Академический Документы
Профессиональный Документы
Культура Документы
Teleworker Services
CCNA4-1
Chapter 6
Teleworker Services
Business Requirements
for Teleworkers
CCNA4-2
Chapter 6
Chapter 6
CCNA4-4
Chapter 6
CCNA4-5
Chapter 6
Site
Site to
to site
site is
is secure
secure
fast
fast and
and reliable.
reliable.
CCNA4-6
Most
Most common
common option.
option.
Chapter 6
CCNA4-7
Chapter 6
Chapter 6
CCNA4-9
Chapter 6
Router
Router needs
needs QoS
QoS
VPN
VPN Router
Router or
or
VPN
VPN client.
client.
Cable,
Cable, DSL
DSL
CCNA4-10
VPN
VPN capable
capable routers
routers
VPN
VPN concentrators
concentrators
Security
Security appliances:
appliances:
(TACACS,
(TACACS, Radius)
Radius)
Chapter 6
Chapter 6
Teleworker Services
Broadband Services
CCNA4-12
Chapter 6
CCNA4-13
Chapter 6
CCNA4-14
Chapter 6
CCNA4-15
Chapter 6
CCNA4-16
Chapter 6
Cable
The cable in cable system refers to the coaxial cable that
carries radio frequency (RF) signals across the network.
A typical cable operator now uses a satellite dish or
microwave system to gather TV signals.
Early systems were one-way with cascading amplifiers
placed in series along the network to compensate for signal
loss.
Modern cable systems provide two-way communication
between subscribers and the cable operator.
Cable operators now offer customers high-speed Internet
access, digital cable television, and residential telephone
service.
CCNA4-17
Chapter 6
Cable
Main
Main receiving
receiving
antennas
antennas and
and dishes.
dishes.
Where
Where signals
signals
are
are processed
processed
and
and distributed.
distributed.
CCNA4-18
Chapter 6
Cable
Electromagnetic Spectrum:
The cable TV industry uses a portion of the RF
electromagnetic spectrum.
Chapter 6
Cable
DOCSIS:
The Data-over-Cable Service Interface Specification
(DOCSIS) is an international standard developed by
CableLabs.
A non-profit research and development consortium for
cable-related technologies.
CableLabs tests and certifies cable equipment vendor
devices:
Cable modems.
Cable modem termination systems.
Grants DOCSIS-certified or qualified status.
Euro-DOCSIS: Adapted for use in Europe with different
standards.
CCNA4-20
Chapter 6
Cable
DOCSIS:
DOCSIS specifies the Open Systems Interconnection
(OSI) Layers 1 and 2 requirements.
Access
Access method
method regarding
regarding
the
the multiplexing
multiplexing of
of signals.
signals.
Channel Bandwidths Mbits/s
Release
Upstream Downstream
DOCSIS 1.0
38
10
DOCSIS 2.0
40
30
DOCSIS 3.0
160
120
CCNA4-21
Chapter 6
Cable
Delivering Services Over Cable:
Cable
Cable Modem
Modem Termination
Termination System
System (CMTS)
(CMTS)
CCNA4-22
Optical
Optical to
to RF
RF
Conversion
Conversion
Enables
Enables receiving
receiving data
data at
at high
high speeds
speeds
and
and provides
provides aa LAN
LAN attachment
attachment
Chapter 6
Cable
Delivering Services Over Cable:
Hybrid
Hybrid Fiber-Coaxial
Fiber-Coaxial Network
Network (HFC)
(HFC)
Shared
Shared bandwidth
bandwidth can
can be
be adjusted
adjusted for
for congestion.
congestion.
CCNA4-23
Chapter 6
CCNA4-24
Chapter 6
CCNA4-25
Chapter 6
DSL
DSL modem,
modem,
router.
router.
CCNA4-26
Demarc:
Demarc: Network
Network
Interface
Interface Device
Device..
DSL
DSL Access
Access
Multiplexer
Multiplexer
Chapter 6
Broadband Wireless
Wireless networking, or
Wi-Fi, has improved the
connectivity situation, not
only in the SOHO, but also
on enterprise campuses.
Using 802.11 networking
standards, data travels
using the unlicensed radio
spectrum.
Most radio and TV
transmissions are
government regulated and require a license to use.
CCNA4-27
Chapter 6
Broadband Wireless
Until recently, a significant limitation of wireless access has
been the need to be within the local transmission range
(typically less than 100 feet) of a wireless router or wireless
access point that has a wired connection to the Internet.
Once a worker left the office or home, wireless access was
not readily available.
New developments in broadband wireless technology are
increasing wireless availability.
Municipal Wi-Fi
WiMAX
Satellite Internet
CCNA4-28
Chapter 6
Broadband Wireless
Municipal Wi-Fi:
Most municipal wireless networks use a mesh topology
rather than a hub-and-spoke model.
The mesh blankets
its area with radio
signals.
Signals travel from
access point to
access point through
this cloud.
Installation easier.
Faster deployment.
More reliable.
CCNA4-29
Chapter 6
Broadband Wireless
WiMAX:
WiMAX (Worldwide Interoperability for Microwave
Access) is telecommunications technology aimed at
providing wireless data over long distances in a variety of
ways.
WiMAX operates at higher speeds, over greater
distances, and for a greater number of users than Wi-Fi.
Because of its higher speed (bandwidth) and falling
component prices, the WiMAX will soon supplant
municipal mesh networks for wireless deployments.
CCNA4-30
Chapter 6
Broadband Wireless
WiMAX:
Connects
Connects directly
directly
to
to the
the ISP.
ISP.
Two
Two main
main
components
components
3,000
3,000 sq.
sq. miles
miles
7,500
7,500 sq.
sq. km
km
CCNA4-31
Chapter 6
Broadband Wireless
Satellite Internet:
Satellite Internet services are used in locations where landbased Internet access is not available, or for temporary
installations that are continually on the move.
There are 3 ways to connect to Internet using satellites:
One-way multicast are used for IP multicast-based data,
audio, and video distribution.
One-way terrestrial return use traditional dialup access
to send outbound data through a modem and receive
downloads from the satellite.
Two-way satellite sends data from remote sites via
satellite to a hub. The hub then sends the data to the
Internet.
CCNA4-32
Chapter 6
Broadband Wireless
Two-way Satellite Internet:
The
The key
key installation
installation requirement
requirement is
is for
for the
the
antenna
antenna to
to have
have aa clear
clear view
view toward
toward the
the equator.
equator.
Two-way
Two-way satellite
satellite Internet
Internet uses
uses IP
IP multicasting
multicasting technology.
technology.
Allows
Allows one
one satellite
satellite to
to serve
serve up
up to
to 5,000
5,000 channels.
channels.
CCNA4-33
Chapter 6
Teleworker Services
CCNA4-34
Chapter 6
Chapter 6
Chapter 6
Types of VPNs
Site-to-site VPN:
A site-to-site VPN is an extension of classic WAN
networking.
Site-to-site VPNs connect entire networks to each other.
Firewall
Firewall or
or router.
router.
CCNA4-37
Chapter 6
Types of VPNs
Site-to-site VPN:
In a site-to-site VPN, hosts send and receive TCP/IP
traffic through a VPN gateway.
The VPN gateway encapsulates and encrypts outbound
traffic and sends it through a VPN tunnel.
On receipt, the
peer VPN
gateway strips
the headers,
decrypts the
content and
relays the
packet.
CCNA4-38
Chapter 6
Types of VPNs
Remote Access VPN:
Support the needs of telecommuters, mobile users, as
well as extranet consumer-to-business.
VPN
VPN Concentrator,
Concentrator,
Firewall
Firewall or
or router.
router.
CCNA4-39
Chapter 6
Types of VPNs
Remote Access VPN:
Support the needs of telecommuters, mobile users, as
well as extranet consumer-to-business.
Each host typically has VPN client software.
The software encapsulates and encrypts that traffic before
sending it over the Internet.
On receipt, the
VPN gateway
handles the data
in the same way
as it would
handle data from
a site-to-site VPN.
CCNA4-40
Chapter 6
VPN Components
VPN
VPN gateway
gateway endpoints
endpoints
to
to establish,
establish, manage,
manage,
and
and control
control connections.
connections.
VPN
VPN client
client
software.
software.
CCNA4-41
Chapter 6
VPN Components
The key to VPN effectiveness is security.
VPNs secure data by encapsulating and encrypting the
data.
Encapsulation is referred to as tunneling, because
encapsulation transmits data transparently from network
to network through a shared infrastructure.
As if an individual tunnel existed between the
endpoints.
Encryption codes data into a different format using a key.
Decryption decodes encrypted data into the original
unencrypted format.
CCNA4-42
Chapter 6
Chapter 6
VPN Tunneling
Tunneling allows the use of public networks like the Internet
to carry data for users as though the users had access to a
private network.
Tunneling encapsulates an entire packet within another
packet and sends the new, composite packet over a
network.
CCNA4-44
Chapter 6
VPN Tunneling
For example, an e-mail message traveling through the
Internet over a VPN.
Generic
Generic Routing
Routing Encapsulation
Encapsulation
CCNA4-45
Chapter 6
VPN Tunneling
In the example, PPP carries the message to the VPN device,
where the message is encapsulated within a Generic Route
Encapsulation (GRE) packet.
GRE is a tunneling protocol developed by Cisco.
The outer packet source and destination addressing
(Internet IP Addresses) is assigned to "tunnel
interfaces" and is made routable across the network.
Once a composite packet reaches the destination
tunnel interface, the inside packet is extracted.
CCNA4-46
Chapter 6
CCNA4-47
Chapter 6
CCNA4-48
Chapter 6
CCNA4-49
Chapter 6
CCNA4-50
Chapter 6
CCNA4-51
Chapter 6
CCNA4-52
Chapter 6
CCNA4-53
Chapter 6
Chapter 6
CCNA4-55
Symmetric Encryption
Asymmetric Encryption
RSA
Chapter 6
Chapter 6
Something
Something was
was changed!
changed!
CCNA4-57
Chapter 6
Chapter 6
CCNA4-59
Chapter 6
CCNA4-60
Chapter 6
Diffe-Hellman:
Diffe-Hellman:
Allows
Allows two
two parties
parties to
to
establish
establish aa shared
shared
secret
secret key
key used
used by
by
encryption
encryption and
and hash
hash
algorithms
algorithms over
over an
an
unsecure
unsecure line.
line.
CCNA4-61
Chapter 6
Which
Which IPsec
IPsec Protocol?
Protocol?
How
How to
to share
share keys.
keys.
CCNA4-62
Chapter 6