Professional Documents
Culture Documents
360
TELECOMMUNICATIONS AND NETWORK SEC
URITY
/ /
A. IP IP
A.1 OSI TCP/IP
A.2 IP
A.3
B.
B.1
B.2
B.3
B.4
D. DDoS
OSI
TCP/IP
LAN WAN MAN
Internet
FTP, Telnet, HTTP, SNMP, SMTP, DNS
OSI
ASCII, MPEG, TIFF,GIF, JPEG
NFS SQL NetBIOS
RPC
TCP
MAC
PPP, HDLC, FR,
Ethernet, Token Ring, FDDI
LLC Logical Link Control
IEEE 802.2
100BaseT, OC-3, OC-12, DS1, DS3, E1, E3
OSI
FTP
TFTP
SNMP
SMTP
Telnet
HTTP
ASCII
EBCDIC
TIFF
JPEG
MPEG
MIDI
NFS
NetBIOS
SQL
RPC
OSI
TCP
UDP
SSL / TLS
SPX
Internet IP
Internet ICMP
Internet IGMP
RIP
OSPF
Novell IPX
ARP L2F
L2TP
RARP FDDI ISDN
PPP
Internet SLIP
HSSI
X.21
EIA/TIA-232 EIA/TIA-449
TCP/IP
ARPAN
ET
Application Layer HTML FTP SMTP
Transport Layer TCP UDP
Physical Layer
TCP
Transmission Control Protocol TCP
Stream IP
Sequence Number 32 TCP
Acknowledgement Number
TCP Control Flags SYN ACK FIN
Flow Control Buffer Window
Size 0 TCP
TCP
Round-Trip
Time RTT
UDP
User Datagram Protocol
UDP TCP
Connectionless
Unix Network Fil
e System NFS
TCP/UDP
TCP
UDP
ACK
ACK
UDP
TCP
TCP
1 TCP
IP
IP Address
IPv4 32 IPv6 128
IP Network Address Ho
st Address A B C 8 16
24
Classless Inter-Domain Routing CID
R
Fragmentation
Time Out
IP Time-To-Live TTL
0
IP
IP
IP
ICMP
TCP
IP
IP
Internet datagram
Internet
IP
0.0.0.0-127.255.255.255
128.0.0.0191.255.255.255
192.0.0.0223.255.255.255
D
E
224.0.0.0239.255.255.255
240.0.0.0255.255.255.255
Analog Communications
Analog Signal
Digital Communications
Digital Signal
Synchronous Communications
Asynchronous Communications
Bit
Baseband Communications
Broadband Communications
CATV
Network Topologies
Bus
Ring
Star
Tree
Mesh
Ring
active topology
Bus
daisy-chain
segm
ent
contention
passive technology
Star
10BASE-T
Tree Mesh
FDDI
Intemet
CSMA
/CD
IEEE 802.3
Token Ring
IEEE 802.5
4Mbps
16Mbps
100Mbps
LAN/MAN
LAN
FDDI
IEEE
802.3
CSMA/CD
10Mbps~1Gbps
802.5
4~16Mbps
802.8
100Mbps
CDDI UTP
Coaxial Cable
EMI
Twisted Pair
STP UTP
unshielded twisted pair UTP 4
3 10BASE-T 5 100BASE-TX
UTP 100 station 4
UTP EMI
Fiber-Optic Cable
multi-mode
single-mode
wireless media
Unicast
Broadcast
Multicast
(IGMP) TCP/IP
Polling
mainfra
me
Token Passing
Carrier-Sense Multiple Access CS
MA
Carrier-Sense Multipl
e Access with Collision Detection CSMA/CD
IEEE 802.3
Carrier-Sense Multipl
e Access with Collision Avoidance CSMA/CA
IEEE 802.11b
CSMA/CD
MAC 0xFF
FFFFFFFF
LAN
Address Resolution Protocol A
RP IP
Media Access Control MA
C
ARP Cache MAC
IP
IP MAC
LAN
DHCP
UDP
DHCP
DHCP
DHCPDISCOVER- DHCP
DHCP
DHCP
DHCPOFFER-DHCP
IP
DHCPREQUEST-
DHCPPACK-DHCP
IP
LAN
Internet Control Messages Protocol
ICMP IP
Errors
Timeouts TTL 0
Traceroute
.
,
(RIP)
RIP
RIP
(OSPF)
(IGRP)
Cisco
IGRP
90 3 270
7
630 Cisco IOS
Repeater
,
Hub
Bridge
LAN LAN
MAC
LAN
OSI
MAC
IP
MAC
IP
Switch
VLAN
VLAN
VLAN
fabric
VLAN subnet
VLAN
VLAN
VLA
N
VLAN
OSI
MAC
LAN
IP
VLAN
Firewall
Desktop Firewall
Packet filtering
OSI Reference Model
Network Layer TCP/IP IP
Packet Header
IPV4
Stateful Inspection
OSI TCP/IP
State Table
Application proxy
OSI TCP/IP
Application Layer
Relay
Direct Routing
Circuit-level Gateways
OSI Session Laye
r TCP/IP TCP
TCP Rel
ay Direct Rout
ing
IP
Packet-filtering routers
Dual homed host firewall
Screened host
Screened subnet
boundary perimeter
IP IP f
orwarding
Bastion Host
Demilitarized Zone
DMZ
OSI
ACL
DNS
IP
DNS Cache
X.500
LDAP
LDAP
/ X.500
Network Address Translation NAT
NAT
NAT
NAT
NAT
NAT IP
NAT
LAN LAN LAN WAN Internet
WAN
WAN
WAN
SVC PVC
X.25
SVC PVC
SMDS
ATM
53
SDLC
HDLC
SDLC
HSSI
DTE/DCE WAN
VoIP
IP
Leased Lines T
circuit-switched
connection
packet-switched connection
pack
et
Virtual Circuit
Asynchronous Transfer Mod
e ATM
53
ATM SONET T3 E3
QoS Quality of Service
QoS
Qos
Best-effort Service
Integrated Service
Differentiated Service
VoIP4
IP
H.323
SIP VoIP
UAC
UAS
SIP
SIP
SIP
VoIP
TCP/IP
SIP
DoS
Network mapping ICM
P SYN
Port scanning
Vulnerability scanning tool
s
Sniffers Netw
ork analyzer Protocol analyze
r
Promiscuous mode
Session hijacking
IP IP spoofing
Man-in-the-middle
Mutual authentication
IPSec
DOS
CPU
Reflector attacks I
P echo
UDP DNS
Amplifier attacks
IP IC
MP UDP
smurf
ICMP
Distributed Denial-Of-Service
DDOS
agents
SYN
SYN Synfloods
TCP
IP
Modem Dial-up
Dial-on-Demand Routing
DDR
Dial Backup
Integrated Services Digital Network
ISDN
Private Line
(Cable Modem)
VPN
PPP
IP
IP
VPN
PPTP
IP X.25 ATM
L2TP
IP IPSec
VPN
PPTP
IP
L2F
Cisco L2TP
PPTP L2TP
L2TP
L2F PPTP
IPSec
IPSec
IP
VPN
PAP
PPP
CHAP
/
1G
2G
4G
2GHz
40GHz
60GHz
CDMA
OFDM
900MHz
FDMA TDMA
ID
IPv6
114.4Kbps
2Mbps
100Mpbs
2.4Kbps
9.6Kbps
64Kbps
1980-1994
1800MHz
3G
1995-2001
2006-2010
2002-2005
(Frequency-Hopping
(Direct
WLAN
Infrastructure Networking Mod
el Access Point A
P Basic Service Set BSS
Service Set Identifier SSID
BSS
AP Beacon Frame
SSID SSID
Authentication
Open Authentication Mode
Shared Secret Mode
WLAN
Encryption
Wired Equivalent Privacy WEP
24
Initialization Vector IV 6
4 40 IV
WLAN
WEP Dynamic WEP keys
802.11i
WEP
Robust Security Network RSN
802.1x
Extensible Authentication Protocol EA
P AES
WLAN
War Driving
GPS
War walking
Warchalking
RootKit
Rootkit Rootkit
CSMA / CD
CSU/ DSU
TCP/ IP
FIFO
CSMA/CD.
CSU/DSU.
TCP/IP.
FIFO.
TCP
TCP
TCP
TCP
TCP
TCP segment.
TCP datagram.
TCP frame.
TCP packet.
IDS
DMZ
DM
Z
D
MZ