11 module configuring novell ipx

731 views
598 views

Published on

about ccna

Published in: Education
0 Comments
1 Like
Statistics
Notes
  • Be the first to comment

No Downloads
Views
Total views
731
On SlideShare
0
From Embeds
0
Number of Embeds
3
Actions
Shares
0
Downloads
0
Comments
0
Likes
1
Embeds 0
No embeds

No notes for slide

11 module configuring novell ipx

  1. 1. Configuring Novell IPX
  2. 2. Objectives <ul><li>Upon completion of this chapter, you will be able to perform the following tasks: </li></ul><ul><li>Describing basic IPX operation </li></ul><ul><li>Determining the required IPX network number and encapsulation type for given interfaces </li></ul><ul><li>Enable the Novell IPX protocol </li></ul><ul><li>Verify IPX connectivity </li></ul><ul><li>Configure and monitor IPX Access Lists and SAP traffic filters </li></ul>
  3. 3. Cisco Routers in NetWare Networks NetWare File Server NetWare File Server
  4. 4. Novell NetWare Protocol Stack . 1 2 3 4 5 6 7 RIP SAP NCP NETBIOS NSLD IPX (Internetwork Packet Exchange) Media Access Protocols (Ethernet, Token Ring, WAN, others) - Physical Data Link Network Session Transport Presentation Application Novell Netware Protocols OSI Reference Model APPLICTION SPX
  5. 5. Key Novell NetWare Features <ul><li>Address is 80 bits(network.node) </li></ul><ul><li>Interface MAC address is part of logical address </li></ul><ul><li>Multiple LAN encapsulations per interface </li></ul><ul><li>Default routing protocol is IPX RIP </li></ul><ul><li>Novell services are advertised using SAP </li></ul><ul><li>NetWare clients find servers with GNS packets </li></ul>
  6. 6. Novell IPX Addressing E0 E1 S0 0000.0c56.de33 0000.0c56.de34 0000.0c56.de33 48 bits (from MAC) Network 4a1d Network 2c Network 3f Network.Node Up to 32 bits
  7. 7. Basic NetWare Operation(cont.)
  8. 8. Determining the IPX Network Number <ul><li>Ask the NetWare administrator </li></ul><ul><li>Use Cisco IOS commands to determine the IPX network number a neighbor Cisco router </li></ul><ul><li>Use NetWare commands to check on the NetWare file server/router </li></ul>
  9. 9. Multiple Novell Encapsulations Four types of Ethernet framing Novell name Framing structure (default for NetWare 3.11 and earlier version) (default for NetWare 3.12 and later version) <ul><li>Ethernet_802.3 </li></ul><ul><li>Ethernet_SNAP </li></ul><ul><li>Ethernet_802.2 </li></ul><ul><li>Ethernet_11 </li></ul>802.3 IPX 802.3 802.2LLC IPX Ethernet IPX 802.3 802.2 LLC SNAP IPX
  10. 10. Cisco Encapsulation Type Novell IPX Name Cisco IOS Name Ethernet_802.3 Ethernet_802.2 Ethernet_11 Ethernet_SNAP Novell-ether sap arpa snap Token-ring Token-ring_SNAP sap snap FDDI_SNAP FDDI_802.2 FDDI_Raw snap sap novell-fddi Ethernet Token Ring FDDI Specify encapsulation when you configure IPX networks
  11. 11. Novell Uses IPX RIP for Routing RIP SAP TABLES RIP SAP TABLES RIP SAP TABLES RIP SAP TABLES <ul><li>Uses ticks (about 1/18 sec.) and hop count (maximum of 15 hops) </li></ul><ul><li>RIP broadcasts routing information t the neighbor router every 60 seconds, by default </li></ul><ul><li>SAP broadcasts NetWare services information to neighbor routers every 60 seconds, by default </li></ul>
  12. 12. Service Advertising Protocol(SAP) Server advertises print service Server advertises file service Router A listens to SAPs Client <ul><li>SAP packets advertise all NetWare networks services </li></ul><ul><li>Can add excessive broadcast traffic to the network </li></ul>SAP SAP SAP table
  13. 13. Get Nearest Server Protocol(GNS) NetWare Client File Serve GNS request GNS reply <ul><li>GNS is a broadcast from a client needing a server </li></ul><ul><li>NetWare server and Cisco router get this SAP packet </li></ul><ul><li>NetWare server provides GNS response </li></ul>
  14. 14. Novell IPX Configuration Task <ul><li>Global configuration </li></ul><ul><ul><li>IPX routing </li></ul></ul><ul><ul><li>Load sharing </li></ul></ul><ul><li>Interface configuration </li></ul><ul><ul><li>Network numbers </li></ul></ul><ul><ul><li>Encapsulation type </li></ul></ul>RIP RIP Network 9e encap arpa Network 4a encap snap IPX
  15. 15. Novell IPX Global Configuration Router (config) # ipx routing { node } <ul><li>Enable Novell IPX routing </li></ul>Router (config) # ipx maximum-paths paths <ul><li>Configures round-robin load sharing over multiple equal metric paths </li></ul><ul><li>Default = 1 </li></ul>
  16. 16. Novell IPX Interfaces Configurations Router (config-if) # ipx network network [ encapsulation encapsulation type ] <ul><li>Enables IPX routing ON the interface </li></ul><ul><li>Assigns IPX network number </li></ul><ul><li>Selects optional encapsulation type </li></ul>
  17. 17. NetWare Subinterfaces e 0.1 e 0.2 1a-navell-ether FS 2 NW 4.11 FS 1 NW 3.11 1a.0080.C712.3456 1b.0080.C712.3457 Ethernet_802.3 NIC Ethernet_802.3 NIC 1b-sap
  18. 18. Novell IPX Interfaces Configurations Router (config) # interface type number.subinterface-number Router (config-subif) # ipx network network [ encapsulation encapsulation type ] <ul><li>Specify a subinterface,then enable IPX routing with encapsulation type </li></ul>Router (config-if) # ipx network network [ encapsulation encapsulation- type ] [ secondary ] <ul><li>Assign primary and secondary network number and encapsulation. </li></ul>
  19. 19. Verifying IPX Operation Ipx routing ipx-maxiam-paths 2 Interface ethernet 0.1 ipx network 9e encapsulation novell-ether Interface ethernet 0.2 ipx network 6c encapsulation sap Interface ethernet 1 ipx network 4a encapsulation sap Interface serial 0 ipx network 1 Interface serial 1 ipx network 3
  20. 20. Verifying IPX Operation Monitoring Commands Troubleshooting Commands Show ipx interface Show ipx route Show ipx servers Show ipx traffic Debug ipx routing activity Debug ipx activity Ping ipx
  21. 21. Testing Packets with Access Lists Upper-Level Headers Data Packet (IPX header) Frame Header (for example, novell-ether ) Service Advertisement Use ACL 800-899standard 900-999 extended 1000-1099 SAP Protocol stack number Source Address Destination Address An Example Using an IPX packet Deny Permit
  22. 22. Key Concepts for IPX Access Lists <ul><li>IPX address uses a network.node </li></ul><ul><li>Socket number identifies an application or process </li></ul><ul><li>Standard access lists (800-899) can filter source and destination address </li></ul><ul><li>Extended access lists (900-999) add protocol and socket number capabilities to the filter </li></ul><ul><li>Access lists (1000-1099) and SAP filters for services type and servers on one or more networks </li></ul>
  23. 23. Control IPX Overhead Frequent update reduce the bandwidth for user traffic
  24. 24. Access list Command Overhead Step1: Set parameters for this access list test statement (which can be one of several statements) Router (config) # access-list acess-list-number { deny | permit } { test condition } Step2: Enable an interface to become part of the group that uses the specified access list Router (config-if) #ipx access - group Access-list-number / name in { in | out } <ul><li>IPX access lists are numbered or named </li></ul><ul><li>800-889-standard </li></ul><ul><li>900-999-extended </li></ul>
  25. 25. Access –list 800 permit 2b 4d (implicit deny all) Int e 0 ipx network 4d ipx network-group 800 out int e 1 ipx network 3c int e 2 ipx network 2b int e 3 ipx network 1a
  26. 26. IPX Extended Access List Configuration Router (config)# access-list access-list-number { deny | permit } protocol [source-network] [ [ [ .source-node ][source-node-mask] | [ .source-node source-network-mask. Source-node-mask ] ] [[[ .destination-node ] destination-network-mask ] | [ .destination-node destination-network-mask. Destination-nodemask ]] [ destination mask ] [ log ] <ul><li>Sets parameters for this entry </li></ul><ul><li>Extended access list uses list-number in range 900 to 999 </li></ul>Router (config-if)# ipx access-group Access-list-number [ in| out] <ul><li>Activates the IPX extended access list on an interface </li></ul>
  27. 27. Normal IPX SAP Operation Server/RouterC Client2 <ul><li>Router does not forward SAP broadcasts </li></ul><ul><li>IPX routers send SAP table every 60 seconds </li></ul>SAP Table SAP Table SAP Table A Large IPX Network Server/RouterA Server/RouterB Client 1 SAP Table SAP Table
  28. 28. How to Use SAP Filters (cont.) Output filter: Do not add filtered SAPs to the SAP table sent Input filter: Do not add filtered SAPs to SAP table <ul><li>Apply the access list to the interface as an input or output SAP filter </li></ul>SAP SAP SAP SAP SAP Table SAP SAP SAP SAP SAP SAP SAP SAP Table
  29. 29. SAP Filter Configuration Router(config)# access-list access-list-number { deny | permit } network [ . node ] [ network-mask node-mask ] [ service-type [ server-name ]] <ul><li>Creates a SAP filter list </li></ul>Router(config-if)# ipx output-sap-filter Access-list-number <ul><li>Activates an output SAP Filter on interface </li></ul>Router(config-if)# ipx intput-sap-filter Access-list-number <ul><li>Activates an input SAP Filter on interface </li></ul>

×