ccna dis3 - chapter 2 - exploring the enterprise network infrastructure_ppt [compatibility mode]

8/3/2019 CCNA Dis3 - Chapter 2 - Exploring the Enterprise Network Infrastructure_ppt [Compatibility Mode]

1/43

Chapter 2 Exploring the EnterpriseNetwork Infrastructure

CCNA Discovery 4.0


2/43

Intruduction

Hc vin cng ngh thng tin Bach Khoa - Website: www.bkacad.com
http://www.bkacad.com/http://www.bkacad.com/


3/43

Intruduction



4/43

Intruduction



5/43

Intruduction



6/43


Objectives

Interpret network documentation.

Describe the equipment in the enterpriseNetwork Operations Center.

Describe the Point-of-Presence for Servicedelivery.

Indentify security considerations and

equipment at the enterprise edge. Identify router and switch hardwarecharacteristics and use router CLI

configuration and verification commands


7/43


Describing thecurrent network


8/43


Enterprise Network Documentation

A physical topology map uses icons to document thelocation of hosts, networking devices, and media.


9/43



A logical topology map groups hosts by network usage,regardless of physical location.


10/43



As the network grows or changes however, thedocumentation is not always updated.

Blueprints can be marked up, or redlined, to show thechanges.

The modified diagram is known as an as-built

An as-built diagram

documents how a

network was actually

constructed which

may differ from the

original plans.


11/43




12/43




13/43


Network Operations Center (NOC)

Most enterprise networks have a Network OperationsCenter (NOC) that allows for central management andmonitoring of all network resources.

NOC is sometimes referred to as a Data Center


14/43



NOCs also provide centralized resources such as serversand data storage.

Servers in the NOC are usually clustered together,creating a server farm.

The Server Farm is a single resource but, in fact,provides two functions:Backup.

Load Balancing.

The servers in the farm may berack-mounted and interconnected by

very high-speed switches

(Gigabit Ethernet or higher).


15/43



Data Storage or Network Attached Storage (NAS) Groups large numbers of disk drives that are directly

attached to the network and can be used by any server.

A NAS device is typically attached to an Ethernet network

and is assigned its own IP address. A more sophisticated version of NAS is Storage Area

Network (SAN).

A SAN is a high-speed network thatinterconnects different types of data

storage devices over a LAN or WAN.


16/43



Equipment in the enterprise NOC is usually mounted inracks.

In large NOCs, racks are usually floor-to-ceiling mountedand may be attached to each other.

The most common rack width is 19inches (48.26 cm). The vertical space that the

equipment

occupies is measured inRack Units (RUs).

A Unit equals 1.75 inches (4.4cm). For example, a 2U chassis

is 3.5 inches (8.9 cm) high.


17/43



In an enterprise NOC, thousands of cables may enterand exit the facility.

Structured cabling creates an organized cabling systemthat is easily understood by installers, networkadministrators, and any other technicians who work withcables.


18/43


Telecommunication Room Design andConsiderations

In practice, however, most users connect to a switch in atelecommunications room, which is some distance fromthe NOC.

The telecommunications room is also referred to as awiring closet or intermediate distribution facility (IDF).


19/43



Many IDFs connect to a Main Distribution Facility (MDF)using an extended star design.

The MDF is usually located in the NOC or centrallylocated within the building.


20/43




21/43




22/43


Supporting theEnterprise Edge


23/43


Service Provider at the Point-of-Presence

At the outer edge of the enterprise network is the Point-of-Presence, or POP, which provides an entry point forservices to the enterprise network.

Externally-provided services coming in through the POPinclude Internet access, wide area connections, andtelephone services (PSTN).


24/43


Security Considerations at the EnterpriseEdge

The edge is the point of entry for outside attacks and is apoint of vulnerability

For example, Denial of Service (DoS) attacks. An organization can deploy a firewall , and security

appliances with intrusion detection system (IDS) andintrusion prevention system (IPS) at the edge to protectthe network.


25/43


Connecting the Enterprise Network toExternal Services


26/43


Connecting the Enterprise Network toExternal Services


27/43


Revieving Routingand Switching


28/43


Router Hardware

One important device in the Distribution Layer of anenterprise network is a router.

All hosts on a local network specify the IP address of thelocal router interface in their IP configuration.

This router interface is the default gateway.


29/43


30/43


Router Hardware

Two methods exist for connecting a PC to a networkdevice for configuration and monitoring tasks: out-of-band and in-band management.

Out-of-band management is used

for initial configuration or when anetwork connection is unavailable.

Configuration using out-of-band

management requires:

Direct connection to console orAUX port

Terminal emulation client


31/43


Router Hardware

In-band management is used to monitor and makeconfiguration changes to a network device over anetwork connection.

Configuration using in-band management requires:

At least one network interfaceon the device to be connected

and operational

Telnet, SSH, or HTTP to access

a Cisco device


32/43


33/43


Basic Router CLI Show commands


34/43


Basic Router CLI Show commands


35/43


Basic Router Configuration Using CLI

Configuration Management:enable

configure terminal

copy running-config startup-config

erase startup-configreload

Global Settings:hostname

banner motdenable password

enable secret


36/43

Hc vin cng ngh thng tin Bach Khoa- Website: www.bkacad.com

Basic Router Configuration Using CLI

Line Settings: line con

line aux

line vty

login and password Interface Settings:

interface type/number

description

ip addressno shutdown

clock rate

encapsulation

Routing Settings:

qrouter

qnetwork

qip route


37/43


Switch Hardware


38/43


Switch Hardware

Port density on a switch is an important factor.


39/43


Basic Switch CLI Commands


40/43




41/43



Configuration Management:enable

configure terminal

copy running-config

startup-configerase startup-config

delete vlan.dat

Reload

Global Settings:hostname

banner motd

enable password

enable secret

Line Settings:

Line con

line vty

login and password

Interface Settings:

ip addressInterface

type/number (vlan1)

ip default gateway

speed / duplex

switchport port-security


42/43


43/43


ccna dis3 - chapter 2 - exploring the enterprise network infrastructure_ppt [compatibility mode]

Documents