DHCP Configuration and Messages
40 Questions
0 Views

Choose a study mode

Play Quiz
Study Flashcards
Spaced Repetition
Chat to lesson

Podcast

Play an AI-generated podcast conversation about this lesson

Questions and Answers

What is the primary function of the DHCP protocol?

  • To facilitate dynamic IP addressing management (correct)
  • To provide default gateway information only
  • To assign static IP addresses to clients
  • To manage MAC addresses for clients
  • Which UDP port is used by DHCP clients?

  • UDP port 68 (correct)
  • UDP port 67
  • UDP port 69
  • UDP port 53
  • What is the purpose of the 'show ip dhcp binding' command?

  • To configure DHCP servers
  • To assign IP addresses to clients
  • To display a list of IPv4 addresses and their corresponding MAC addresses (correct)
  • To renew IP address leases
  • What is the destination MAC address used by a DHCP client when sending a DHCP Discover message?

    <p>FF-FF-FF-FF-FF-FF</p> Signup and view all the answers

    What is the purpose of the 'ip dhcp excluded-address' command?

    <p>To exclude specific IP addresses from being leased to DHCP clients</p> Signup and view all the answers

    What is the default behavior of the 'ip helper-address' command?

    <p>It forwards eight specific UDP services</p> Signup and view all the answers

    What type of message does a DHCP client send to identify available DHCP servers on the network?

    <p>DHCPDISCOVER message</p> Signup and view all the answers

    What happens after a DHCP client receives a lease from a DHCP server?

    <p>The client must renew the lease through another DHCPREQUEST message</p> Signup and view all the answers

    What happens when a host uses DHCP to automatically configure an IP address?

    <p>It sends a DHCPDISCOVER message and a DHCPREQUEST message as broadcasts.</p> Signup and view all the answers

    What is the purpose of a DHCP client sending a broadcast DHCPREQUEST message?

    <p>To indicate to the offering DHCP server that it would like to accept the offer and bind the IP address.</p> Signup and view all the answers

    What is the typical range of IP addresses assigned by a workstation when DHCP servers are not available?

    <p>169.254.0.0/16</p> Signup and view all the answers

    What is the role of a DSL modem in a SOHO environment?

    <p>It is not involved in IP address allocation.</p> Signup and view all the answers

    What happens when a Windows PC cannot communicate with an IPv4 DHCP server?

    <p>It assigns itself an IP address from the 169.254.0.0/16 network.</p> Signup and view all the answers

    What is the purpose of a DHCP server sending a DHCPOFFER message?

    <p>To offer an IP address to the DHCP client.</p> Signup and view all the answers

    What is the typical range of IP addresses assigned by the ISP to the wireless router in a SOHO environment?

    <p>Any valid IP address range</p> Signup and view all the answers

    What happens when a DHCP client's IP address lease time expires?

    <p>It sends a DHCPREQUEST message to the DHCP server.</p> Signup and view all the answers

    What should the host default gateway address be set to in a GLBP configuration?

    <p>The FHRP virtual IP address</p> Signup and view all the answers

    Which FHRP protocol provides load sharing in addition to redundancy?

    <p>GLBP</p> Signup and view all the answers

    What is the purpose of HSRP?

    <p>To allow for transparent failover of a first-hop IPv4 device</p> Signup and view all the answers

    What is the main advantage of using TACACS+ or RADIUS for AAA authentication?

    <p>It is more scalable than local database authentication</p> Signup and view all the answers

    What is the goal of a DHCP starvation attack?

    <p>To create a DoS for DHCP clients</p> Signup and view all the answers

    What is used to form an IPv6 address when a PC is configured to use the SLAAC method?

    <p>A 64-bit interface ID and the RA message</p> Signup and view all the answers

    What is the purpose of the O flag in DHCPv6?

    <p>To indicate stateless DHCPv6 operation</p> Signup and view all the answers

    What is the main purpose of discovery protocols?

    <p>To provide hackers with sensitive network information</p> Signup and view all the answers

    What is the main difference between HSRP and GLBP?

    <p>HSRP provides redundancy while GLBP provides load sharing</p> Signup and view all the answers

    What is true about the interface IDs of clients in stateless DHCPv6 operation?

    <p>They are configured either by EUI-64 or a random number</p> Signup and view all the answers

    What is the main advantage of using a local database for AAA authentication?

    <p>It does not require dedicated ACS servers</p> Signup and view all the answers

    What is the purpose of the ACAD_CLASS in DHCPv6?

    <p>It is the name of the DHCP pool</p> Signup and view all the answers

    What is true about stateful DHCPv6 pools?

    <p>They are configured with address prefixes for hosts via the address command</p> Signup and view all the answers

    What is the command used to set the M flag to 1 in a RA message?

    <p>ipv6 nd managed-config-flag</p> Signup and view all the answers

    What is the purpose of the GLBP protocol?

    <p>To provide load balancing between a group of redundant routers</p> Signup and view all the answers

    What is VRRPv2?

    <p>A nonproprietary protocol</p> Signup and view all the answers

    What is the role of the authenticator in the 802.1X authentication process?

    <p>Controls physical network access</p> Signup and view all the answers

    What is the default mode for a port security violation on a Cisco switch?

    <p>Shut down the port</p> Signup and view all the answers

    What happens to packets with unknown source addresses in the Protect violation mode?

    <p>They are dropped until a sufficient number of secure MAC addresses are removed</p> Signup and view all the answers

    What is the role of the supplicant in the 802.1X authentication process?

    <p>Requests network access</p> Signup and view all the answers

    What type of cable is used for connections between end devices and a switch?

    <p>Straight-through</p> Signup and view all the answers

    What is the purpose of the switchport port-security command?

    <p>To enable port security for the port</p> Signup and view all the answers

    What happens when the security violation counter for a port is incremented?

    <p>The port is shut down</p> Signup and view all the answers

    How many violation modes are available on a Cisco switch?

    <p>3</p> Signup and view all the answers

    Study Notes

    DHCP Configuration

    • The commands dhcp pool, ip default-gateway, and ip network are not valid DHCP configuration commands.
    • When a DHCP client's IP address lease time expires, it sends a DHCPREQUEST unicast message directly to the DHCPv4 server that originally offered the IPv4 address.
    • A DHCP client typically sends two messages: DHCPDISCOVER and DHCPREQUEST, which are usually sent as broadcasts to ensure all DHCP servers receive them.

    DHCP Message Process

    • The DHCP server responds to these messages using DHCPOFFER, DHCPACK, and DHCPNACK messages, depending on the circumstance.
    • When a DHCP client receives DHCPOFFER messages, it will send a broadcast DHCPREQUEST message to:
      • Indicate to the offering DHCP server that it would like to accept the offer and bind the IP address.
      • Notify any other responding DHCP servers that their offers are declined.

    IP Address Assignment

    • When a workstation is configured to obtain an IP address automatically, but DHCP servers are not available, it assigns itself an IP address from the 169.254.0.0/16 network.
    • If a Windows PC cannot communicate with an IPv4 DHCP server, it automatically assigns an IP address in the 169.254.0.0/16 range.

    SOHO Environment

    • In a SOHO environment, a wireless router connects to an ISP via a DSL or cable modem.
    • The IP address between the wireless router and ISP site is typically assigned by the ISP through DHCP.
    • This method facilitates IP addressing management, allowing IP addresses for clients to be dynamically assigned, making it easy to reassign IP addresses when a client is dropped.

    DHCP Protocol

    • The DHCP protocol operates with 2 UDP ports: UDP port 67 (destination port for DHCP servers) and UDP port 68 (used by DHCP clients).
    • The show ip dhcp binding command shows a list of IPv4 addresses and the MAC addresses of the hosts to which they are assigned.

    MAC Addresses

    • There is a special MAC address for broadcast purposes: FF-FF-FF-FF-FF-FF.
    • When a DHCP client needs to send a DHCP Discover message, it uses this MAC address as the destination MAC address in the Ethernet frame.

    IP Helper Address

    • The ip helper-address command forwards the following eight UDP services:
      • Port 37: Time
      • Port 49: TACACS
      • Port 53: DNS
      • Port 67: DHCP/BOOTP client
      • Port 68: DHCP/BOOTP server
      • Port 69: TFTP
      • Port 137: NetBIOS name service
      • Port 138: NetBIOS datagram service

    DHCP Client/Server Communication

    • The client broadcasts a DHCPDISCOVER message to identify available DHCP servers on the network.
    • A DHCP server replies with a DHCPOFFER message, which contains information such as the IP address and subnet mask to be assigned, the IP address of the DNS server, and the IP address of the default gateway.

    IPv6 Configuration

    • When a PC is configured to use the SLAAC method for configuring IPv6 addresses, it uses the prefix and prefix-length information from the RA message, combined with a 64-bit interface ID, to form an IPv6 address.
    • The IPv6 default gateway address is the link-local address of the router interface attached to the LAN segment.

    Stateless DHCPv6

    • In stateless DHCPv6 operation, the O flag is set to 1 and the M flag is left at 0 (default).
    • Clients in stateless DHCPv6 operation configure their interface IDs using either EUI-64 or a random number.

    FHRP

    • HSRP (Hot Standby Router Protocol) is a Cisco-proprietary protocol that provides redundancy through active and standby devices.
    • VRRP (Virtual Router Redundancy Protocol) is an open standard FHRP that provides redundancy through a virtual router master and one or more backups.
    • GLBP (Gateway Load Balancing Protocol) is a Cisco-proprietary FHRP that provides load balancing in addition to redundancy.

    AAA Authentication

    • AAA authentication can be implemented with a local database or with usernames and passwords stored on network devices.
    • TACACS+ or RADIUS protocol requires dedicated ACS servers, which scale well in large networks.
    • After a user is authenticated through AAA, AAA servers keep a detailed log of exactly what actions the authenticated user takes on the device.

    DHCP Starvation Attack

    • A DHCP starvation attack is launched by an attacker with the intent to create a DoS for DHCP clients.
    • The attacker uses a tool that sends many DHCPDISCOVER messages to lease the entire pool of available IP addresses, denying them to legitimate hosts.

    802.1X Authentication

    • The devices involved in the 802.1X authentication process are:
      • The supplicant (client requesting network access)
      • The authenticator (switch controlling physical network access)
      • The authentication server (performs the actual authentication)

    Studying That Suits You

    Use AI to generate personalized quizzes and flashcards to suit your learning preferences.

    Quiz Team

    Description

    Quiz on DHCP configuration commands, IP address lease time, and DHCP messages such as DHCPDISCOVER and DHCPREQUEST.

    More Like This

    Use Quizgecko on...
    Browser
    Browser