Hello. My name is Dustin and welcome to networking. Let's go ahead and go over a few of the most common network devices that you will encounter. The 1st 1 we've got is our router. These operate at layer three of the O S I model, meaning they focus on I p addressing routing and fording packets to their destination
in your home. A router may perform many more duties,
like working as a D H C P Server and handing out those I P addresses
to all the devices on your network.
Most modern home routers also have wireless capabilities as well.
Honor Slide. Here We've got a typical router icon that you will see in many network maps.
Next, we've got a typical layer to switch these operate at. You guessed it layer to meaning. They focus on Mac addresses of devices switches, make fording decisions based on known Mac addresses and compute perform basic filtering on frames.
There are two types of switches you may encounter, managed or unmanaged
a man. It's which allows you to configure settings and these air typically found in most medium to large size enterprises, unmanaged switches come ready to go out of the box and for the most part, are not configurable. You'll usually find these in homes or small home offices.
It should also be noted that there are layer three switches that do perform some routing functions out, as well as their typical Layer two functions.
One of the most important security devices you'll find on an enterprise network is a firewall.
These typically work at layers three and four, but can operate up to the application layer. Layer seven making decisions based on application layer protocols.
Fire will separate your internal networks from the Internet.
Firewalls can monitor incoming and outgoing network traffic and make decisions on whether to allow or block that traffic to find. Based on a defined set of security rules, these air typically the first line defense in your network.
There are several types of firewalls, including proxy firewalls, which serve as a gateway from one network to another. For a specific application.
There's a state full inspection firewalls,
typically your standard or traditional firewall,
and these allow our block traffic based on connection State Port and protocol,
Unified Threat Management, or you TM firewalls
provide normal firewall functions, plus intrusion prevention and anti virus.
The last type of firewall we're going to mention in this module are N g F de Pughs or next generation firewalls. These are becoming more and more common and provide much more functions than your typical packet filtering firewall.
And again, we were showing the typical firewall icon that you'd see any network map
needs or network intrusion to text in system.
These monitor traffic in on the network in real time or as close to real time as possible, and can alert if they spot any malicious traffic.
These devices require human interaction to make decisions whether or not to stop that malicious traffic
the way these devices work. They typically have one server and several sensors placed in strategic areas around the network
because needs only need to alert on traffic there typically placed out of band, which means their place out of the line of traffic and receive a copy of the traffic.
Because they're out of band, you won't see any network performance issues
nips network intrusion prevention system. These are similar to mids, the examined network traffic to detect malicious traffic, although they have one very big advantage in the acronym, you probably saw the prevention system versus detection so they actually have the ability to stop the malicious traffic
rather than just alerting on it
because they do have the ability to stop or change traffic. These devices need toe be placed in the band of traffic, so typically they will sit behind a firewall and watch for anything that may be deemed malicious.
Because these devices are in band, they may affect network performance depending on the rules. And there's a lot of other factors that could affect the network performance within ends. Start nips
in this module We went over a lot of information, including networked apologies and basic ports and protocols. You should know. We also discussed the seven Layer OS I model and how it differs from the newer four layer T C P I. P model. We went over some basic NETWORKINGS
skills, like sub netting I P addressing
and some basic troubleshooting tips and tools you may use.
Last thing we went over some standard network devices, including firewalls, routers, switches and the differences between network intrusion detection systems and network intrusion prevention systems.
In the next model, we're going to discuss the, uh, Marce off Windows operating system and security related to that.
But first, we have a quick quiz.
Question one. Nick is designing the new network for a small paper company. He wants to connect all devices to a central switch. Which topology should he use? Is it a a star topology?
Be a bust. Apology.
See a ring, topology
or D A mesh topology
give you just a second to think about that.
Go back to the beginning of the module.
And that's right. A star topology. This will connect everything to that central switch.
Next question Glasses is updating firewall rules on the Stanford branch firewall. He wants to block all SS H traffic.
What port should he block to stop the SS H traffic? Is it a port 53
Be port 80
Sea port 22.
Or is it deport 443
And he should all be familiar ports.
And it is C 22. Um, Well, so we'll go back to that question. I'm so poor a 53. That's D n s
port be Port 80. Is http. Traffic, see, as we mentioned, 22 is sshh
and D for for three is H T T. P s
and last question. Ryan can't get to his favorite site, wolf dot com, and would like to check basic and activity between his computer and the website. What tool should he use first?
And this one, remember, is to check basic connectivity between his computer and the website.
So our options are a trace route.
Where is it? D ping?
And that's right. This one is Ah Dee Ping. I want to use Ping to check for that basic connectivity.