Network Plus 2005 In Depth
.pdf
842 Index
Java System Directory Server Enterprise Edition, 445 jobs, finding, 20–21
jumper, 205, 240
K
Ka-band frequency, 325
Kbps (1 kilobit per second), 120
KDC (Key Distribution Center), 650, 659 kerberos, 649–651, 659
kernel module, 425, 445 kernels, 424
definition, 445
for UNIX-type operating systems, 424–425 key, 659
Key Distribution Center (KDC), 650, 659 key encryption, 636–637, 655
key management, 644, 659 key pair, 640, 659
kill process command, 429 Ku-band frequency, 325
L
L2TP (Layer 2 Tunneling Protocol), 338, 346 label, 186
LAN Emulation (LANE), 269, 285 LAN gateway, 233
LAN (local area networks), 6–7, 25, 490, 592–593, 631 LANE (LAN Emulation), 269, 285
last mile. See local loop late collisions, 553, 561 latency
definition of, 127 transmission flaw, 79–80
Layer 2 Tunneling Protocol (L2TP), 338, 346 Layer 3 switch, 227–228, 240
Layer 4 switch. See Layer 3 switch layer problems, physical, 533–536 L-band frequency, 325
LC (Local Connector), 127
LDAP (Lightweight Directory Access Protocol), 365, 408
leadership abilities, 19
leaf objects, 367, 408, 463 leasing
DHCP, 155–156 terminating DHCP, 156–157
LED indicators, 209
LEO (low earth orbiting), 324, 346 Level 1 wire, 127
license tracking, 16, 25 licensing, 368–369
fees, 418 per seat, 369
per server, 394 per user, 368 for servers, 466 site license, 369
software license, 419
Lightweight Directory Access Protocol (LDAP), 365, 408
line conditioning, 579 line-of-sight (LOS), 111, 127 line-of-sight (uLOS), 81 line printer daemon. See lpd
line printer daemon (lpd), 445
link segment. See uLOS (line-of-sight) Linux, 420
definition, 445
hardware requirements, 422–423 installing, 432
server, 422–423
teachers group for, 434–435
users and groups establishing on, 434–435 workstation, 362
LLC (Logical Link Control) sublayer, 46, 57 LNK light, 209
load balancing, 15–16, 25, 584–585, 608 local accounts, 399, 409
local area networks (LAN), 6–7, 25, 490, 592–593, 631 local collisions, 553, 561
Local Connector (LC), 127 local loop, 300, 346
locks, 625–626, 654 logical addresses, 148
logical connectivity, 536–537
Logical Link Control (LLC) sublayer, 46, 57 logical topology, 256–257, 285
Login dialog box, 472 login directory, 425 logon problems, 531 logon process, 360 logon restrictions, 634
loopback adapter. See loopback plug loopback address, 150, 186 loopback plug, 213, 240
loopback test, 150, 186
LOS (line-of-sight), 111, 127
low earth orbiting (LEO), 324, 346 lpd (line printer daemon), 445
lpr command, 446 lpr file command, 429 ls command, 430
ls -la command, 428
M
MAC addresses, 46, 57, 148
MAC (Media Access Control) sublayer, 46, 57 Mac OS X Server, 418, 420, 423
definition, 446
hard disk component for, 423 hardware requirements, 423 memory component for, 423 system component, 423 teachers group for, 435
users and groups establishing on, 435–437 macro viruses, 569–570, 574, 608
magnetic tape, 596–597 mail group, 434
mail retrieval protocol, 500 mail services, 14–15
definition of, 25 TCP/IP, 498–501
main bus. See bus maintenance, cost of, 81
managed hubs. See intelligent hub management information base (MIB), 681, 700
management systems, change, 544–545, 561, 567 man command, 429
MAN (metropolitan area network), 8, 25 manual pages, 427–428, 446
manuals, 539 map, 409
Index 843
mapping, 361
Marketing Department, 531 mask, 152
MAUs (Multistation Access Units), 215, 240 maximum transmission unit (MTU), 40–41, 57 Mbps (1 megabit per second), 120
MCSE (Microsoft Certified Systems Engineer), 26 certification, 19–20
definition of, 25 measurements, baseline, 678–680
Mechanical Transfer Registered Jack (MT-RJ), 128 media, 595, 605
backup, 595–598 converters, 81–82, 127 optical, 596
Media, Domain 1.0, 706–708
Media Access Control (MAC) sublayer, 46, 57 medium earth orbiting (MEO), 324, 346 member servers, 386, 409
memory, 373 component, 422–423
EEPROM (electrically erasable programmable readonly memory), 203, 212, 238
model, 378–379, 424
physical memory, 373, 410, 424 range, 211–212, 240
requirements for Windows Server 2003, 378 virtual memory, 373, 379, 412, 424
MEO (medium earth orbiting), 324, 346 mesh topology WAN, 297, 346
message switching, 258, 285 Metaframe option, 335, 347
metropolitan area network (MAN), 8, 25 mget command, 171
MIB (management information base), 681, 700 Microsoft Certified Systems Engineer (MCSE), 26
certification, 19–20 definition of, 25
Microsoft Challenge Authentication Protocol, version 2 (MS-CHAPv2), 647, 660
Microsoft Challenge Authentication Protocol (MSCHAP), 646–648, 647–648
Microsoft Challenge Handshake Authentication Protocol, version 2 (MS-CHAPv2), 659
Microsoft Challenge Handshake Authentication Protocol (MS-CHAP), 660
844 Index
Microsoft Directory Synchronization Services (MSDSS), 402, 409
Microsoft Management Console (MMC), 382–384, 409
Microsoft Windows Services for NetWare, 402, 409 middleware, 362, 409
milestones, 669, 700
MIME (Multipurpose Internet Mail Extensions), 499, 519
mirroring, 604, 608 disk, 588–589 server, 585–586
mkdir dir command, 429
MMC (Microsoft Management Console), 382–384, 409
MMF (multimode fiber), 95–97, 127 mobile, 127
mobile system vs. fixed wireless system, 114 modal bandwidth, 98, 127
modem, 127
modifying authentication protocols, 647–648 modular router, 228, 240
modulation
AM (amplitude modulation), 122 data, 69–70
definition of, 127
FM (frequency modulation), 126 monitor, network, 552–554 Monitor menu, 457, 477 motherboard, 26
mount process, 446 mput command, 171
MRTG (Multi Router Traffic Grapher), 682–683, 701
MS-CHAP (Microsoft Challenge Handshake Authentication Protocol), 646–648, 647–648, 660
MS-CHAPv2 (Microsoft Challenge Authentication Protocol, version 2), 647, 659–660
MSDSS (Microsoft Directory Synchronization Services), 402, 409
MT-RJ (Mechanical Transfer Registered Jack), 128 MTU (maximum transmission unit), 40–41, 57 multicast address, 161, 186
multicasting, 146, 186 multimeter, 548–549, 561
multimode fiber (MMF), 95–97, 127 multipath signals, 111–112, 128 multiplexer (mux), 72–73, 128 multiplexing, 72–74, 128 multiprocessing, 374–375
asymmetric multiprocessing, 406 definition, 409
symmetric multiprocessing, 411, 456 for UNIX-type operating systems, 424
multiprotocol networks, 136, 186
Multipurpose Internet Mail Extensions (MIME), 499, 519
Multi Router Traffic Grapher (MRTG), 682–683, 701
Multistation Access Units (MAUs), 215, 240 multitasking, 373–374, 409
mutual authentication, 647, 660 mux (multiplexer), 72–73, 128 mv file1 file2 command, 429
N
name servers, 165, 187 name space, 187 namespace, 390, 409
naming conventions, 390–392, 463–464 narrowband, 113, 128
NAS (network attached storage), 591–593, 605, 609 native file access, 472–473
NAT (Network Address Translation), 494–496, 519 nbtstat utility, 503–504, 519
NDS (NetWare Directory Services), 477 needs assessment process, 697–698, 701 negative frame sequence checks, 553–554, 561 Net+ (Network+), 26
Net+ (Network+) certification, 19
NetBEUI (NetBIOS Enhanced User Interface), 176–178, 187
NetBIOS (Network Basic Input Output System), 176–178, 187, 503
NetDrive, 473, 477
net mask. See subnet mask NETMON, 561
netstat utility, 429, 502–503, 520 NetStorage tool, 474, 478
NetWare Directory Services (NDS), 477
NetWare Integrated Kernel, 478
NetWare loadable modules (NLMs), 456, 478, 552 NetWare network operating system, 451–480
client services, 471–474 eDirectory, 460–464
establishing users and groups, 468–471 file system, 458–460
hardware requirements, 455 installing and configuring, 466–471 integrated Kernel, 456–458
networking with other operating systems, 474–475 overview of, 452–454
planning for installation of, 464–466
NetWare schema, 468
Network+ examination objectives, 524, 705–714 Network+ (Net+) certification, 19
Network+ practice exam, 715–738 network access method. See access
network adapter. See Network Interface Cards (NICs) Network Address Translation (NAT), 494–496, 519 network addresses, 42–43, 57, 148
network administrators, 567
network analyzer. See protocol analyzer
network attached storage (NAS), 591–593, 605, 609 network backups, 598
Network Basic Input Output System (NetBIOS), 176–178, 187, 503
network cables, 535 network class, 148, 187 network design, 627–633
network elements, organizing, 365–368 Network File System (NFS), 426, 446 network ID, 148–149, 187, 484
AppleTalk network number, 179, 183 external network number, 185
Network Implementation, Domain 3.0, 711–712 Network Interface Cards (NICs), 9–10, 26, 194–215
installing, 203–215 choosing NIC, 213–215 NIC hardware, 203–205 NIC software, 205–213
types of, 195–202
internal bus standards, 195–198 on-board NICs, 202
peripheral bus standards, 198–201 wireless NICs, 202
network key, 651, 660
Index 845
Network layer definition of, 57
in OSI Model, 48–49
network management, 678–684, 701 asset management, 683–684
obtaining baseline measurements, 678–680 performance and fault management, 680–683
network monitor, 552–554, 561–562 Network News Transport Protocol (NNTP),
172–173, 187 network node, 494
network number. See network ID
network operating systems. See NOS (network operating systems)
network prefix. See network ID
network problems. See troubleshooting network problems
network service providers (NSPs), 293, 347 network services, 26
network status map, 681–682
Network Support, Domain 4.0, 713–714 Network Termination 1 (NT1), 306, 347 Network Termination 2 (NT2), 306–307, 347 Network Time Protocol (NTP), 172, 187 network topologies, 604
networked workstations, adding, 693 networking hardware. See hardware networking media, 80–83
networking professional, becoming, 16–22 developing soft skills, 18–19
finding work in, 20–21
joining professional associations, 21–22 mastering technical challenges, 17–18 pursuing certification, 19–20
networking standards, 31–36 networking terms, 24–28 networks
how used, 13–16 reasons for using, 2 types of, 3–8
client/server network, 4–6 local area network (LAN), 6–7
metropolitan area network (MAN), 8 peer-to-peer network, 3–4
wide area network (WAN), 8 newsgroups, 172, 187
newspaper, searching for work in, 20
846 Index
New Technology File System (NTFS), 381–382, 409 NFS (Network File System), 426, 446
NIC component
for Linux server, 422
for Mac OS X Server, 423 for Solaris 10, 422
NICs. See Network Interface Cards (NICs) NLMs (NetWare loadable modules), 456, 478, 552 NNTP (Network News Transport Protocol),
172–173, 187 nodes, 10
AppleTalk node ID, 178, 183 definition of, 26
i-node (information node), 430, 445 network node, 494
relationships between, 74 noise, 577, 580
definition of, 128 immunity, 82–83
and fiber-optic cable, 97 of STP and UTP, 90
transmission flaw, 67, 77–78 in wireless signals, 113
NOS (network operating systems), 5–6, 10, 355–375, 402–403
definition of, 26 internetworking, 402–403
networking NetWare network operating system with other, 474–475
overview of, 355–359 security, 633–634
services and features, 359–375 client support, 360
identifying and organizing network elements, 365–368
managing system resources, 372–375 sharing applications, 368–370 sharing printers, 370–372
upgrades, 689–691
NOS upgrades, 699 Novell Client, 471
Novell Storage Services (NSS), 458, 472, 478 nslookup utility, 504–505, 520
NSPs (network service providers), 293, 347 NSS (Novell Storage Services), 458, 472, 478
-n switch, 174, 502
NT1 (Network Termination 1), 306, 347 NT2 (Network Termination 2), 306–307, 347 Nterprise Linux Services, 475, 478
NTFS (New Technology File System), 381–382, 409 NTP (Network Time Protocol), 172, 187
NWLink IPX/SPX/NetBIOS Compatible Transport protocol, 179–180
O
object, 365, 409 object selector, 471
obsolescence, cost of, 81
OC (Optical Carrier), 320, 347 octets, 148, 187
offline UPS (standby UPS), 578, 609–610 ohmmeter, 548, 562
omnidirectional antenna, 110–111, 128 on-board NICs, 202, 240
on-board ports, 202, 240 one-way trust, explicit, 389, 407 online backups, 598, 609 online UPS, 578, 609
open command, 171 Open Directory, 446 Open Group, 417, 447
OpenLDAP application, 446
Open Shortest Path First (OSPF), 232, 241 open source software, 419, 446
open source UNIX, 418–419 OpenSSH protocols, 660
Open Systems Interconnection (OSI) Model, 36–51, 619–620
Application layer, 38 applying, 47–51
communication between two systems, 48–50 frame specifications, 50–51
Data Link layer, 44–47 definition of, 58 Network layer, 42–44 Physical layer, 47 Presentation layer, 38–39 Session layer, 39 Transport layer, 39–42
operating systems. See NOS (network operating systems); UNIX-type operating system
Optical Carrier (OC), 320, 347 optical loss, 128
optical media, 596, 609
optical time domain reflectometers (OTDRs), 551, 562
options, 139, 144. See also Metaframe option oral communications, 18
organizational units (OUs), 367, 386, 410, 461–463 OSI. See Open Systems Interconnection
OSPF (Open Shortest Path First), 232, 241 OTDRs (optical time domain reflectometers),
551, 562
OUs (organizational units), 367, 386, 410, 461–463 overhead, 69, 128
P
P2P networks, 4, 26 packet, 50
packet-filtering firewalls, 628–631, 660–661 Packet Internet Groper (PING), 173–174, 188 packet switching, 258, 286, 303
padding, 139, 145, 263, 286 paging, 373, 410
PANs (personal area networks), 276, 286
PAP (Password Authentication Protocol), 646, 660 parallel backbone, 255–256, 286
parity error checking, 590, 609 parity mechanism, 609
partial mesh topology, 580 partial mesh WAN, 297, 347 partitions, 380, 410 pass/fail test, 549
passive hubs, 216, 241 passive scanning, 272, 286
Password Authentication Protocol (PAP), 646, 660 passwords, 635, 655
patch cable, 102, 128 patch panel, 102, 128
patches, 684–685, , 699, 701 patterns, 465–466, 478
PBX (private branch exchange), 512, 520
Index 847
PC Card, 198, 241 pcAnywhere, 332 PCIe. See PCI Express PCI Express, 196, 241
PCI (Peripheral Component Interconnect), 196, 241 PCIx. See PCI Express
PCMCIA (Personal Computer Memory Card International Association), 198, 241
PDAs (personal digital assistants), 114, 128 PDs (powered devices), 264, 286
PDUs (protocol data units), 37, 50, 58 peer-to-peer network, 3–4, 26
performance management, 680–683, 698, 701 performance testers, 551, 556
peripheral bus standards, 198–201
Peripheral Component Interconnect (PCI), 196, 241 permanent virtual circuits (PVCs), 303, 348 permissions, file access, 437
per seat, 369, 410 per server, 394, 410
personal area networks (PANs), 276, 286 Personal Computer Memory Card International
Association (PCMCIA), 198, 241 personal digital assistants (PDAs), 114, 128 per user, 368, 410
PGP (Pretty Good Privacy), 641, 660 phase, 66, 128
physical address. See MAC address physical connectivity, verifying, 533 Physical layer, 37, 533
definition of, 58
in OSI Model, 48, 50 preventing failures in, 108 problems, 533–536
summery of networking standards, 99–100 physical memory, 373, 410, 424
physical plant changes, 692–697
adding or upgrading equipment, 693–695 backbone upgrades, 696–697
cabling upgrades, 695–696 reversing hardware changes, 697
physical topologies, 246, 250–251 bus topology, 246–248 definition of, 286
ring topology, 248–249 star topology, 249–250
848 Index
piconet, 277, 286
pilot networks, 676–677, 698, 701
PING (Packet Internet Groper), 173–174, 188 pinging, 173, 187
pipe, 431, 446 pipeline, 431, 446
plain old telephone service (POTS), 299 planning, contingency, 676
plant changes. See hardware platform component, Solaris 10, 422 plenum, 128
PoE (Power over Ethernet), 264–265, 286 pointing device
Linux server, 423 Windows Server 2003, 378
point-to-point, 128
Point-to-Point Protocol over Ethernet (PPPoE), 331, 347
Point-to-Point Protocol (PPP), 331, 347, 646 point-to-point transmission, 74 Point-to-Point Tunneling Protocol (PPTP),
337–338, 347 polling, 680, 701
polymorphic viruses, 572, 609 pools, 459–460, 478
POP (Post Office Protocol), 499–500, 520 populated segment, 81, 128
port forwarding, 643, 660 port number, 158, 188 ports
blocking ports, 629 data ports, 215, 238 destination port, 138
dynamic and private ports, 158, 184 on-board ports, 202, 240
and sockets, 158–160 source port, 138 unprotected ports, 619–620 uplink port, 215, 242
USB (universal serial bus) port, 199–200, 242 well known ports, 158, 190
Post Office Protocol (POP), 499–500, 520 POTS (plain old telephone service), 299 power flaws, 576–577
power loss, 603
Power over Ethernet (PoE), 264–265, 286 power sourcing equipment (PSE), 264, 286 powered devices (PDs), 264, 286 PowerPC, 446
PPPoE (Point-to-Point Protocol over Ethernet), 331, 347
PPP (Point-to-Point Protocol), 331, 347, 646 PPTP (Point-to-Point Tunneling Protocol),
337–338, 347 preamble, 286 preamble signals, 263 predecessor, 701
preemptive multitasking, 374, 410 presentation layer, 48–49, 58, 360 Pretty Good Privacy (PGP), 641, 660 Primary Rate Interface (PRI), 306, 348 print server, 370
print services, 13, 26 printer queue, 371, 410 printers
networked, 694 sharing, 370–372
private branch exchange (PBX), 512, 520 private key encryption, 637–638, 660, 662 private ports, 158
probe, 272, 286 process, 374, 410
processor component, Linux server, 422 professional associations, joining, 21–22 programmers, 416
programming environments, 416 projects
feasibility, 670 management, 668–778
assessing needs, 671–672 determining project feasibility, 670 project planning, 673
setting project goals, 672–673 testing and evaluation, 677–678
planning, 673
setting goals, 672–673
testing management, 677–678 promiscuous mode, 552, 562
propagation, signal, 111–112 proprietary UNIX, 418, 446 protocol analyzers, 554–556, 562
protocol data units (PDUs), 37, 50, 58 protocols, 11, 26, 36–37, 135–192
AppleTalk, 178–179
binding protocols on Windows XP workstation, 179–180
Domain 2.0, 708–711 IPX/SPX (Internetwork Packet
Exchange/Sequenced Packet Exchange), 175–176
NetBIOS and NetBEUI, 176–178 overview of, 136
security risks with, 620–621 for servers, 465
TCP/IP (Transmission Control Protocol/Internet Protocol), 137–174
addressing in IPv6 (IP version 6), 160–161 addressing in TCP/IP, 148–152
assigning IP addresses, 152–158
host names and DNS (domain name system). See host names
sockets and ports, 158–160
TCP/IP Application Layer Protocols, 169–174 proxy, 660
proxy servers, 631–632, 656–657, 660 proxy services, 655, 661
ps -ef command, 428
PSE (power sourcing equipment), 264, 286 PSTN (Public Switched Telephone Network),
299–302, 348 -p switch, netstat, 503
public key encryption, 640
public key encryption (asymmetric encryption), 640, 657, 661
public key server, 639, 661 public network, 494
public relations specialist, 625 public rights, 633–634
Public Switched Telephone Network (PSTN), 299–302, 348
punch-down block, 102, 128 put command, 171
PVCs (permanent virtual circuits), 303, 348
Index 849
Q
QoS (quality of service), 269, 286 quit command, 171, 644
R
radiation pattern, 110, 128 radiofrequency interference (RFI), 77, 129
RADIUS (Remote Authentication Dial-In User Service), 645, 661
RADIUS server, 661
RAID (Redundant Array of Independent Disks), 587–588, 604–605, 609
RARP (Reverse Address Resolution Protocol), 147, 188
RAS (Remote Access Service), 329, 348 RC4 technique, 640, 661
-r command, netstat, 429, 502
RDN (relative distinguished name), 391, 410 RDP (Remote Desktop Protocol), 332–333, 348 reassembly, 41, 58
reassociation, 272, 286 recordable DVD, 596, 610 recovery contingencies, 601–602 recovery planning, 601
recruiters, enlisting to find work, 21 Red Hat Enterprise, 419 redirector, 360, 410
redundancy, 567, 582, 584–585, 604, 610 Redundant Array of Independent Disks (RAID),
587–588, 604–605, 609 reflection, 111, 129 regeneration, 79, 129
Regional Internet Registries (RIRs), 35, 58 Registered Jack 11 (RJ-11), 129
Registered Jack 45 (RJ-45), 129 registered ports, 158, 188 relationships, 388–390
relative distinguished name (RDN), 391, 410 release
definition of, 188 TCP/IP settings, 156
remote access, 632 definition of, 348 protocols, 331–332
850 Index
Remote Access Service (RAS), 14, 329, 329–330, 348, 655. See also access server
Remote Authentication Dial-In User Service (RADIUS), 645, 661
remote connectivity, 328–336 dial-up networking, 328–329 remote access protocols, 331–332 remote access servers, 329–330
remote control, 332–335, 349, 632–633 terminal services, 335
Web portal, 336
Remote Desktop feature, 332, 348
Remote Desktop Protocol (RDP), 332–333, 348 Remote Manager, 457, 468, 478
remote user, 13, 27
removable disk drives (external disk drives), 597–598, 610
Rendezvous, 169, 188 repeaters, 79, 129, 215–218 replication, 386, 411, 585, 610
Request to Send/Clear to Send (RTS/CTS), 271, 287 reserved, 139
reserved addresses, 486 resolutions, recording, 543–544 resolvers, 164, 188
resource record, 165, 183, 188 resources, 2, 701
definition of, 27 restrict access to, 437
response policy, 625 restoration of data, 16 restore, 27 restrictions, logon, 634
results, problem solutions, 541
Reverse Address Resolution Protocol (RARP), 147, 188
reversing software upgrades (backleveling), 691–692, 699–700
revisions, 684–685
RFI (radiofrequency interference), 77, 129 RG-6 cable, 129
Rijndael algorithm, 638, 661
ring topology, 248–249, 257, 287, 295, 348
RIP (Routing Information Protocol), 231–232, 241 RIRs (Regional Internet Registries), 35, 58
risers, 129
risks, security. See security RJ-11 (Registered Jack 11), 129 RJ-45 (Registered Jack 45), 129 rmdir dir command, 429
rm file command, 429 root, 433, 446
root domains, 388, 411 root servers, 164, 188
round trip time (RTT), 79, 129 routable, 137, 188
route, 58
router capable, 512 routers, 43, 227–233, 241
adding, 694–695 brouter, 233 definition of, 58
features and functions, 228–231 modular router, 228, 240
router capable, 512 routing protocols, 231–232 and subnets, 490–491
Routing and Remote Access service (RRAS), 330, 348
Routing Information Protocol (RIP), 231–232, 241 routing protocols, 231, 241
routing switch. See higher-layer switches; Layer 3 switch
routing table, 493 royalties, systems sold, 419
RRAS (Routing and Remote Access service), 330, 348
RSA algorithm, 640, 661 -r switch, 174
for nbtstat, 504 for netstat, 503
RTS/CTS (Request to Send/Clear to Send), 271, 287 RTT (round trip time), 79, 129
runts, 224, 242, 553, 562 RX light, 209
S
safety precautions, 695
sags (brownouts), 576–577, 606, 610 Samba file system, 426, 440, 446
SANs (storage area networks), 593–594, 605, 610 satellites, 324–327
S-band frequency, 325 scalability
of fiber-optic cable, 97 networking media, 81 of solution, 538
of STP and UTP, 90 scalable, 27
scanning, 287
active, 271–272, 283 heuristic, 573, 608 passive, 272, 286 signature, 573, 610
scattering, 111, 129 scatternet, 277, 287 SCO Group, 417, 447 scope of change, 537–538
scp filename1 filename2 command, 643 SCP (Secure CoPy), 643, 661
screening firewalls (packet-filtering firewalls), 628–631, 660–661
SC (Subscriber Connector or Standard Connector), 129
SDH (Synchronous Digital Hierarchy), 319, 349 second-level support analyst, 543
Secure CoPy (SCP), 643, 661
Secure File Transfer Protocol (SFTP), 643–644, 662 secure passwords, 655
Secure Shell (SSH), 642–643, 661–662
Secure Sockets Layer (SSL), 641–642, 661–662 security, 483, 615–666
audits, 16, 27, 616–617, 653, 661 authentication protocols, 644–651
CHAP and MS-CHAP, 646–648
EAP (Extensible Authentication Protocol), 649 PAP (Password Authentication Protocol), 646 RADIUS and TACACS, 645
default settings, 621
Index 851
effective security policy, 622–625 e-mail, 641
Encapsulating Security Payload (ESP), 644, 658 encryption, 636
IPSec (Internet Protocol Security), 644 key encryption, 636–637
PGP (Pretty Good Privacy), 641 private key encryption, 637–638 public key encryption, 639–640 SCP (Secure CoPy), 643
SFTP (Secure File Transfer Protocol), 643–644 SSH (Secure Shell), 642–643
SSL (Secure Sockets Layer), 641–642 groups for, 364
IEEE 802.11i security protocol, 653 implications, 538
Internet access, 621–622
Internet Protocol Security (IPSec), 659 Intranets policies, 498
IPSec (Internet Protocol Security), 644, 659 network operating system (NOS), 633–634 physical, 625–627
policies, 498, 654, 662 content, 624 effective, 622–625 goals, 622–624
proxy servers, 631–632 remote access, 632 risks, 617–622, 654 security risks, 617–622
system security, 633–634 through groups, 364, 438
TLS (Transport Layer Security), 642, 663 transmission risks with, 619–620
wireless network, 651–653 wireless network security, 651–653
segment, 10, 27, 40, 58 segmentation, 40, 58 self-healing, 349
Sequence Control field, 274 sequence number, 138
Sequenced Packet Exchange (SPX), 175, 188 sequencing, 41, 58
serial backbone, 252–253, 287