DAB 202 IT Service Management Week 3 PDF

DAB 202 IT Service Management Week 3 NETWORK BASICS 2 Networking Basics ▪ Domain Name Services (DNS) – Translates domain names (host names) to IP addresses ▪ Firewall – A network security system that monitors and controls incoming and outgoing network traffic based on predetermined security rules. Network Protocols TCP/IP Packets Open Systems Interconnection (OSI) model Layer Number Function Protocol/Address HTTP(S), FTP, DHCP, Application 7 Means for an application to access a computer network LDAP Ensures that the application layer can read the data Presentation 6 ASCI, ICA Encryption Session 5 Enables orderly exchange of data NetBIOS, RPC Transport 4 Provides protocols to support host-to-host communication TCP, UDP Network 3 Routing and packet forwarding (routers) IP Data link 2 Transfer data in the same LAN network (hubs and switches) MAC Physical 1 Transmission and reception of raw bitstreams over a physical medium Signals (1s and 0s) © 2022, Amazon Web Services, Inc. or its affiliates. All rights reserved. 6 TCP/IP Header IPv4 addresses 192. 0. 2. 0 11000000 00000000 00000010 00000000 © 2022, Amazon Web Services, Inc. or its affiliates. All rights reserved. IPv4 and IPv6 addresses IPv4 (32-bit) address: 192.0.2.0 IPv6 (128-bit) address: 2600:1f18:22ba:8c00:ba86:a05e:a5ba:00FF © 2022, Amazon Web Services, Inc. or its affiliates. All rights reserved. IPv4 Address Classes Address First Classful Subnet Classful Class Octet Mask (dotted Mask Value decimal) (prefix) Class A 1-126 255.0.0.0 /8 Class B 128-191 255.255.0.0 /16 Class C 192-223 255.255.255.0 /24 Class D 224-239 N/A N/A Class E 240-255 N/A N/A Classless Inter-Domain Routing (CIDR) Network identifier (routing prefix) Host identifier 192. 0. 2. 0 / 24 Tells you how many bits are fixed 11000000 00000000 00000010 00000000 to 11111111 Fixed Fixed Fixed Flexible © 2022, Amazon Web Services, Inc. or its affiliates. All rights reserved. AMAZON VPC Module 5: Networking and Content Delivery Routers ▪ Forward IP packets across different computer networks ▪ Operate in layer 3 and make forwarding decisions based on IP address (from source to destination) Networks Subnet 1 Subnet 2 Router © 2022, Amazon Web Services, Inc. or its affiliates. All rights reserved. 14 Routing Tables https://www.khanacademy.org/computing/computers-and- Source internet/xcae6f4a7ff015e7d:the-internet/xcae6f4a7ff015e7d:routing-with- redundancy/a/internet-routing Routing Tables A routing table is a database that keeps track of paths, like a map, and uses these to determine which way to forward traffic. A routing table is a data file in RAM that is used to store route information about directly connected and remote networks. Source https://en.wikipedia.org/wiki/Routing_table#:~:text=A%20routing%20table%20is%20 a,directly%20connected%20and%20remote%20networks Route tables and routes ▪ A route table contains a set of rules (or routes) that you can configure to direct Main (Default) Route Table network traffic from your subnet. Destination Target ▪ Each route specifies a destination and a 10.0.0.0/16 local target. ▪ By default, every route table contains a local route for communication within the VPC. ▪ Each subnet must be associated with a VPC CIDR block route table (at most one). © 2022, Amazon Web Services, Inc. or its affiliates. All rights reserved. 17 Amazon VPC ▪ Enables you to provision a logically isolated section of the AWS Cloud where you can launch AWS resources in a virtual network that you define Amazon ▪ Gives you control over your virtual networking resources, including: VPC – Selection of IP address range – Creation of subnets – Configuration of route tables and network gateways ▪ Enables you to customize the network configuration for your VPC ▪ Enables you to use multiple layers of security © 2022, Amazon Web Services, Inc. or its affiliates. All rights reserved. VPCs and subnets ▪ VPCs: – Logically isolated from other VPCs AWS Cloud – Dedicated to your AWS account Region – Belong to a single AWS Region and Availability Zone 1 Availability Zone 2 can span multiple Availability Zones VPC Subnet Subnet ▪ Subnets: – Range of IP addresses that divide a VPC – Belong to a single Availability Zone – Classified as public or private © 2022, Amazon Web Services, Inc. or its affiliates. All rights reserved. 19 Reserved IP addresses Example: A VPC with an IPv4 CIDR block of 10.0.0.0/16 has 65,536 total IP addresses. The VPC has four equal-sized subnets. Only 251 IP addresses are available for use by each subnet. IP Addresses for CIDR Reserved for block 10.0.0.0/24 VPC: 10.0.0.0/16 10.0.0.0 Network address Subnet 1 (10.0.0.0/24) Subnet 2 (10.0.2.0/24) 251 IP addresses 251 IP addresses 10.0.0.1 Internal communication Domain Name System 10.0.0.2 Subnet 4 (10.0.1.0/24) Subnet 3 (10.0.3.0/24) (DNS) resolution 251 IP addresses 251 IP addresses 10.0.0.3 Future use Network broadcast 10.0.0.255 address © 2022, Amazon Web Services, Inc. or its affiliates. All rights reserved. 20 Public IP address types Public IPv4 address Elastic IP address ▪ Manually assigned through an Elastic ▪ Static IPv4 address IP address ▪ Associated with an AWS account ▪ Automatically assigned through the ▪ Can be allocated and remapped auto-assign public IP address settings anytime (ex, transition IP to different at the subnet level EC2 instances in the event of a failure) ▪ Additional costs might apply © 2022, Amazon Web Services, Inc. or its affiliates. All rights reserved. 21 Elastic network interface ▪ An elastic network interface is a virtual network interface that you can: – Attach to an instance. – Detach from the instance, and attach to another instance to redirect network traffic. ▪ Its attributes follow when it is reattached to a new instance. ▪ Each instance in your VPC has a default network interface that is assigned a private IPv4 address from the IPv4 address range of your VPC. Subnet: 10.0.1.0/24 Elastic network interface © 2022, Amazon Web Services, Inc. or its affiliates. All rights reserved. 22 AWS Site-to-Site VPN AWS Cloud Public subnet route table Region Destination Target Availability Zone 10.0.0.0/16 local VPC: 10.0.0.0/16 Site-to-Site 0.0.0.0/0 igw-id Public subnet:10.1.0.0/24 VPN connection Private subnet route table Internet Destination Target 10.0.0.0/16 local Private subnet: 10.0.2.0/24 Route Virtual 192.168.10.0/24 vgw-id Customer table gateway gateway (vgw-id) Corporate data center: 192.168.10.0/24 © 2022, Amazon Web Services, Inc. or its affiliates. All rights reserved. 23 AMAZON ROUTE 53 Module 5: Networking and Content Delivery Amazon Route 53 ▪ Is a highly available and scalable Domain Name System (DNS) web service ▪ Is used to route end users to internet applications by translating names (like Amazon Route 53 www.example.com) into numeric IP addresses (like 192.0.2.1) that computers use to connect to each other ▪ Is fully compliant with IPv4 and IPv6 ▪ Connects user requests to infrastructure running in AWS and also outside of AWS ▪ Is used to check the health of your resources ▪ Features traffic flow ▪ Enables you to register domain names © 2022, Amazon Web Services, Inc. or its affiliates. All rights reserved. Amazon Route 53 DNS resolution Requests Checks with Route 53 www.example.com for IP address User Returns IP address DNS resolver Returns IP address Amazon Route 192.0.2.0 192.0.2.0 53 © 2022, Amazon Web Services, Inc. or its affiliates. All rights reserved.

DAB 202 IT Service Management Week 3 PDF

Document Details

Tags

Related

Summary

Full Transcript