•
•
TableofContents
Index
CiscoRouterConfiguration,Second
Edition
ByAllanLeinwand,BrucePinskyCCIE
#1045
Publisher :CiscoPress
PubDate :December20,2000
ISBN :1-57870-241-0
Pages :360
Slots :1
Theobjectiveofthisbookistohelpyou,the
noviceCiscousers,withthebasic
administrationofyourinternetworking
devices.Usingstraightforwardcasestudies
andpracticalexamples,CiscoRouter
Configuration,2EteachesIOSfundamentals
forconfiguring,operating,andmaintaining
internetworkingdevices.CiscoRouter
Configuration,2Eprovidesanoverviewof
CiscoIOSsoftware.Itdescribesbasic
informationonCiscodevicesanddevice
interfaces(Ethernet,TokenRing,FDDI,
FrameRelay,ATM).ThebasicsofIP,IPX,and
AppleTalkareexplained,andthebookshows
howtouseCiscoIOSsoftwaretoconfigure
addresses,routes,androutingprotocols
withinthesethreeprotocols.Finally,Cisco
RouterConfiguration,2Eprovidesan
elaborateexampleofanentirenetworksetup
withcompleteCiscoIOSconfigurations.All
informationinthesecondeditionwillinclude
CiscoIOS12.0syntax.
•
•
TableofContents
Index
CiscoRouterConfiguration,Second
Edition
ByAllanLeinwand,BrucePinskyCCIE
#1045
Publisher :CiscoPress
PubDate :December20,2000
ISBN :1-57870-241-0
Pages :360
Slots :1
Copyright
AbouttheAuthors
AbouttheTechnicalReviewers
Acknowledgments
Introduction
Objectives
Audience
Organization
ABriefHistoryofCiscoSystems
BookFeaturesandElements
Chapter1.GettingStartedinInternetworking
TheOSIReferenceModel
TypesofInternetworkingDevices
AnInternetworkExample
References
Summary
Chapter2.TheBasicsofDeviceConfiguration
PreliminaryConfigurationSteps
References
Chapter3.TheBasicsofDeviceInterfaces
BasicInterfaceConfiguration
Local-AreaNetworkTechnologies
Wide-AreaNetworkandDialupNetworkTechnologies
References
Summary
Chapter4.TCP/IPBasics
TCP/IPAddressing
ConfiguringIPAddresses
IPRoutingConfiguration
ViewingDynamicRoutingProtocolInformation
ConfiguringBasicIPDialupServices
ConfiguringOtherIPOptions
References
ConfiguringIPRoutingProtocols
ConfiguringIPFilteringviaAccessLists
VerifyingIPConnectivityandTroubleshooting
Summary
Chapter5.AppleTalkBasics
AppleTalkAddressingandAddressStructure
ConfiguringAppleTalkAddresses
AppleTalkRoutingConfiguration
ConfiguringAppleTalkFilteringviaAccessLists
ConfiguringBasicAppleTalkDialupServices
Summary
ConfiguringAppleTalkRoutingProtocols
VerifyingAppleTalkConnectivityandTroubleshooting
References
Chapter6.IPXBasics
IPXAddressingandAddressStructure
ConfiguringIPXAddresses
IPXRoutingConfiguration
ConfiguringStaticRouting
ConfiguringIPXRoutingProtocols
ConfiguringIPXRoutingCommands
VerifyingIPXRoutingConfiguration
SAP
SAPFilters
ConfiguringNLSP
ConfiguringIPXFilteringviaAccessLists
VerifyingIPXConnectivityandTroubleshooting
Summary
ConfiguringIPXRIP
ConfiguringIPXEIGRP
ConfiguringBasicIPXDialupServices
ConfiguringIPXType20PacketForwarding
References
Chapter7.BasicAdministrativeandManagementIssues
BasicAccessControl
BasicAttackPrevention
BasicLogging
BasicTimeControl
References
BasicNetworkManagement
Summary
Chapter8.ComprehensiveIOSConfigurationfortheZIPNetwork
TheKuala-LumpurRouter
TheSF-1Router
TheSF-2Router
TheSF-Core-2Router
TheSeoul-1Router
TheSeoul-2Router
TheSingISDNAccessServer
Summary
TheSF-Core-1Router
TheSan-JoseRouter
TheSingaporeRouter
TheSing2511AccessServer
Index
Copyright
Copyright©2001CiscoPress
CiscoPresslogoisatrademarkofCiscoSystems,Inc.
Allrightsreserved.Nopartofthisbookmaybereproducedortransmittedinanyformor
byanymeans,electronicormechanical,includingphotocopying,recording,orbyany
informationstorageandretrievalsystem,withoutwrittenpermissionfromthepublisher,
exceptfortheinclusionofbriefquotationsinareview.
LibraryofCongressCataloging-in-PublicationNumber:00-109754
PrintedintheUnitedStatesofAmerica
FirstPrintingDecember2000
123456789004030201
TrademarkAcknowledgments
Alltermsmentionedinthisbookthatareknowntobetrademarksorservicemarkshave
beenappropriatelycapitalized.CiscoPressorCiscoSystems,Inc.,cannotattesttothe
accuracyofthisinformation.Useofaterminthisbookshouldnotberegardedasaffecting
thevalidityofanytrademarkorservicemark.
WarningandDisclaimer
ThisbookisdesignedtoprovideinformationaboutCiscorouterconfiguration.Everyeffort
hasbeenmadetomakethisbookascompleteandasaccurateaspossible,butno
warrantyorfitnessisimplied.
Theinformationisprovidedonan"asis"basis.Theauthor,CiscoPress,andCisco
Systems,Inc.,shallhaveneitherliabilitynorresponsibilitytoanypersonorentitywith
respecttoanylossordamagesarisingfromtheinformationcontainedinthisbookorfrom
theuseofthediscsorprogramsthatmayaccompanyit.
Theopinionsexpressedinthisbookbelongtotheauthorandarenotnecessarilythoseof
CiscoSystems,Inc.
FeedbackInformation
AtCiscoPress,ourgoalistocreatein-depthtechnicalbooksofthehighestqualityand
value.Eachbookiscraftedwithcareandprecision,undergoingrigorousdevelopmentthat
involvestheuniqueexpertiseofmembersfromtheprofessionaltechnicalcommunity.
Readers'feedbackisanaturalcontinuationofthisprocess.Ifyouhaveanycomments
regardinghowwecouldimprovethequalityofthisbookorotherwisealterittobettersuit
yourneeds,youcancontactusthroughe-mailatPleasemakesure
toincludethebooktitleandISBNinyourmessage.
Wegreatlyappreciateyourassistance.
Credits
Publisher
JohnWait
Editor-in-Chief
JohnKane
CiscoSystemsProgramManager
BobAnstey
ManagingEditor
PatrickKanouse
AcquisitionsEditor
TracyHughes
SeniorEditor
JenniferChisholm
CopyEditor
KristaHansing
TechnicalEditors
HenryBenjamin
KevinBurgess
Andre'Paree-Huff
DaveSumter
MichaelTruett
CoverDesigner
LouisaKlucznick
Compositor
SteveGifford
Indexer
TimWright
Proofreaders
ChrissyAndry
GayleJohnson
Dedications
AllanLeinwandwouldliketodedicatethisbooktohisfamilyandfriends,whohave
providedcontinualsupport,suggestions,encouragement,andinsightsthroughoutthe
writingofthisbook.
BrucePinskywouldliketothankallhisfriendsandfamily,whohaveprovidedtheir
supportinhelpingtomakethisbookareality.Anextraspecialthankyougoestohiswife,
Paula,andsons,EricandKyle,fortheirtirelesssupportduringthemanynightsand
weekendsdedicatedtothecompletionofthistext.
AbouttheAuthors
AllanLeinwandistheChiefTechnologyOfficerandVicePresidentofEngineeringat
TelegisNetworks,Inc.Previously,asChiefTechnologyOfficerandVicePresidentof
EngineeringforDigitalIsland,Inc.,hewasresponsibleforthetechnicaldirectionofthe
company'sglobalnetworkandcontentdistributionstrategy.BeforeDigitalIsland,hewasa
ConsultingEngineeringManageratCiscoSystems,Inc.,responsiblefortheglobalnetwork
designofcustomernetworks.AllanreceivedhisBSinComputerScienceattheUniversity
ofColoradoatBoulderin1988,andhasbeenworkingininternetworkingtechnologyand
solutionsforlargecorporationssincethattime.Heteachesgraduatecomputernetworking
coursesfortheUniversityofCalifornia,Berkeley;haspublishedmanypapersonnetwork
managementandnetworkdesign;andistheco-authoroftheAddison-Wesleytext
NetworkManagement:APracticalPerspective,SecondEdition.
BrucePinsky,CCIE#1045,istheVicePresidentofProductEngineeringandNetwork
InfrastructureatTelegisNetworks,Inc.Previously,asChiefInformationOfficer,Vice
PresidentofSolutionsEngineering,andChiefNetworkStrategistofDigitalIsland,Inc.,he
wasresponsibleforthedirectionanddeploymentofcorporatetechnologyinfrastructure
andadvancedtechnologyresearch.BeforeDigitalIsland,BrucewasaSeniorInternetwork
SupportTechnologistatCiscoSystems,Inc.,andwasresponsiblefortheescalationof
complexcustomertechnicalissues.HereceivedhisBSinComputerScienceatCalifornia
StateUniversity,Hayward,in1988,andhehasbeenworkingininternetworking
technologyandsystemsintegrationforlargecorporationsandconsultingfirmsbeforeand
sincethattime.OneoftheoriginalCiscoCertifiedInternetworkEngineers,Brucehas
expertiseinsuchtopicsasnetworktroubleshootingandprotocolanalysis,networkdesign
andconfiguration,andworkstationandserver-basedoperatingsystems.Heroutinely
teachescoursesonnetworkconfiguration,design,andtroubleshooting,andisco-inventor
ofpatentedroutingtechnology.
AbouttheTechnicalReviewers
HenryBenjamin,CCIE,CCNA,CCDA,B.Eng.,isaCiscoCertifiedInternetworkExpert
andanITnetworkengineerforCiscoSystems,Inc.Hehasmorethan10yearsof
experienceinCisconetworks,includingplanning,designing,andimplementinglargeIP
networksrunningIGRP,EIGRP,andOSPF.Inthepastyear,Henryhasfocusedon
architecturaldesignandimplementationinCiscointernalnetworksacrossAustraliaand
theAsia/Pacificregion.HeistheauthorofabookdedicatedtopassingtheCCIEwritten
examandhashelpedwithmanyothertitlesrelatedtoCiscoIOS.HenryholdsaBachelor
ofEngineeringDegreefromSydneyUniversity.Thisreviewisdedicatedtohissickmum.
KevinBurgesshasbeendoingnetworkdesign,analysis,andmaintenanceforthepast10
years.AsaNetworkEngineerwithEDSforthepastfiveyears,hehasworkedonvarious
projectsacrossCanada.KevinholdscertificationsfromNovellandCiscoandiscurrently
workingonhisCCIE.
AndréParee-Huff,CCNP,MCSE+I,ASE,A+,Network+,I-Network+,hasbeenworkingin
thecomputerfieldformorethan8years.HeiscurrentlyworkingforCompaqComputer
CorporationasaNetworkSupportEngineer,LevelIII,fortheNorthAmericaCustomer
SupportCenterinColoradoSprings,Colorado.Andréhandlestroubleshootingofnetwork
hardware,specializinginLayers2and3oftheOSImodel.Andréhasco-authoredfour
network-relatedtechnicalmanualsandhasbeenatechnicaleditoronmanyothers.Heis
currentlyworkingtowardhisCCIE.
DaveSumter,CCIE#4942,CCDP,hasbeeninthenetworkingindustryforclosetofive
yearsandhasbeenconcentratingsolelyonCiscosolutionsforthelastthreeyearsHe
worksforCiscoSystems,Inc.,inSouthAfrica.Dave'scurrentdutiesinvolvethedesignof
large-scalecampusandWANsolutionsforcorporateandgovernmentclientsinSouth
Africa.OtherdutiesinvolvetheongoingtrainingofCiscopartnersandparticipationinthe
examinationofCCIEcandidatesattheCCIEroutingandswitchinglabinSouthAfrica.
MichaelTruett,CCNP,isanetworkengineerforalargeorganizationspecializinginVoIP.
HeiscurrentlyworkingonhisCCDPandCCIE.Hisstrengthliesintheareaofnetwork
design,implementation,andtroubleshootingforlargenetworksonmanydifferentmedia
types,includingFrameRelayandsatellite.Inhissparetime,Michaelalsoteachesseveral
classesonCiscoroutersandswitches.
Acknowledgments
WewouldliketosaythankyoutothediligentandpersistenteffortsofTracyHughes,the
entireCiscoPressstaff,andourtechnicalreviewersinhelpingtocompletethisbook.
Introduction
CiscoSystems,Inc.,istheleadingglobalsupplierofinternetworkinghardwareand
software,withmorethan100,000devicesdeployedthroughoutpublicandprivate
internetworkseachyear.Atthetimeofthiswriting,thesedevicescarrymorethan80
percentofthepublicInternet'straffic.TheaimofthisbookistohelpnoviceCiscousers
withthebasicadministrationoftheirinternetworkingdevices.
EachofthesedeviceshasCiscoproprietaryoperatingsystemsoftwarecalledtheCisco
InternetworkOperatingSystem(IOS).TheCiscoIOSsoftwareisacomplicatedreal-time
operatingsystemconsistingofmultiplesubsystemsandtensofthousandsofpossible
configurationparameters.Usingstraightforward,chronologicaldescriptionsandpractical
examples,thisbookfocusesontheCiscoIOSsoftwarewithrespecttoconfiguring,
operating,andmaintaininginternetworkingdevices.Inadditiontocoveringgeneral
aspectsoftheIOS,weconsideritinthecontextofthethreemostpopularnetworking
protocolsusedtoday:theTransmissionControlProtocol/InternetProtocol(TCP/IP),Novell
Inc.'sInternetworkPacketExchange(IPX),andAppleComputerInc.'sAppleTalk.
Objectives
ThecentralobjectiveofthisbookistomaketheCiscoIOSsoftwareeasytoconfigure,
operate,andmaintainfornoviceusers.TheIOSdocumentationthatcomeswitheach
CiscoproductcoversmultipleCD-ROMsandoffersacomprehensivelookateach
command,withalltherelevantoptions.Thedocumentationoftenintimidatesandconfuses
peoplewhentheyaretryingtoconfigureaCiscoproductforabasicinternetwork.
Thisbookisintendedtoserveasasupportive,morefocusedpartnertotheavailable
documentationbycoveringthecommonlyusedIOScommandsandthemostpopular
options.Throughtheuseofcopiousexamples,illustrations,andCiscoIOSsoftware
configurationoutput,weexplaintheuseoftheIOSforavarietyofusersand
internetworkingconfigurations.Anexampleinternetworkforafictitiouscompany,Zoom
IntegratedProducts(ZIP),isacontextthroughoutthebooktohelpillustrateconcepts.As
weintroduceconfigurationcommandsandstrategies,wealsoimplementthemforthe
specificdevicesandtopologyoftheZIPnetwork.
Audience
ThisbookisintendedforanybeginninguseroftheCiscoIOSsoftware.Advancedusers
willalsofindthisreferencevaluablebecauseofthemanyexamplesandtipsforusing
commonIOSfeatures.
Weassumethatthereaderhassomegeneralbackgroundinthevarioustypesof
internetworkingequipment,suchashubs,bridges,switches,androuters.Coverageofthe
intricatedetailsofthesetypesofequipmentisoutsidethescopeofthisbook,butwe
reviewthembrieflywithrespecttotheCiscoIOSsoftware.Likewise,comprehensive
introductionstoTCP/IP,AppleTalk,andIPXarelefttotheseveralfinetextsalready
available,someofwhicharereferencedattheendofeachchapter.Insteadofduplicating
existingreferencesonspecificinternetworkingequipmentandprotocols,thisbook
concentratesontheuseofthesetechnologiesbyproductsthatruntheCiscoIOSsoftware.
Organization
Chapter1,"GettingStartedinInternetworking,"reviewstheOSIreferencemodeland
givesanoverviewofthegeneraltypesofinternetworkingdevicesthatareatissueinthis
book:bridges,switches,androuters.Thechapterconcludesbydescribingacomplete
exampleinternetworkforthefictionalZoomIntegratedProducts(ZIP)company.
Chapter2,"TheBasicsofDeviceConfiguration,"describesthebasicinformationthatyou
needtoknowaboutaCiscodevice,startingwithitsconfigurationoutofthebox.Topics
coveredincludehowtoaccesstheconsoleport,basicterminalconfiguration,CiscoIOS
softwaresetupmode,context-sensitivehelp,privilegedmode,andtheIOSconfiguration
commandstructure.Thischapteralsoexplainssomeofthephysicalcharacteristicsofa
Ciscodevice,suchasaccessingrandomaccessmemory(RAM),savingconfiguration
informationtononvolatileRAM(NVRAM),andtransferringCiscoIOSsoftwareimagesto
Flashmemory.
Chapter3,"TheBasicsofDeviceInterfaces,"explainswhatyouneedtoknowaboutthe
variousnetworkinterfacetypesfoundonaCiscodevice.Thechapterintroduceseachof
thefollowinginterfacetypesandgivesexamplesofhowtoconfiguretheCiscoIOS
softwareforeach:Ethernet,FastEthernet,GigabitEthernet,TokenRing,FiberDistributed
DataInterface(FDDI),High-LevelDataLinkControl(HDLC),Point-to-PointProtocol(PPP),
X.25,FrameRelay,AsynchronousTransferMode(ATM),DigitalSubscriberLoop(DSL),and
IntegratedServicesDigitalNetwork(ISDN).Thechapterincludesexplanationsofhowto
useCiscoIOSsoftwarecommandstoexamineinterfacestatusandhealth.
Chapter4,"TCP/IPBasics,"explainsthebasicsoftheInternetProtocol(IP):subnetting
androuting.ThechapteralsoshowsyouhowtousetheCiscoIOSsoftwaretoconfigureIP
addresses,IProutes,IProutingprotocols(RIP,IGRP,OSPF,EIGRP,andBGP4),IPnetwork
security,anddialupIP.OtherIPnuancesintheCiscoIOSsoftware,suchasDomainName
Service(DNS)configuration,IPbroadcastforwarding,DHCPservices,andredundancy,are
alsoexplained.
Chapter5,"AppleTalkBasics,"coversavarietyoftopics,startingwithanoverviewofthe
AppleTalkprotocolsuite.ThechapterthencoverstheIOSconfigurationofAppleTalkcableranges,zones,routingprotocols(RTMPandEIGRP),AppleTalknetworksecurity,anddialup
AppleTalk.
Chapter6,"IPXBasics,"firstoverviewsthecomponentsoftheNovellInternetworkPacket
Exchange(IPX)protocol:networknumbers,theServiceAdvertisingProtocol(SAP),and
routing.NextiscoverageofusingtheIOStoconfigureIPXaddresses,multipleLAN
encapsulationmethods,routes,routingprotocols(RIP,NLSP,andEIGRP),IPXnetwork
security,anddialupIPX.
Chapter7,"BasicAdministrativeandManagementIssues,"explainsotherbasic
configurationitemsintheIOSthatyouneedtounderstand.Theseitemsincludeaccess
control,usingSecureShell(SSH)toaccessanIOSdevice,loggingmessages,network
managementprotocols,andclock/calendarcontrol.Thechaptershowshowtoconfigure
theSimpleNetworkManagementProtocol,theTerminalAccessControllerAccessControl
System(TACACSandTACACS+),theRemoteAuthenticationDial-InUserService
(RADIUS),andtheNetworkTimeProtocol(NTP).
Chapter8,"ComprehensiveIOSConfigurationfortheZIPNetwork,"givescompleteIOS
configurationsfortheentireexampleZIPnetwork.Thischaptersummarizesthe
configurationexamplesseenthroughoutthetext.
BookFeaturesandElements
Thisbookutilizesanumberofelementsandconventionstohelppresentinformationas
clearlyaspossibleandtoreiteratekeyconcepts.Oneconventionalreadynotedisthe
practiceofusingasingleexamplenetworkthroughoutthebookasacontextfor
configurationsamples.YoucanfindanillustrationoftheZIPnetworkontheinsidefront
coverforconvenientreference.
Naturally,configurationcodeformsacentralelementofthisbook.Codefragmentsare
presentedinadistinctivetypeface(monotype)foreasyidentification.Inputthatmustbe
typedbytheuserisdistinguishedbyboldincodefragments.Individualcodetermsthat
appearinparagraphsarepresentedinbold.
Otherelementsusedinthistextareasfollows:
NotesSidebarcommentsthatarerelatedtothediscussionathandbutthatcanbe
skippedwithoutlossofunderstandingorcontinuity.
TipsSidebarcommentsthatdescribeanefficiency,shortcut,oroptimalwayofusing
thetechnology.
FurtherReferenceSidebarpassagesthatidentifysourcesoffurtherinformationon
texttopics.
SummarytablesofcommandsReferenceandreiterationofthemostimportant
newcommandsandsyntaxintroduced;theseappearattheendsofrelevant
chapters.
ABriefHistoryofCiscoSystems
CiscoSystemsoriginatedwithLenandSandyBosack,ahusbandandwifeworkingin
differentdepartmentsatStanfordUniversity.Theyneededtoenabletheircomputer
systemstocommunicatewithoneanother.Indevelopingasolutionforthisproblem,they
builtadevicecalledagatewayserver.Thegatewayserverhelpedthemachinesinthetwo
departmentsatStanfordUniversitycommunicatethroughtheuseoftheInternetProtocol
(IP).Thatwasinthemid-1980s.
Notlongafterthisachievement,LenandSandydecidedtotakeachanceandattemptto
produceacommercialgatewayserverproduct.Thefirstdevelopmentandproduction
facilityforCiscowastheBosacks'livingroom.In1984,ciscoSystems,Inc.,wasfounded,
andaneweraininternetworkingwasformed.
Notethelowercasecinthecompany'soriginalname;therearemanyrumorsand
explanationregardingit.Ithasbeeninterpretedasanattempttoconfuseeditorswhen
theyarebeginningasentencewiththecompanyname;amistakemadebylawyers
draftingthecompanyname;arippedpieceofpaperthatoriginallysaidSanFrancisco
Systems,Inc.;andjustanameintendedtobeunique.Wedonotsharethetruthhere
becauseweprefertokeepthemysteryalivechoosetheanswerthatyouprefer.In1992,
thecompanynamewaschangedofficiallytoCiscoSystems,Inc.ThemovetothecapitalC
wasmetwithsomehesitancybytheciscofaithful,buttodaythenameCiscoSystems,
Inc.,isusedbymost,exceptperhapsthedie-hardengineersfromthedaysofcisco
Systems.
ThefirstgatewayproductfromCiscowastheAdvancedGatewayServer(AGS),followed
soonbytheMid-RangeGatewayServer(MGS),theCompactGatewayServer(CGS),the
IntegratedGatewayServer(IGS),andtheAdvancedGatewayServerPlus(AGS+).These
productsarenowknownastheoldalphabetsoupproductsfromthecompany.Thenext
generationofproductsbegantoemergein1993withtheCisco4000seriesrouters,which
wassoonfollowedbytheCisco7000,2000,and3000routerseries.ThefamilyofCisco
productscontinuestoevolvetoday,followingthisconventionofusingproductnumbers
ratherthannames,withproductssuchastheCisco12000routersandCatalyst6500
switches.
Inthemid-1990s,Ciscobegantodiversifyitsproductlinefromrouterstoother
internetworkingproducts,suchasLANswitches,ATMswitches,WANnetworkingproducts,
IBMconnectivity,andmore.
WithallthediversificationofCiscoproducts,theinherentcomplexityoftheCiscoIOS
software,andthewidespreadgrowthofinternetworkimplementation,networkdesigners
andmanagerscanfeeloverwhelmedbytheamountofinformationthattheyneedtosift
throughtoevenbeginconfiguringanetworkwithCiscodevices.Atitscore,thisbookhas
theobjectiveofdistillingtheessentialsneededtoconfiguretheCiscoIOSsoftwarefrom
thevastamountofavailableinformationanddocumentation.Ourgoalinwritingthisbook
wastomaketheimpressiveproductsofCisco,whichfromtheirbeginninghavebeen
solvinginternetworkingproblems,asaccessibletonovicesastheyaretotheveteranusers
oftheIOS.
Chapter1.GettingStartedinInternetworking
TheOSIReferenceModelReviewofthesevenlayersoftasksthatmake
communicationssystemsoperate.
TypesofInternetworkingDevicesThemaindevicesonaninternetwork:bridges,
switches,routers,andaccessservers.
AnInternetworkExampleAspecificinternetworktopologythatisusedasanexample
throughoutthebook.
Thischapterhelpsyoustartlearningaboutinternetworking.Understandingthiscomplex
topicisthefirststeptowardunderstandingtheCiscoInternetworkOperatingSystem
(IOS).TheIOSprovidestheintelligencethatCiscoproductsrequiretoperformtheir
variousinternetworkingtasks.TheIOSisanoperatingsystemwithaproprietaryuser
interface,commandset,configurationsyntax,andsoon.TheIOSistoCiscodevicesas
Windows2000istoIBM-compatiblepersonalcomputers.TheIOSrunsonalltheCisco
productsdiscussedinthistext.
Weencourageyoutohaveafirmgraspoftheinternetworkingprinciplessurveyedinthis
chapterbeforeyouattempttounderstandthecomplexitiesoftheCisco
IOS.Internetworkingisatermusedtodescribethecollectionofprotocolsanddevicesthat
interoperateondatanetworks.Thischaptergivesyouthebasicunderstandingofthe
subject;itisnotmeanttogiveyoucomprehensivecoverageofthesubject(whichcould
takemultiplebookstocovercompletely).Ifyouneedamoreextensiveintroductionto
internetworking,afewgoodtextsarecitedinthe"References"sectionattheendofthis
chapter.
Whenyoufinishthischapter,youshouldbecomfortablewiththeOSInetworkingmodel
andhaveabasicunderstandingofhowbridges,switches,routers,andaccessservers
work.Chapter2,"TheBasicsofDeviceConfiguration,"introducesyoutothebasicsof
configuringaCiscodevice.
TheOSIReferenceModel
TheOpenSystemInterconnection(OSI)referencemodelisaprincipleofinternetworking
thatyoumustunderstandtoappreciatethewayCiscodevicesoperate.TheOSIreference
modelisaseven-layerarchitecturalmodeldevelopedbytheInternationalOrganizationfor
Standardization(ISO)andtheInternationalTelecommunicationsUnionTelecommunications(ITU-T).Itisuseduniversallytohelpindividualsunderstandnetwork
functionality.TheOSIreferencemodeladdsstructuretothemanycomplexitiesinvolvedin
thedevelopmentofcommunicationssoftware.Thedevelopmentofcommunications
softwareinvolvesmanytasks,includingdealingwithmultipletypesofapplications,
transmissionstrategies,andphysicalnetworkproperties.Withoutstructure,
communicationssoftwaremightbedifficulttowrite,change,andsupport.
Note
ISOisaninternationalorganizationfoundedtopromotecooperationintechnological
developments,particularlyinthefieldofcommunications.ITU-T,ontheotherhand,isa
globalorganizationthatdraftsstandardsforallareasofinternationalanaloganddigital
communications.ITU-Tdealswithtelecommunicationsstandards.
TheOSIreferencemodelisdividedintosevendistinctlayers.Eachlayerperformsa
specific,distincttaskthathelpscommunicationssystemsoperate.Thelayeroperates
accordingtoasetofrules,whichiscalledaprotocol.Inadditiontofollowingtherulesof
theprotocol,eachlayerprovidesasetofservicestotheotherlayersinthemodel.The
sevenlayersoftheOSIreferencemodelaretheapplication,presentation,session,
transport,network,datalink,andphysicallayers,asshowninFigure1-1.Inthefollowing
sections,webrieflyrevieweachlayer,startingwiththeapplicationlayer.
Figure1-1.TheOSIReferenceModelContainsSevenLayers
TheApplicationLayer
Theapplicationlayerprovidestheinterfacetothecommunicationssystem,whichtheuser
sees.Manycommonapplicationsareusedtodayinaninternetworkenvironment,suchas
webbrowsers,FileTransferProtocol(FTP)clients,andelectronicmail.Anexampleof
applicationlayercommunicationisawebbrowserdownloadingadocumentfromaweb
server.Thewebbrowserandserverarepeerapplicationsontheapplicationlayerthat
communicatedirectlywitheachotherfortheretrievalofthedocument.Theyareunaware
ofthesixlowerlayersoftheOSIreferencemodel,whichareworkingtoproducethe
necessarycommunications.
ThePresentationLayer
Thepresentationlayerdealswiththesyntaxofdataasitisbeingtransferredbetweentwo
communicatingapplications.Thepresentationlayerprovidesamechanismtoconveythe
desiredpresentationofdatabetweenapplications.Manypeopleinferthatthelookandfeel
oftheenvironmentofacomputerdesktop,suchasthewayalltheapplicationslookand
interactuniformlyonacomputerbyAppleComputer,Inc.,isanexampleofapresentation
layer.Infact,thisisnotapresentationlayer,butaseriesofapplicationsusingacommon
programmer'sinterface.OnecommonpresentationlayerinusetodayisAbstractSyntax
NotationOne(ASN.1),whichisusedbyprotocolssuchastheSimpleNetwork
ManagementProtocol(SNMP)torepresentthestructureofobjectsinnetwork
managementdatabases.
TheSessionLayer
Thesessionlayerallowstwoapplicationstosynchronizetheircommunicationsand
exchangedata.Thislayerbreaksthecommunicationbetweentwosystemsintodialogue
unitsandprovidesmajorandminorsynchronizationpointsduringthatcommunication.For
example,alargedistributeddatabasetransactionbetweenmultiplesystemsmightuse
sessionlayerprotocolstoensurethatthetransactionisprogressingatthesamerateon
eachsystem.
TheTransportLayer
Thetransportlayer,Layer4,isresponsibleforthetransferofdatabetweentwosession
layerentities.Multipleclassesoftransportlayerprotocolsexist,fromthosethatprovide
basictransfermechanisms(suchasunreliableservices)tothosethatensurethatthe
sequenceofdataarrivingatthedestinationisintheproperorder,thatmultiplexmultiple
streamsofdata,thatprovideaflowcontrolmechanism,andthatensurereliability.
Asyouwillseeinthenextsection,somenetworklayerprotocols,calledconnectionless
protocols,donotguaranteethatthedataarrivesatthedestinationintheorderinwhichit
wassentbythesource.Sometransportlayershandlethisbysequencingthedataproperly
beforehandingittothesessionlayer.Multiplexingofdatameansthatthetransportlayer
cansimultaneouslyhandlemultiplestreamsofdata(whichcouldbefromdifferent
applications)betweentwosystems.Flowcontrolisamechanismthatthetransportlayer
canusetoregulatetheamountofdatasentfromthesourcetothedestination.Transport
layerprotocolsoftenaddreliabilitytoasessionbyhavingthedestinationsystemsend
acknowledgmentsbacktothesourcesystemasitreceivesdata.
Inthistext,wediscussthethreecommonlyusedtransportprotocols:theTransmission
ControlProtocol(TCP)thatisusedontheInternet,Novell'sStreamsPacketExchange
(SPX),andApple'sAppleTalkTransportProtocol(ATP).
TheNetworkLayer
Thenetworklayer,whichroutesdatafromonesystemtoanother,providesaddressingfor
useontheinternetwork.TheInternetProtocol(IP)definestheglobaladdressingforthe
Internet;NovelldefinesproprietaryaddressingfortheInternetworkPacketExchange
(IPX),itsclient/serverarchitecture;andApple'sAppleTalkusestheDatagramDelivery
Protocol(DDP)andproprietaryaddressingforcommunicatingbetweenitsmachinesonthe
networklayer.Inlaterchapters,weexplorethespecificsofeachofthesetypesofnetwork
layeraddresses.
Networklayerprotocolsroutedatafromthesourcetothedestinationandfallintooneof
twoclasses,connection-orientedorconnectionless.Connection-orientednetworklayers
routedatainamannersimilartousingatelephone.Theybegincommunicatingbyplacing
acallorestablishingaroutefromthesourcetothedestination.Theysenddatadownthe
givenroutesequentiallyandthenendthecallorclosethecommunication.Connectionless
networkprotocols,whichsenddatathathascompleteaddressinginformationineach
networklayer(OSI)packet,operatelikethepostalsystem.Eachletter,orpacket,hasa
sourceandadestinationaddress.Eachintermediatepostoffice,ornetworkdevice,reads
thisaddressingandmakesaseparatedecisiononhowtoroutethedata.Theletter,or
data,continuesfromoneintermediatedevicetoanotheruntilitreachesthedestination.
Connectionlessnetworkprotocolsdonotguaranteethatpacketsarriveatthedestination
inthesameorderinwhichtheyweresent.Transportprotocolsareresponsibleforthe
sequencingofthedataintotheproperorderforconnectionlessnetworkprotocols.
TheDataLinkLayer
Layer2,thedatalinklayer,providestheconnectionfromthephysicalnetworktothe
networklayer,therebyenablingthereliableflowofdataacrossthenetwork.Ethernet,Fast
Ethernet,TokenRing,FrameRelay,andAsynchronousTransferMode(ATM)areallLayer2
protocolsthatarecommonlyusedtoday.Asyouwillseethroughoutthistext,datalink
layeraddressingisdifferentfromnetworklayeraddressing.Datalinklayeraddressesare
uniquetoeachdatalinklogicalsegment,whilenetworklayeraddressingisused
throughouttheinternetwork.
ThePhysicalLayer
ThefirstlayeroftheOSIreferencemodelisthephysicallayer.Thephysicallayeris
concernedwiththephysical,electrical,andmechanicalinterfacesbetweentwosystems.
Thephysicallayerdefinesthepropertiesofthenetworkmedium,suchasfiber,twistedpaircopper,coaxialcopper,satellite,andsoon.Standardnetworkinterfacetypesfoundon
thephysicallayerincludeV.35,RS-232C,RJ-11,RJ-45,AUI,andBNCconnectors.
Note
ManypeopleaddaneighthlayertothetopoftheOSIreferencemodel,thepoliticallayer.
Althoughusedinjest,thetermpoliticallayerisoftenaccuratebecausealllowerlayersof
theOSIreferencemodelareencapsulatedwithinthepoliticsinvolvedintheorganizations
thatdesignadatanetwork.
TheDataExchangeProcess
Thesesevenlayersallworktogethertoprovideacommunicationssystem.The
communicationoccurswhenaprotocolononesystem,whichislocatedatagivenlayerof
themodel,communicatesdirectlywithitscorrespondinglayeronanothersystem.The
applicationlayerofasourcesystemlogicallycommunicateswiththeapplicationlayerof
thedestinationsystem.Thepresentationlayerofthesourcesystempassesdatatothe
presentationlayerofthedestinationsystem.Thiscommunicationoccursateachofthe
sevenlayersofthemodel.
Thislogicalcommunicationbetweencorrespondinglayersoftheprotocolstackdoesnot
involvemanydifferentphysicalconnectionsbetweenthetwocommunicationssystems.
Theinformationeachprotocolwantstosendisencapsulatedinthelayerofprotocol
informationbeneathit.Theencapsulationprocessproducesasetofdatacalledapacket.
Note
Dataencapsulationistheprocessinwhichtheinformationinoneprotocoliswrapped,or
contained,inthedatasectionofanotherprotocol.IntheOSIreferencemodel,eachlayer
encapsulatesthelayerimmediatelyaboveitasthedataflowsdowntheprotocolstack.
Startingatthesource,asshowninFigure1-2,theapplication-specificdatais
encapsulatedinthepresentationlayerinformation.Tothepresentationlayer,the
applicationdataisgenericdatabeingpresented.Thepresentationlayerhandsitsdatato
thesessionlayer,whichattemptstokeepthesessionsynchronized.Thesessionlayer
passesdatatothetransportlayer,whichtransportsthedatafromthesourcesystemto
thedestinationsystem.Thenetworklayeraddsroutingandaddressinginformationtothe
packetandpassesittothedatalinklayer.Thedatalinklayerprovidesframingforthe
packetandtheconnectiontothephysicallayer.
Figure1-2.DataFlowfromaSourceApplicationtoaDestination
ApplicationThroughtheSevenLayersoftheOSIReferenceModel
AtLayer1,asshowninthefigure,thephysicallayersendsthedataasbitsacrossa
medium,suchascopperorfiber.Thepacketthentraversesthedestinationnetworkfrom
Layer1toLayer7.Eachdevicealongthewayreadsonlytheinformationnecessarytoget
thedatafromthesourcetothedestination.Eachprotocolde-encapsulatesthepacketdata
andreadstheinformationsentbythecorrespondinglayeronthesourcesystem.
Asanexample,considerwhatoccurswhenyouopenaWebpageusingaWebbrowser.
GivenaURL,suchaswww.telegis.net,yourbrowseraskstheTCPtoopenareliable
connectiontotheWebserverthatislocatedathttp://www.telegis.net.(Manyapplications
thatuseTCPskipthepresentationandsessionlayers,aswedointhisexample.)TCPthen
requeststhenetworklayer(IP)torouteapacketfromthesourceIPaddresstothe
destinationIPaddress.ThedatalinklayertakesthisIPpacketandencapsulatesitagain
fortheparticulartypeofdatalinkleavingthesourcesystem,suchasEthernet.The
physicallayercarriesthesignalfromthesourcesystemtothenextsystemenroutetothe
destination,suchasarouter.
Therouterde-encapsulatesthedatalinklayer;readsthenetworklayerinformation;reencapsulatesthepacket,ifnecessary,toplaceitonthenextdatalinkenroutetothe
destination;androutesthepacketappropriately.
ThisprocesscontinuesuntilthepacketreachesthedestinationIPaddress.Atthe
destinationIPaddress,thedatalinklayerde-encapsulatesthepacket,seesthatthe
destinationIPaddressisthelocalsystem,andpassesthedataintheIPpackettothe
transportlayer.Thetransportlayerensuresthereliabilityoftheconnectionandpassesthe
datafromyourWebbrowsertothewww.telegis.netWebserver.TheWebserverthen
respondstoyourWebbrowserrequestandsendsaWebpageofdatabacktoyour
browser(usingthesameprocess,butwiththesourceanddestinationIPaddresses
reversed).
Ciscodevicescoveredinthisbookoperateatthephysical,datalink,andnetworklayersof
theOSIreferencemodelandreadinformationintheselayerstocarrydatafromone
locationtoanother.Throughoutthisbook,wereferencetheselayersandexplainhowthe
CiscoIOSusestheprotocolinformationateachlayer.SomeCiscodevices,suchasbridges
andswitches,operateatthedatalinklayer.OtherCiscodevices,suchasrouters,operate
atthenetworklayer,asshowninFigure1-3.Wedescribethevarioustypesof
internetworkingdevicesinthenextsection.
Figure1-3.AnOSIReferenceModelDepictionofDataThatTravels
fromaSourceHost,ThroughaCiscoSwitch,ThroughaCiscoRouter,
andThentoaDestinationHost