Browse Source

added packet captures, basics.md, user manuals, and some readmes

master
Jared Dunbar 3 years ago
parent
commit
4ff2f7d065
Signed by: jared GPG Key ID: CF202CC859BAC692
  1. 1
      EX4500-40F.md
  2. 1
      TL-SG3424.md
  3. 52
      basics.md
  4. 3
      configs/README.md
  5. 280
      configs/juniper-9-12-18-pub.conf
  6. 3
      manuals/README.md
  7. BIN
      manuals/TL-SG3424/TL-SG3424 CLI.pdf
  8. 39013
      manuals/TL-SG3424/TL-SG3424 Quick Installation Guide.pdf
  9. BIN
      manuals/TL-SG3424/TL-SG3424 Users Guide.pdf
  10. 6
      packets/README.md
  11. BIN
      packets/cdp.pcapng
  12. BIN
      packets/stp.pcapng

1
EX4500-40F.md

@ -0,0 +1 @@
# Using the EX-4500

1
TL-SG3424.md

@ -0,0 +1 @@
# Using the TL-SG3424

52
basics.md

@ -1 +1,53 @@
# basics.md
This documents will go into the basics of networking. This is in no way a comprehensive guide to how the network works. For that, I suggest taking CS455, Computer Networks. I highly suggest taking it with Jeanna Matthews, she teaches it very hands-on with tools like Wireshark.
## Table of Contents
* Network Protocols
* STP
* CDP
* VLANS (802.1q)
* LAG and LACP
## STP
STP is the Spanning Tree Protocol. STP handles redundant paths with the tree, and also knows about the topography of the network at any point in time. It also is used to disable ports that are connected to themselves, even across switches.
This prevents switching loops from occurring. Very useful when your users make mistakes, so that the entire network doesn't go down.
STP is typically enabled on a port-by-port basis.
## CDP
CDP is the Cisco Discovery Protocol. Packets like this are generally not originated on our network, and rather are originated on the Clarkson OIT's network. It helps identify the Cisco switch that the current device is connected to, and allows quicker debugging when in a pinch. It has a lot of information about the connected port, such as the VLAN tag that is delivered from the switch, the IP address for the switch management, the name of the switch, software versions, and more.
CDP is not something that is really useful, but sometimes you will see it. It can be useful for debugging particularly odd events.
CDP is typically enabled on a port-by-port basis.
## VLANS (802.1q)
VLANs (also known as Virtual Local Area Networks) are used to separate different Level 2 and higher broadcast domains.
VLAN tags that use the 802.1q protocol have a special field in the packet header, just after the source and destination MAC addresses.
There are two possible port modes on our switches (that are relevant). The first, called Access Mode, breaks out a particular VLAN ID's packets on the switch to the port. This allows untagged packets coming from the network to enter a VLAN (transparently to the connected device) on the switch. The second, called Trunk Mode, breaks out one or more VLANs to a particular port, using the 802.1q protocol. Packets that are received on this interface that do not have a VLAN ID are tagged to the "Native" VLAN (which is typically 1 by default, but can be any number as defined per interface on the switch itself).
In COSI, the default VLAN is always 1 (as of writing), and as such, we don't use it for tagged links.
Structure of a VLAN tag:
![VLAN Packet Format](https://upload.wikimedia.org/wikipedia/commons/thumb/0/0e/Ethernet_802.1Q_Insert.svg/1506px-Ethernet_802.1Q_Insert.svg.png "VLAN Packet Format")
VLAN's are typically enabled on a port-by-port basis.
## LAG and LACP
These protcols are used to do link aggregation (hence, "Link Aggregation Protocol" and "Link Aggregation Control Protocol"). Link aggregation takes place at the level 2 layer, and is lower than VLANs and other types of broadcast networks. This means that you can have VLAN tagged networks and other protocols on top of LAG's without any tunneling or other special sauce.
LAG's are used mostly for redundant physical paths for a particular network, as well as increasing total bandwidth possible, by stitching together physical links.
LACP extends LAG's by making the process automatic - you define active and passive participants. The active participant will try to talk with a connected passive participant, and negotiate a LAG, as well as maintaining the state of the lag.
LAGs and LACP are typically enabled on a port-by-port basis.

3
configs/README.md

@ -0,0 +1,3 @@
# configs
This folder contains configuration files for switches.

280
configs/juniper-9-12-18-pub.conf

@ -0,0 +1,280 @@
## Last changed: 2018-09-12 23:03:34 EDT
version 15.1R6.7;
system {
host-name swf-1;
domain-name cslabs.clarkson.edu;
time-zone America/New_York;
root-authentication {
encrypted-password ""; ## SECRET-DATA
}
name-server {
128.153.145.3;
8.8.8.8;
}
login {
user jared {
full-name jared;
uid 100;
class super-user;
authentication {
encrypted-password ""; ## SECRET-DATA
}
}
user xperia64 {
uid 101;
class super-user;
authentication {
encrypted-password ""; ## SECRET-DATA
}
}
}
services {
ssh {
protocol-version v2;
}
netconf {
ssh;
}
web-management {
https {
system-generated-certificate;
}
}
}
ntp {
server 128.153.2.253;
}
}
chassis {
aggregated-devices {
ethernet {
device-count 64;
}
}
auto-image-upgrade;
}
security {
certificates {
local {
priv {
""; ## SECRET-DATA
}
pub {
"-----BEGIN PUBLIC KEY-----\nMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAxdq5kegGdG1O/W6Ny0QN\nIo1M0s6mShDQ8EX4K7GFi5iu8Log76VJ3VQVVmsBb3u682N3jKkrGeLx4J+EYHeL\nIFievk+7ZF7eW2VQyL+ckQf0EPtygpKozmnJu/l6brC3vLeJxWLaI3xaJewazr8B\niYxs29Sc0ttUjrz5OJMUz87wBzmKqGcBFhqj8IP3FbJ3sCXO+5/6rZ5ng7tAY5K9\nuVVOsuK4P6ehI/gbxvyiNq9mgWMOO4mSUZn/F9unG3XmVrQ48ywggx5Dm1EDVoXf\nuouNRaJ6HpSV6l4OIY2CKDoX9calIoyimLDPn+Qb1p8/x/E7AvAkMCThXiC0r6M6\n1QIDAQAB\n-----END PUBLIC KEY-----\n "; ## SECRET-DATA
}
}
}
}
interfaces {
xe-0/0/0 {
description "to OIT sc-334-c2960s";
unit 0 {
family ethernet-switching;
}
}
ge-0/0/1 {
description "to OIT (146)";
unit 0 {
family ethernet-switching {
port-mode access;
vlan {
members 4;
}
}
}
}
xe-0/0/2 {
description "to Ziltoid in";
unit 0 {
family ethernet-switching;
}
}
xe-0/0/3 {
description "to Ziltoid out";
unit 0 {
family ethernet-switching;
}
}
xe-0/0/4 {
description "to mirror";
unit 0 {
family ethernet-switching;
}
}
xe-0/0/9 {
description "to bacon";
unit 0 {
family ethernet-switching;
}
}
xe-0/0/10 {
description "to hydra";
unit 0 {
family ethernet-switching {
port-mode trunk;
vlan {
members [ v2_cosi_priv v4_cosi_146 v5_cosi_voip ];
}
}
}
}
xe-0/0/11 {
description "to elephant";
unit 0 {
family ethernet-switching;
}
}
xe-0/0/12 {
description "temp to Grand Dad";
unit 0 {
family ethernet-switching {
port-mode trunk;
vlan {
members [ v2_cosi_priv v4_cosi_146 v5_cosi_voip ];
}
}
}
}
ge-0/0/20 {
description "to swm1";
ether-options {
802.3ad ae0;
}
}
ge-0/0/21 {
description "to swm1";
ether-options {
802.3ad ae0;
}
}
ge-0/0/22 {
description "to swm1";
ether-options {
802.3ad ae0;
}
}
ge-0/0/23 {
description "to swm1";
ether-options {
802.3ad ae0;
}
}
ge-0/0/24 {
description "to swm2";
unit 0 {
family ethernet-switching {
port-mode trunk;
vlan {
members [ v2_cosi_priv v4_cosi_146 v5_cosi_voip ];
}
}
}
}
ge-0/0/26 {
description "to swm3";
unit 0 {
family ethernet-switching {
port-mode trunk;
vlan {
members [ v2_cosi_priv v4_cosi_146 v5_cosi_voip ];
}
}
}
}
ae0 {
description "to swm1";
aggregated-ether-options {
lacp {
active;
}
}
unit 0 {
family ethernet-switching {
port-mode trunk;
vlan {
members [ v4_cosi_146 v2_cosi_priv v5_cosi_voip ];
}
}
}
}
me0 {
unit 0 {
family inet {
address 128.153.145.20/23;
}
}
}
}
snmp {
location SC-334a;
contact "dunbarj@clarkson.edu";
community cacti {
authorization read-only;
}
}
routing-options {
static {
route 0.0.0.0/0 next-hop 128.153.145.1;
}
}
protocols {
igmp-snooping {
vlan all;
}
stp {
bridge-priority 0;
max-age 6;
hello-time 1;
forward-delay 4;
interface xe-0/0/0.0 {
disable;
}
interface ge-0/0/1.0 {
disable;
}
interface xe-0/0/2.0 {
disable;
}
interface xe-0/0/3.0 {
disable;
}
}
rstp {
disable;
}
lldp {
interface all;
}
lldp-med {
interface all;
}
}
ethernet-switching-options {
voip;
storm-control {
interface all;
}
}
vlans {
default;
v2_cosi_priv {
vlan-id 2;
interface {
xe-0/0/3.0;
xe-0/0/9.0;
xe-0/0/11.0;
ge-0/0/24.0;
ge-0/0/26.0;
}
}
v3_cosi_pub {
vlan-id 3;
}
v4_cosi_146 {
vlan-id 4;
}
v5_cosi_voip {
vlan-id 5;
}
}

3
manuals/README.md

@ -0,0 +1,3 @@
# manuals
This folder contains various manuals for the hardware we have

BIN
manuals/TL-SG3424/TL-SG3424 CLI.pdf

39013
manuals/TL-SG3424/TL-SG3424 Quick Installation Guide.pdf
File diff suppressed because it is too large
View File

BIN
manuals/TL-SG3424/TL-SG3424 Users Guide.pdf

6
packets/README.md

@ -0,0 +1,6 @@
# packet captures
This folder contains packet captures of the packets discussed in `basics.md` where reasonably easy to gather, as well as other packet captures.
* `stp.pacpng` STP packet from swm4
* `cdp.pacpng` CDP packet from OIT's switch in COSI

BIN
packets/cdp.pcapng

BIN
packets/stp.pcapng

Loading…
Cancel
Save