TCP/IP

TCP/IP Objectives

1. IP Addresses
2. Requirements for installing TCP/IP protocol
3. DHCP
4. MPR and Multihomed
5. Methods and Modes of Name Resolution
6. DNS
7. WINS
8. DHCP Relay Agent (DHCP Routing)
9. RIP for Internet Protocol (IP Routing)

***Visit the Internetworking TCP/IP Notes site if you are studying for the TCP/IP exam***

The information below is not hardcore TCP/IP, rather it is intended to present a foundation to build upon.

IP Address

ipaddresstab.gif (6364 bytes)

To install TCP/IP on a non-routed network you must specify the following:

IP address
subnet mask

To install TCP/IP on a routed network you must specify the following:

IP address
Subnet mask
default gateway

The Concept of Gateway

Default gateway (router) - the intermediate device on the LAN that has knowledge of of other network IDs of other networks so it can forward the packets to other gateways until the packet is eventually delivered to a gateway connected to the specified destination.
Gateway - describes multiple physical TCP/IP networks, capable of routing or delivering IP packets between them.

IP Address - an IP address is used to identify a node (any device that is attached to an internetwork. A node can also be referred to as a host) on the network and to specify routing information. Each node on the network must be assigned a unique IP address which is made up of the network ID plus a unique host ID. Example: 200.200.200.5

Subnet - a network in a multiple network environment that uses IP addresses derived from a single network ID

Subnet Mask ... an IP address consists of 4 octets and is usually displayed in the format 200.200.200.5, however this address on its own means very little because a subnet mask is required to show which part of the IP address is the Network ID (group of computers and devices located on the same physical network), and which part the Host ID (identifies a computer within a particular network).

Imagine the Network ID as the Street name, and Host ID as the House number, so with"1 Microsoft Way", "1" would be the Host ID, and "Microsoft Way" the Network ID. The subnet mask shows which part of the IP address is the Network ID, and which part is the Host ID. For example, with an address of 200.200.200.5, and a subnet mask of 255.255.255.0, the Network ID is 200.200.200, and the Host ID is 5.

IP Address and DHCP

If there is a DHCP Server on your network, you do not have to manually specify any of the above as a client. Your distributor will do it for you.

DHCP CANNOT be used exclusively for name resolution. DHCP is your distributor, not your manufacturer. DHCP can

Lease an IP address to clients for each NIC in a computer
Distribute subnet masks
Distribute default gateway (router that connects the subnet to other network segments) addresses
Distribute WINS Server address to hosts.
Distribute DNS Server addresses to clients.)

When a client boots, it broadcasts a message requesting data from a DHCP Server. The receiving DHCP server responds with an IP address assignment for a specified period of time (called a lease period). The client receives the data, integrates the data into its configuration, and completes the boot process. Note: if no IP address is available to lease to a client, the client cannot initialize TCP/IP.

When a lease expires, a DHCP Server can reassign the address to another computer. Client can extend its lease by indicating that it is still using the address. When 50% of the lease period is is reached, a client requests a lease extension -- if needed. If did not receive a lease extension at 50%, it requests an extension from the leasing DHCP server once 87.5 percent of its time period has expired. If at 87.5 the client did not successfully renew its lease, it broadcasts the extension request to all DHCP servers. If no server responds by the time the lease expires, all TCP/IP communications of that client will cease.

Advanced IP Address (Multihomed)

advancedipaddress.gif (6469 bytes)

Multiple IP Addresses on a Single NIC (Multihomed computer)

You can add up to 5 IP addresses (useful for computer connected to one physical network that contains multiple logical networks), 5 subnet masks, and 5 default gateways per NIC. A computer that has been configured for multiple IP addresses for a single NIC is considered a multihomed computer -- not a multihomed system. You CANNOT take advantage of Windows NT Multiprotocol Router (MPR) with this configuration (not actually tested - taking a book's word for this -- for now). If you have information to the contrary, please email me and explain. Thanks. DHCP CANNOT HANDLE THIS.

Multiprotocol Router (MPR)

Enables routing traffic between different subnets over IPX and TCP/IP. You must have 2 NICs installed to take advantage of MPR in Windows NT. Each NIC must be configured to be a part of a different subnet
MPR Services
- RIP (Routing Information Protocol) for TCP/IP (RIP for Internet Protocol) Service
- RIP for IPX (RIP for NWLink IPX/SPX compatible transport) Service
- BOOTTP Relay Agent for DHCP (DHCP Relay Agent) Service
- Services for Macintosh (Routing Tab) Service. Note: Officially, Services for Macintosh is NOT a part of the MPR Service Suite.

"... that is divided into two subnets using the same cable segment." I -think- this means that there is only a single NIC involved and MPR CANNOT be used on a single NIC.

Multihomed System

Multihomed also means 2 or more NICs connected to separate physical networks.

Enable PPTP filtering

PPTP packets only buddy!

Enable Security

I'll get back to you on this one ...

Name Resolution Overview

"A sad wind came, from invisible worlds ... / And she, she asked me about things unknowable / And I answered her with unattainable things."

OK, let's start by making a couple simple ground rules: Numero Uno. The computer name is the NetBIOS name. NetBIOS is specific to x86 Windows environments. Host name is a Unix thing (yes, Windows NT can ALSO be set up with a Host Name). Unix host names were born in Unix environments. The Internet is primarily a Unix environment. "A Unix machine doesn't see the NetBIOS name of your PC. It does see the host name."

The Application layer of TCP/IP:

Socket based applications	NetBIOS Based Applications
Windows Sockets	NetBT (NetBIOS over TCP/IP)
TCP (transport layer)	TCP (transport layer)
IP (Internet layer)	IP (Internet layer)

NetBT resolves NetBIOS names to IP addresses, which then resolve to NIC addresses via ARP cache or broadcast. NetBIOS (network basic input / output system) - is an application program interface (API) that can be used by application programs on a LAN. NetBIOS relies on a message format called Server Message Block (SMB) (Workstation Service installs the client for the SMB protocol). NetBIOS is used for browsing, interprocess communications between network servers, etc. Examples of NetBIOS applications include a Windows 95 machine sharing a directory, or a Windows NT Server sharing a printer, Network Neighborhood, Windows Explorer, blah, blah, blah. NWLink uses NetBIOS Over IPX (NBIPX) to resolve NetBIOS names into IPX addresses. No further resolution is required. NWLink caches NetBIOS names to perform the IPX address mappings. NWLink NetBIOS protocol is automatically installed when installing NWLink IPX/SPX Compatible Transport. NetBEUI protocol is an extension of NetBIOS and will NEVER pass through Windows Sockets.

For Windows Sockets applications, TCP/IP resolves host names to IP addresses, which then resolve to NIC addresses. Windows Sockets - is a Windows implementation of UC Berkley API. Berkley. Unix. Unix. Berkley.

Numero DOS. (no pun intended), As you can see, Name Resolution basically falls into two categories:

NetBIOS over TCP/IP (NetBT) AKA, WINS, LMHOSTS, NetBIOS Name Cache
Domain Name System (DNS) AKA, DNS, HOSTS

We're going explore WINS and DNS configuration GUI. Keep this in mind, If you are connecting your network to the Internet (you get a domain name, IP addresses, etc. from Internic) you'll want to use DNS. If you're not, you're using WINS.

Numero Tres. Just when it all seems to make perfect sense, you find out that you CAN use DNS (you'll see "enable DNS for Windows Resolution" below. It takes DNS name, shaves like 15 characters, and turns it into a NetBIOS name) and a HOSTS file (can be done if only using a HOSTS file) for NetBIOS name resolution. KEY POINT -- consider it an exception to the rule -- understand this, the bottom line function of both WINS and DNS is to resolve a physical computer's name (NetBIOS or and/or Host name) to an IP address (AKA, "I know who you are and where you are!")

On with the show ...

Name Resolution Methods for NetBIOS Names

TCP/IP: Methods can be used to resolve NetBIOS computer names to IP addresses:

NetBIOS Name cache - local cache ...
Windows Internet Name Service (WINS) - WINS is a NetBIOS Name Server (NBNS). Uses a Flat database namespace. Dynamic database. Only one entry per client.
Local Broadcast (only works if computers are on the same subnet)
LMHOSTS file - static list of MS NetBIOS names mapped to IP addresses; stores information to map remote server names to their IP addresses if a WINS server is not available.
**HOSTS file - used to resolve host name to IP addresses.
**Domain Name Server (DNS) Server configured with with DNS daemon that keeps database of the host name /IP addresses mappings. Uses the FQDN hierarchical structure.Typical of UNIX environment. Static database.

Domain Name System (DNS) Name Resolution

tcpipdnssshot.gif (5446 bytes)

DNS - Domain Name Server - "A server configured with the DNS daemon that maintains a database of IP addresses / host name mappings."

Name resolution - process of converting the host name to the IP address.

Once IP address determined, the physical address assigned to the network adapter card can be resolved by ARP (Address Resolution Protocol).

Host Name (by default, this is your computer name but it doesn't have to be) - is used to identify a computer when using a Domain Naming System (DNS) Server for name resolution AND to map computer names to IP addresses. The host name, combined with the domain name, comprise the fully qualified domain name (FQDN) for the computer, which the DNS server links to an IP address.

Domain Name is used in conjunction with the host name for name resolution by a Domain Naming System (DNS) server. It is used to map computer names to IP addresses. The host name, combined with the domain name, comprise the fully qualified domain name (FQDN) for the computer, which the DNS server links to an IP address. Example: In the FQDN 'host.globetrotting.com', 'host' is the host name, and 'globetrotting.com' is the domain name. The domain name contains a naming domain, created by the Internic, to identify the type of the organization, such as .edu for educational institution, .gov for government organization, or .com for commercial organization. DNS domain name DOES NOT = NT Server Domains.

DNS Service Search Order - specify DNS Server IP addresses that will provide name resolution.

DNS Suffix Search Order - specify DNS domain suffixes to append to hosts names during name resolution.

Configuring Microsoft DNS Server Requirements

Before you can configure a DNS Server, you will need this information and it must be approved by Internic for use on the Internet; HOWEVER; if you are building the Server for internal use only, you can decide what names and IP addresses to use. You will need:

Your domain name (must be approved by Internic for use on the Internet)
An IP address of each server for which you will provide name resolution
Host names of each of the Servers in the step above

WINS - Windows Internet Naming Service (AKA, NetBIOS Name Server)

winsaddress.gif (4937 bytes)

WINS (Windows Internet Naming Service) Server (AKA, NetBIOS Name Server [NBNS]) - provides name resolution of NetBIOS computer names. WINS reduces NetBIOS background tracking by eliminating the NetBIOS broadcasts. A WINS client communicates directly with a WINS server to send a resource notification, release its NetBIOS name, or locate a resource.

Enable DNS for Windows Resolution - discussed above.

LMHOSTS - discussed above.

Once IP address determined, the physical address assigned to the network adapter card can be resolved by ARP (Address Resolution Protocol).

A NetBIOS name is:

is the computer name assigned during installation. Example: Server1
NetBIOS name is used for NetBIOS processes to communicate with each other. NetBIOS names are created and registered when services initialize, such as Server and Workstation Service or when a NetBIOS application starts.
can be changed in Network Control Panel applet
can be determined by typing "nbtstat -n" at a command prompt
15 characters long
Every machine on the same network must have a unique NetBIOS name, even if in different domains.

DHCP Routing

dhcprelay.gif (5060 bytes)

DHCP Routing: If your DHCP server is located across a router, you?ll need to install the DHCP Relay Agent Service on the router to forward DHCP broadcasts. A single DHCP Server can support multiple subnets connected by the NT Multi-Protocol Router (MPR ).

IP Routing

tcprouting.gif (2739 bytes)

What is Routing Information Protocol (RIP)?

Routing Information Protocol. A protocol used to exchange routing information with neighboring routers. You can use BOTH RIP for Internet Protocol and RIP for NWLink IPX/SPX compatible transport on the same network at the same time.

Routing and IP: RIP for Internet Protocol Service

NT can be a dynamic IP router or a static IP router or a

Dynamic IP routing: enabled when RIP for Internet Protocol Service is installed. No further configuration required. The "Enable IP Routing" checkbox in the Properties > TCP/IP protocol> Routing Tab is automatically checked. It runs as a service and can be started and stopped just like any other process. Dynamic routing has the following advantages:
- Routers communicate with each other (disadvantage: increases network traffic)
- Changes in network topology, such as a router being down, is broadcast by other routers to neighboring routers.
- Routers make periodic broadcasts to each with all known routing information
Static IP routing: reduces network traffic; however, static routers don't communicate with one another. Routing tables must be created and kept up manually. To enable static routing (CORRECTION: RIP for Internet Protocol SHOULD NOT BE INSTALLED)
- CP > Network Applet > Services > RIP for Internet Protocol > Remove
- Protocols Tab > TCP/IP > Properties > Routing Tab > check "Enable IP Forwarding"

Routing Table

Built automatically by Windows NT based on IP configuration of your computer, routing tables control the routing decisions made by computers running TCP/IP.

Install RIP for NWLink IPX/SPX compatible transport Service?

CP > Network Applet > Services > RIP for NWLink IPX/SPX compatible transport
Dialog box: "NetBIOS Broadcast Propagation (packets of broadcast type 20) is disabled. If you use NetBIOS over IPX, choose "Yes." SAP Agent Service is automatically installed with RIP for NWLink IPX/SPX compatible transport
Service
After installing RIP for NWLink IPX/SPX compatible transport, you MUST: Network Applet > Protocols Tab > NWLink IPX/SPX compatible transport > Properties > Routing Tab > check "Enable RIP Routing." This is NOT done by default.

Service for Services for Macintosh (as an AppleTalk Router)?

CP > Network Applet > Services > Services for Macintosh > Properties > Routing Tab > check "EnableRouting."
Check or don't check "Use this router to seed the network" ...
- Seed Router - Initializes and broadcasts routing information concerning one or more physical networks. Tells routers where to send data packets. Defines network number(s) and zone(s) for a network. Seed Router always needs to be booted prior to any non-seed routers for non-seed routers to establish a correct network context
- Non-seed Router - guess it doesn't do what Seed Router does ;-)