Network and Security Basics Wiki - itnett/FTD02H-N GitHub Wiki

Here is a detailed GitHub Markdown Wiki format, covering all the requested topics with the use of emojis, content lists, important tips, emphasis, summaries, keywords, and a "Test Your Understanding" section following Bloom's Taxonomy principles.

🌐 Network and Security Basics Wiki

📑 Innholdsfortegnelse

  1. 💡 Stateful vs. Stateless Inspection
  2. 🔍 IDS vs. IPS Systems
  3. 🌍 Network Address Translation (NAT)
  4. 🔄 Static vs. Dynamic IP Address Translation
  5. 🔗 How Ethernet Networks Work
  6. 📶 Layer 2 vs. Layer 3 Addressing Schemes
  7. ⚠️ Collision vs. Broadcast Domains
  8. 🚦 Ways to Segment Broadcast Domains
  9. 🖧 Various Network Devices
  10. 🆔 IP Address vs. MAC Address
  11. 📡 How Broadcast Domains Are Used
  12. 🔗 How ARP Tables Are Used
  13. 🗺️ Use of Routing Tables in Network Routing

💡 Stateful vs. Stateless Inspection

  • Stateful Inspection: Maintains the state of active connections and makes decisions based on the context of the traffic flow.
  • Stateless Inspection: Inspects each packet independently without considering the state of a connection.

⚠️ Viktige Tips:

  • Stateful firewalls are generally more secure because they understand the context of network traffic.
  • Stateless firewalls are faster but may be less secure.

Key Words: Firewall, Stateful, Stateless, Session, Packet.

🔍 IDS vs. IPS Systems

  • IDS (Intrusion Detection System): Passively monitors and detects suspicious activities, sending alerts to administrators.
  • IPS (Intrusion Prevention System): Actively monitors and can take actions to block or prevent threats in real-time.

⚠️ Viktige Tips:

  • IDS is passive (listening only).
  • IPS is active (can block traffic).

Key Words: Detection, Prevention, Passive, Active, Alerts.

🌍 Network Address Translation (NAT)

  • NAT: Translates private IP addresses to public IP addresses, allowing devices in a local network to access external networks.

📝 Oppsummering:

  • Hides internal IP addresses.
  • Enables multiple devices to share a single public IP.

Key Words: NAT, IP Address, Translation, Public, Private.

🔄 Static vs. Dynamic IP Address Translation

  • Static NAT: One-to-one mapping between private and public IP addresses.
  • Dynamic NAT: Uses a pool of public IP addresses for translation, dynamically assigning as needed.

⚠️ Viktige Tips:

  • Static NAT is used when a consistent IP is needed.
  • Dynamic NAT is more flexible and uses fewer public IPs.

Key Words: Static, Dynamic, IP Mapping, Translation.

🔗 How Ethernet Networks Work

  • Ethernet: Operates at the Data Link Layer (Layer 2) and uses MAC addresses to send data frames across a local network.

📝 Oppsummering:

  • Reliable and standardized under IEEE 802.3.
  • Wired or wireless communication.

Key Words: Ethernet, MAC Address, Data Link Layer, IEEE 802.3.

📶 Layer 2 vs. Layer 3 Addressing Schemes

  • Layer 2 (Data Link): Uses MAC addresses for local network communication.
  • Layer 3 (Network): Uses IP addresses for routing across networks.

⚠️ Viktige Tips:

  • Layer 2 deals with local addressing.
  • Layer 3 deals with global (network-wide) addressing.

Key Words: Layer 2, Layer 3, MAC Address, IP Address, Routing.

⚠️ Collision vs. Broadcast Domains

  • Collision Domain: Network segment where data packets can collide.
  • Broadcast Domain: Network segment where broadcast traffic is received by all devices.

📝 Oppsummering:

  • Collision domains are segmented by switches.
  • Broadcast domains are segmented by routers or VLANs.

Key Words: Collision, Broadcast, Domain, Segmentation.

🚦 Ways to Segment Broadcast Domains

  • Routers: Do not forward broadcast traffic, creating separate domains.
  • VLANs: Virtual Local Area Networks on switches to segment traffic logically.

⚠️ Viktige Tips:

  • Use VLANs for logical segmentation within a network.
  • Use routers for physical segmentation between networks.

Key Words: Broadcast, Domain, Segmentation, VLAN, Router.

🖧 Various Network Devices

  • Hub: Connects multiple devices but creates a single collision domain.
  • Switch: Connects devices at Layer 2, reducing collision domains.
  • Router: Operates at Layer 3, routes traffic between different networks.
  • Firewall: Protects networks by controlling incoming and outgoing traffic.

⚠️ Viktige Tips:

  • Use switches to reduce collisions.
  • Use routers and firewalls to control and protect traffic.

Key Words: Hub, Switch, Router, Firewall.

🆔 IP Address vs. MAC Address

  • IP Address: Logical address for identifying devices on a network.
  • MAC Address: Physical address assigned to network interface cards (NICs).

📝 Oppsummering:

  • IP is for routing.
  • MAC is for local network communication.

Key Words: IP Address, MAC Address, Logical, Physical.

📡 How Broadcast Domains Are Used

  • Used to control which devices receive broadcast traffic within a network segment.

⚠️ Viktige Tips:

  • Routers and VLANs segment broadcast domains to reduce unnecessary traffic.

Key Words: Broadcast, Domain, Traffic Control.

🔗 How ARP Tables Are Used

  • ARP (Address Resolution Protocol): Maps IP addresses to MAC addresses within a local network.

📝 Oppsummering:

  • Helps devices locate each other in the same network segment.

Key Words: ARP, Table, Mapping, IP Address, MAC Address.

🗺️ Use of Routing Tables in Network Routing

  • Routing Tables: Used by routers to determine the best path for data packets.

⚠️ Viktige Tips:

  • Routing tables are critical for directing traffic efficiently across networks.

Key Words: Routing Table, Network, Path, Router.

🧠 Test Forståelse

🔍 Remembering

  • What is the difference between a stateful and a stateless firewall?
  • Define NAT and explain its purpose.

🤔 Understanding

  • Describe how Ethernet networks work.
  • Explain the difference between Layer 2 and Layer 3 addressing.

📝 Applying

  • Identify how a network device like a router segments broadcast domains.
  • Demonstrate the use of ARP tables in a small local network.

🔍 Analyzing

  • Compare and contrast IDS and IPS in network security contexts.

🛠️ Evaluating

  • Evaluate the effectiveness of using dynamic NAT in a large enterprise network.
  • Discuss the pros and cons of static vs. dynamic IP addressing.

💡 Creating

  • Design a small network setup with VLANs to segment broadcast domains effectively.
  • Propose a security strategy using both firewalls and IPS to protect a medium-sized company's network.

📚 Oppsummering

This guide provides a comprehensive overview of key networking and security concepts, such as different types of inspections, network devices, address schemes, and protocols. By understanding these principles, you'll be better equipped to manage and secure networks effectively.

🏷️ Nøkkelord

  • Firewall, Stateful, Stateless, NAT, Ethernet, Layer 2, Layer 3, Collision Domain, Broadcast Domain, VLAN, Router, IP Address, MAC Address, ARP, Routing Table.

Feel free to use this guide to deepen your understanding of network security concepts! 📘