

Networking software modules are interfaced with a framework implemented on the machine's operating system that implements the networking functionality of the operating system. The best known frameworks are the TCP/IP model and the OSI model. Systems typically do not use a single protocol to handle a transmission. Instead they use a set of cooperating protocols, sometimes called a protocol family or protocol suite.[9] Some of the best known protocol suites include: IPX/SPX, X.25, AX.25, AppleTalk and TCP/IP. Other protocols indirectly related to networking include the hypertext transfer protocol (HTTP) and its related technologies, Dynamic Host Configuration Protocol (DHCP), Domain Name Server (DNS) and other Internet protocols.