Network System

interface setup

show interface /sys/class/net
interface: ip link set eth1 up/down
static ip: ip addr add/del 192.168.50.5 dev eth1
routing table:
- ip route show
  - lower metric has higher priority
- static route ip route add 10.10.20.0/24 via 192.168.50.100 dev eth0
  - default gateway: ip route add default
- check which route will be taken ip route get
- default route (gateway) is taken when no specific route is available
arp table:
- ip neigh
maxmtu: ip -d link list
- set mtu: ip link set dev eth0 mtu 1400
ethtool: check interface status, including negotiated speed
- -m: read eeprom info
- -t: self test
- -S: interface status
- -i: firmware version
netstat: check socket binding
- -t (tcp), -u (udp), -x (unix)
- -l: show listening
- -p: process
- -n: show numeric value (like ip) directly
ping -I: ping through interface

other tools

find network interfaces /sys/class/net
ifupdown
- /etc/network/interfaces
- https://wiki.debian.org/NetworkConfiguration
ifconfig -> ip
- netstat
NetworkManager -> nmcli
- https://fedoraproject.org/wiki/Networking/CLI
- unmanaged-devices
- */NetworkManager/conf.d/
netplan

setup forarding

# temporarily
sudo sysctl -w net.ipv4.ip_forward=1
sudo iptables -t nat -A POSTROUTING -o eno1 -j MASQUERADE

sudo iptables -t nat -L

# persistantly
# Uncomment the below line in/etc/sysctl.d/99-sysctl.conf
net.ipv4.ip_forward=1

apt-get install -y iptables-persistent

networking suite

IP suite (OSI)

(physical)
link (data link): mac
internet (network): ip
transport (transport): tcp/udp
1. Transmission Control Protocol (TCP)
2. User Datagram Protocol (UDP)
application (session, presentation, application): ssl/tls

(physical)

small form-factor pluggable (SFP)
- direct attached cable (DAC)
  - no transceiver
- active copper?
- active optical cable (AOC)
media independent interface (MII)
- connect mac and phy
Magnetics?
- connect to RJ45
T568 A/B
- 10 / 100 Mbit use two pairs (1-2, 3-6)

fiber

SFP & QSFP

SFP, SFP+, SFP28
- 1G, 10G, 25G
QSFP+, QSFP28
- QSFP was not widely adopted?
the modules are usually backward-compatible
switch need to support breakout to split QSFP into SFP

fiber

connector
- LC
  - CWDM4
- MPO
  - SR4, PSM4
  - type A / B / C : different fiber cross over pattern
ferrule: how fiber contact
- PC, UPC, APC
cable (ISO11801)
- related to mode of light
- single mode -> long reach
  - OS1, OS2 -> yellow
- multi mode -> short reach
  - OM1, OM2 -> led, orange
  - OM3, OM4 -> laser, aqua
  - OM5
    - WDM is specified on MMF since OM5
- larger core means less distance
wavelength
- 850, 1300, 1550
- scattering and absorption
  - water band
wavelength division multiplexing
- in comm, we call it frequency division multiplexing
- transmit multiple wavelength on the same fiber
- Coarse WDM (20 nm)
- Dense WDM (0.8 nm)

link

Shared media / Repeater / Hub (same segment):
1. CSMA/CD
Switch (different segment, same scope):
1. segment determined by physical connection, scope determined by subnet mask
  1. segment can be divided with vlan
2. Address Resolution Protocol: knowing ip, broadcast request for a mac address
3. redundant links to achieve high availibity (STP)
4. multiple links for high throughput (aggregation)
  1. link aggregation group, LAG
  2. link aggregation control protocol, LACP(802.1ax)
    1. active, passive
    2. bonding, ifenslave
5. LLDP (802.1AB): discovery capability on link
6. use bridge to form a software switch
Router (different scope)
1. packet cross different scope via default gateway
2. QoS:
3. UPnP
4. NAT

internet

mtr: my trace route -> much better interface
traceroute return packet path to host
- by setting incrementing ttl number
tracepath also traces mtu size

reserved ip range / scope

IPv4
- private(RFC 1918): 10.0.0.0/8, 172.16.0.0/12, 192.168.0.0/16
- link-local: 169.254.0.0/16
IPv6
- link-local: fe80::/10

IPv6

left-most continuous zero octets can be compressed as ::
- otherwise, each octet needs to retain at least one zero
wrapped in square bracket so : is not confused with port number

casting

boardcast domain: every node can reach others without routing
- i.e. segment in link layer
unicast: communicate with certain device
- unspecified: 0.0.0.0, ::
- loopback: 127.0.0.1, ::1
boardcast: communicate with all devices in a certain domain
- ipv4 supports boardcast in current subnet
- ipv6 do not support boardcast
multicast: communicate with some devices in a certain domain
- 224.0.0.0/4, FF00::/8, wiki
anycast: communicate with any single device in a certain domain
- ipv6

fragmentation

maximum transmission unit (MTU)
- specify the max bytes through one link
packet will be fragmented when exceeding MTU
- maximun segment size (MSS) in tcp header
  - usually set to MTU - tcp header size
- udp packet do not have size constraint
- if one segment is lost, the whole packet is resent
  - Do not fragment (DF) force packet to be dropped instead
MTU Discovery is done through ICMP message
- ping -M do -s 2000: force mtu discovery
- icmp might be blocked on old firewall
In IPv6, mtu discovery and DF is required in protocol?

fragmentation

switch

switch algorithm:
- required because the port can be shared
- cut-through: forward the packet after reading the mac
- store-and-forward: store and check the packet before forwarding
- fragment-free: forward the packet after reading 64 byte
switching memory
- shared
- matrix
- bus
transparent bridging
- learning
- flooding (arp)
- forwarding
- filtering
  - do not forward packet on same segment
- aging
architecture
- access
- core

howstuffworks

Spanning Tree Protocol / Shortest Path Bridging

this tech has evolved several times
- STP 802.1d
- RSTP 802.1w
- MSTP 802.s
the goal is to find the shortest route to root bridge
- root bridge can be found automatically. (prefer manual setting)
- if root bridge is different from default gateway, unncessary traffic might be generated.
bridge protocol data units (BPDU) is constantly being shared between nodes
- calculate path cost to root bridge
- path cost can be determined by admin
based on cost, we determine best path to specific segment
- root port: uplink to root bridge
- designated ports: downlink to another segment
- avoid boardcast storm
MSTP considers all vlan to be the same tree
- either enable trunk on all port
- or per-vlan RSTP?

guard

bpdu guard: disable STP on undesired port
root guard: disable STP from changing manually designated root switch
- not recommanded
loop guard
- normally, ports will be disabled based on BPDU
- if a unidirectional failure cause BPDU to be lost, switch might choose to forward packet through the port. Which defeats STP
- loop guard disable that port with unidirectional failure

vlan 802.1q

tag range: 1-4094
access port / untagged port
- assign a given tag for incoming traffic
- drop tag for out-going traffic
trunk port / tagged port
- assign native vlan if untagged
- retain vlan tag otherwise, (allowed vlan)
- native vlan and allowed vlan need to match for both router
  - otherwise, it might only work asymmetrically
  - many routers have a native vlan of 1, which cannot even be changed.
instead of configure vlan group on every device, configure on one device and propagte
- GARP -> MRP
- GMRP -> MMRP
- GVRP -> MVRP
dynamic vlan: assign vlan based on mac
- Cisco: VLAN Member Policy Server

L3 Switch

route between vlan without packets leaving the switch
L3 can work between following elements
- Router Interface: a single port to another router
- Port Channel: port aggregation to another router
- Vlan Interface: between vlan groups
Switch might have different forwarding capacity for L2 and L3

multicast routing

link layer vs protocol layer
join multicast group
- ip maddr
- smcroute
Multicast router
- implement on router, handle multicast request from client
- Rendovous Point
  - points to core router, which learns all multicast grouping
  - so that edge router only need to care about a subset.
IGMP snooping: implement on switch, make sure that port that is not in a multicast group receive nothing
PIM-SM

transport

rdma

Forward Error Correction (FEC):
- mellanox might enable FEC by default

ECN?

VPI

OFED -> rdma-core -> libfabric openucx

DCB

PFC
- Priority Code Point (PCP)
  - 3 bits in Vlan
- Differentiated Services Code Point (DSCP)
- global pause?
ETS
DCBX
- LLDP
QCN

dhcp

for vlan
- dhcp server for each vlan
- multi-homed dhcp + dhcp relay
  - dhcp relay is able to carry subnet info to the dhcp server
  - or does it carry vlan info?
dhcp options
- 15: domain name, 119: domain search
- 26: mtu

application

zeroconf

traditional dns, unicast
multicast dns (mDNS, RFC6762)
- resolve on link local network
- .local domain
- boujour, avahi
- avahi-browse --all --ignore-local --resolve --terminate

service discover

SSDP / UPnP
WS-Discovery
DNS-SD
- query DNS PTR record
- returns SRV and TXT

http://www.dns-sd.org/ServiceTypes.html

https://support.umbrella.com/hc/en-us/articles/232254248-Common-DNS-return-codes-for-any-DNS-service-and-Umbrella-

LLDP? SNMP?

http

compression: Accept-Encoding
Connection: Keep-Alive
- persistent connection, reuse tcp connection
- http 1.1: persistent by default
- http 2: do not use this header
- http 2: multiplex requests over a single TCP connection
Connection: Upgrade

quic?

REST

Representational state transfer (REST) is a style to design api.

Uniform interface
client-server architecture
statelessness
cacheability
layered system
code on demand

todo

nmap

VRPP

https://docs.cumulusnetworks.com/cumulus-linux-40/Monitoring-and-Troubleshooting/Troubleshooting-Network-Interfaces/Monitoring-Interfaces-and-Transceivers-Using-ethtool/

https://frrouting.org/

tuning