{"id":2082,"date":"2019-07-11T00:05:17","date_gmt":"2019-07-11T00:05:17","guid":{"rendered":"http:\/\/wiki.thomasandsofia.com\/?p=2082"},"modified":"2021-12-12T14:02:05","modified_gmt":"2021-12-12T14:02:05","slug":"section-12-the-life-of-a-packet","status":"publish","type":"post","link":"https:\/\/wiki.thomasandsofia.com\/?p=2082","title":{"rendered":"Section 12: The Life of a Packet"},"content":{"rendered":"<ul>\n<li><a href=\"http:\/\/wiki.thomasandsofia.com\/?p=2073\">&lt; Section 11<\/a><\/li>\n<li><a href=\"\/course-introduction\/\">Main Menu<\/a><\/li>\n<li><a href=\"\/ccent-quick-notes\/\">Quick Notes<\/a><\/li>\n<li><a href=\"http:\/\/wiki.thomasandsofia.com\/?p=2113\">Section 13 &gt;<\/a><\/li>\n<\/ul>\n<p>31% Complete<\/p>\n<h1>63: Introduction<\/h1>\n<p><a href=\"https:\/\/www.udemy.com\/cisco-icnd1\/learn\/lecture\/8601662?start=0#content\" target=\"_blank\" rel=\"noopener\">https:\/\/www.udemy.com\/cisco-icnd1\/learn\/lecture\/8601662?start=0#content<\/a><\/p>\n<p>&nbsp;<\/p>\n<h1>64: DNS The Domain Name System<\/h1>\n<p><a href=\"https:\/\/www.udemy.com\/cisco-icnd1\/learn\/lecture\/8601682#content\" target=\"_blank\" rel=\"noopener\">https:\/\/www.udemy.com\/cisco-icnd1\/learn\/lecture\/8601682#content<\/a><\/p>\n<h2>The Domain Name System<\/h2>\n<ul>\n<li>The Domain Name System resolves a Fully Qualified Domain Name (FQDN) such as www.cisco.com to an IP address.<\/li>\n<li>Enterprises will typically have an internal DNS server which can resolve the IP address of internal hosts<\/li>\n<li>Hosts will send their DNS queries to this server<\/li>\n<li>If the internal DNS server cannot resolve a query, it will forward the request out to Public DNS servers on the Internet.<\/li>\n<li>DNS requests are sent using UDP port 53 (and can fail over to TCP port 53)<\/li>\n<\/ul>\n<h1>65: DNS on Cisco Routers<\/h1>\n<p><a href=\"https:\/\/www.udemy.com\/cisco-icnd1\/learn\/lecture\/8601694#content\" target=\"_blank\" rel=\"noopener\">https:\/\/www.udemy.com\/cisco-icnd1\/learn\/lecture\/8601694#content<\/a><\/p>\n<h2>Router DNS Commands<\/h2>\n<p>It is not requires to setup a router to act as a dns client if you&#8217;re only configuring via IP addresses.\u00a0 This is only required if you intend to setup the router using host names \/ domain names.<\/p>\n<h2>DNS Client Commands<\/h2>\n<p><span style=\"color: #ff0000;\">You must be in Configuration Mode to run these commands!<\/span><\/p>\n<h3>ip domain lookup<\/h3>\n<ul>\n<li>Enables the ability to look up domain names.<\/li>\n<li>no ip domain lookup<\/li>\n<\/ul>\n<h3>ip name-server IP.ADD.RE.SS<\/h3>\n<ul>\n<li>Defines where the DNS server is (even if it is itself)<\/li>\n<\/ul>\n<h3>ip domain-name DOMAIN.COM<\/h3>\n<ul>\n<li>This will be appended to any subdomain lookups?<\/li>\n<li><span style=\"color: #008000;\">This works if a FQDN\u00a0 is entered in the <code>ip host sub.domain.tld IP.ADD.RE.SS<\/code>.\u00a0 If you only enter `ip host sub &#8230;` the lookups from external servers will not work.<\/span><\/li>\n<\/ul>\n<h3>ip domain-list SUB.DOMAIN.COM<\/h3>\n<ul>\n<li>Additional DNS suffices to search<\/li>\n<\/ul>\n<h2>DNS Server Commands<\/h2>\n<p><span style=\"color: #ff0000;\">You should also run the DNS Client Commands on the DNS Server<\/span><\/p>\n<h3>ip dns server<\/h3>\n<ul>\n<li>Enables the router to function as a DNS server<\/li>\n<\/ul>\n<h3>ip host SUB.DOMAIN.TLD IP.ADD.RE.SS<\/h3>\n<ul>\n<li>Adds an entry to the DNS database.\n<ul>\n<li>Using the fully qualified domain name will allow you to access the host using only the subdomain<\/li>\n<li>Using only the subdomain will not allow you to ping the FQDN<\/li>\n<\/ul>\n<\/li>\n<\/ul>\n<pre>r1(config)#ip host pi3b.tas.lab 10.0.0.10\r\nr1(config)#do ping pi3b\r\nType escape sequence to abort.\r\nSending 5, 100-byte ICMP Echos to 10.0.0.10, timeout is 2 seconds:\r\n!!!!!\r\nSuccess rate is 100 percent (5\/5), round-trip min\/avg\/max = 1\/1\/4 ms\r\nr1(config)#ip host r2 10.10.10.2\r\n\r\nr1(config)#do ping r2.tas.lab\r\nTranslating \"r1.domain.local\"...domain server (10.0.0.1) \r\n% Unrecognized host or address, or protocol not running.<\/pre>\n<h3>DNS Lab<\/h3>\n<p>This was a little lame. He didn&#8217;t explain how different networks were able to reach each other.<br \/>\n<a href=\"https:\/\/wiki.thomasandsofia.com\/wp-content\/uploads\/2019\/07\/ICND1-dns.png\"><img loading=\"lazy\" decoding=\"async\" class=\"alignnone size-full wp-image-2865\" src=\"https:\/\/wiki.thomasandsofia.com\/wp-content\/uploads\/2019\/07\/ICND1-dns.png\" alt=\"\" width=\"450\" height=\"453\" srcset=\"https:\/\/wiki.thomasandsofia.com\/wp-content\/uploads\/2019\/07\/ICND1-dns.png 450w, https:\/\/wiki.thomasandsofia.com\/wp-content\/uploads\/2019\/07\/ICND1-dns-150x150.png 150w, https:\/\/wiki.thomasandsofia.com\/wp-content\/uploads\/2019\/07\/ICND1-dns-298x300.png 298w, https:\/\/wiki.thomasandsofia.com\/wp-content\/uploads\/2019\/07\/ICND1-dns-300x302.png 300w\" sizes=\"auto, (max-width: 450px) 100vw, 450px\" \/><\/a><\/p>\n<h1>66: ARP Address Resolution Protocol<\/h1>\n<p><a href=\"https:\/\/www.udemy.com\/cisco-icnd1\/learn\/lecture\/8601696#overview\" target=\"_blank\" rel=\"noopener\">https:\/\/www.udemy.com\/cisco-icnd1\/learn\/lecture\/8601696#overview<\/a><\/p>\n<h2>IP to MAC Address Resolution<\/h2>\n<ul>\n<li>The sender needs to know the receiver&#8217;s IP address and MAC address to form the packet it is going to send.<\/li>\n<li>We can point the sender directly at the destination IP address or at a user friendly FQDN such as www.cisco.com<\/li>\n<li>DNS Domain Name System maintains a mapping of FQDNs to IP addresses<\/li>\n<li>ARP Address Resolution Protocol is used to map the IP address ot MAC address<\/li>\n<\/ul>\n<p><a href=\"http:\/\/wiki.thomasandsofia.com\/wp-content\/uploads\/2019\/07\/arp.png\"><img loading=\"lazy\" decoding=\"async\" class=\"alignnone size-full wp-image-2087\" src=\"http:\/\/wiki.thomasandsofia.com\/wp-content\/uploads\/2019\/07\/arp.png\" alt=\"\" width=\"729\" height=\"155\" srcset=\"https:\/\/wiki.thomasandsofia.com\/wp-content\/uploads\/2019\/07\/arp.png 729w, https:\/\/wiki.thomasandsofia.com\/wp-content\/uploads\/2019\/07\/arp-300x64.png 300w, https:\/\/wiki.thomasandsofia.com\/wp-content\/uploads\/2019\/07\/arp-150x32.png 150w\" sizes=\"auto, (max-width: 729px) 100vw, 729px\" \/><\/a><\/p>\n<p><a href=\"http:\/\/wiki.thomasandsofia.com\/wp-content\/uploads\/2019\/07\/arp2.png\"><img loading=\"lazy\" decoding=\"async\" class=\"alignnone size-full wp-image-2088\" src=\"http:\/\/wiki.thomasandsofia.com\/wp-content\/uploads\/2019\/07\/arp2.png\" alt=\"\" width=\"730\" height=\"165\" srcset=\"https:\/\/wiki.thomasandsofia.com\/wp-content\/uploads\/2019\/07\/arp2.png 730w, https:\/\/wiki.thomasandsofia.com\/wp-content\/uploads\/2019\/07\/arp2-300x68.png 300w, https:\/\/wiki.thomasandsofia.com\/wp-content\/uploads\/2019\/07\/arp2-150x34.png 150w\" sizes=\"auto, (max-width: 730px) 100vw, 730px\" \/><\/a><\/p>\n<ul>\n<li>FFFF:FFFF:FFFF is the MAC Broadcast Address<\/li>\n<li>The Switch will notice this is a broadcast and will send it out all ports.<\/li>\n<\/ul>\n<p><a href=\"http:\/\/wiki.thomasandsofia.com\/wp-content\/uploads\/2019\/07\/arp3.png\"><img loading=\"lazy\" decoding=\"async\" class=\"alignnone size-full wp-image-2089\" src=\"http:\/\/wiki.thomasandsofia.com\/wp-content\/uploads\/2019\/07\/arp3.png\" alt=\"\" width=\"728\" height=\"277\" srcset=\"https:\/\/wiki.thomasandsofia.com\/wp-content\/uploads\/2019\/07\/arp3.png 728w, https:\/\/wiki.thomasandsofia.com\/wp-content\/uploads\/2019\/07\/arp3-300x114.png 300w, https:\/\/wiki.thomasandsofia.com\/wp-content\/uploads\/2019\/07\/arp3-150x57.png 150w\" sizes=\"auto, (max-width: 728px) 100vw, 728px\" \/><\/a><\/p>\n<ul>\n<li>Since this was a Unicast message and the switch already has the Sender&#8217;s MAC address (gathered from the original ARP), it only sends the reply to the Sender&#8217;s port.<\/li>\n<\/ul>\n<h2>ARP Commands<\/h2>\n<ul>\n<li>View ARP cache\n<ul>\n<li>Linux: arp -n<\/li>\n<li>Windows: arp -a<\/li>\n<li>Cisco: show arp<\/li>\n<\/ul>\n<\/li>\n<li>Clear ARP cache\n<ul>\n<li>Linux: ip -s -s neigh flush all<\/li>\n<li>Windows: netsh interface ip delete arpcache<\/li>\n<li>Cisco: clear arp-cache<\/li>\n<\/ul>\n<\/li>\n<\/ul>\n<h1>67: ARP for Routed Traffic<\/h1>\n<p><a href=\"https:\/\/www.udemy.com\/cisco-icnd1\/learn\/lecture\/8601704#overview\" target=\"_blank\" rel=\"noopener\">https:\/\/www.udemy.com\/cisco-icnd1\/learn\/lecture\/8601704#overview<\/a><\/p>\n<h2>Routed Traffic<\/h2>\n<ul>\n<li>When the Sender and Receiver are pm different IP subnets, the traffic must be forwarded by a router.<\/li>\n<li>In the following example, 172.23.4.1\/24 wants to send a packet to 192.168.10.1\/24<\/li>\n<\/ul>\n<p><a href=\"http:\/\/wiki.thomasandsofia.com\/wp-content\/uploads\/2019\/07\/arp-1.png\"><img loading=\"lazy\" decoding=\"async\" class=\"alignnone size-full wp-image-2090\" src=\"http:\/\/wiki.thomasandsofia.com\/wp-content\/uploads\/2019\/07\/arp-1.png\" alt=\"\" width=\"697\" height=\"170\" srcset=\"https:\/\/wiki.thomasandsofia.com\/wp-content\/uploads\/2019\/07\/arp-1.png 697w, https:\/\/wiki.thomasandsofia.com\/wp-content\/uploads\/2019\/07\/arp-1-300x73.png 300w, https:\/\/wiki.thomasandsofia.com\/wp-content\/uploads\/2019\/07\/arp-1-150x37.png 150w\" sizes=\"auto, (max-width: 697px) 100vw, 697px\" \/><\/a><\/p>\n<ul>\n<li>The Sender knows it must send the request to its Default Gateway in order to discover the Receiver&#8217;s location since it is on a different network.<\/li>\n<li>Therefore, the first ARP request is for the Default Gateway&#8217;s MAC.<\/li>\n<\/ul>\n<p><a href=\"http:\/\/wiki.thomasandsofia.com\/wp-content\/uploads\/2019\/07\/arp-2.png\"><img loading=\"lazy\" decoding=\"async\" class=\"alignnone size-full wp-image-2091\" src=\"http:\/\/wiki.thomasandsofia.com\/wp-content\/uploads\/2019\/07\/arp-2.png\" alt=\"\" width=\"406\" height=\"300\" srcset=\"https:\/\/wiki.thomasandsofia.com\/wp-content\/uploads\/2019\/07\/arp-2.png 406w, https:\/\/wiki.thomasandsofia.com\/wp-content\/uploads\/2019\/07\/arp-2-300x222.png 300w, https:\/\/wiki.thomasandsofia.com\/wp-content\/uploads\/2019\/07\/arp-2-150x111.png 150w\" sizes=\"auto, (max-width: 406px) 100vw, 406px\" \/><\/a><\/p>\n<ul>\n<li>Now that the Sender knows the Default Gateway&#8217;s MAC, it will use:\n<ul>\n<li>The Receiver&#8217;s IP (actual destination) as the Destination IP<\/li>\n<li>The Router&#8217;s MAC as the Destination MAC<\/li>\n<\/ul>\n<\/li>\n<\/ul>\n<p><a href=\"http:\/\/wiki.thomasandsofia.com\/wp-content\/uploads\/2019\/07\/arp-3.png\"><img loading=\"lazy\" decoding=\"async\" class=\"alignnone size-full wp-image-2092\" src=\"http:\/\/wiki.thomasandsofia.com\/wp-content\/uploads\/2019\/07\/arp-3.png\" alt=\"\" width=\"412\" height=\"253\" srcset=\"https:\/\/wiki.thomasandsofia.com\/wp-content\/uploads\/2019\/07\/arp-3.png 412w, https:\/\/wiki.thomasandsofia.com\/wp-content\/uploads\/2019\/07\/arp-3-300x184.png 300w, https:\/\/wiki.thomasandsofia.com\/wp-content\/uploads\/2019\/07\/arp-3-150x92.png 150w\" sizes=\"auto, (max-width: 412px) 100vw, 412px\" \/><\/a><\/p>\n<ul>\n<li>Since the Router does not know the MAC address of the Receiver yet, it will hold the packet (frame??) and send an ARP request on the interface that connects to that network.<\/li>\n<\/ul>\n<p><a href=\"http:\/\/wiki.thomasandsofia.com\/wp-content\/uploads\/2019\/07\/arp-4-1.png\"><img loading=\"lazy\" decoding=\"async\" class=\"alignnone size-full wp-image-2094\" src=\"http:\/\/wiki.thomasandsofia.com\/wp-content\/uploads\/2019\/07\/arp-4-1.png\" alt=\"\" width=\"400\" height=\"322\" srcset=\"https:\/\/wiki.thomasandsofia.com\/wp-content\/uploads\/2019\/07\/arp-4-1.png 400w, https:\/\/wiki.thomasandsofia.com\/wp-content\/uploads\/2019\/07\/arp-4-1-300x242.png 300w, https:\/\/wiki.thomasandsofia.com\/wp-content\/uploads\/2019\/07\/arp-4-1-150x121.png 150w\" sizes=\"auto, (max-width: 400px) 100vw, 400px\" \/><\/a><\/p>\n<ul>\n<li>The Router can now send the packet.\n<ul>\n<li>The Source and Destination IPs never change!\u00a0 Only the MAC addresses change as a Packet is transferred over a Router.<\/li>\n<\/ul>\n<\/li>\n<\/ul>\n<p><a href=\"http:\/\/wiki.thomasandsofia.com\/wp-content\/uploads\/2019\/07\/arp-5.png\"><img loading=\"lazy\" decoding=\"async\" class=\"alignnone size-full wp-image-2095\" src=\"http:\/\/wiki.thomasandsofia.com\/wp-content\/uploads\/2019\/07\/arp-5.png\" alt=\"\" width=\"397\" height=\"294\" srcset=\"https:\/\/wiki.thomasandsofia.com\/wp-content\/uploads\/2019\/07\/arp-5.png 397w, https:\/\/wiki.thomasandsofia.com\/wp-content\/uploads\/2019\/07\/arp-5-300x222.png 300w, https:\/\/wiki.thomasandsofia.com\/wp-content\/uploads\/2019\/07\/arp-5-150x111.png 150w\" sizes=\"auto, (max-width: 397px) 100vw, 397px\" \/><\/a><\/p>\n<p>&nbsp;<\/p>\n<h1>68: Life of a Packet Part 1 &#8211; DNS<\/h1>\n<p><a href=\"https:\/\/www.udemy.com\/cisco-icnd1\/learn\/lecture\/8601712#content\" target=\"_blank\" rel=\"noopener\">https:\/\/www.udemy.com\/cisco-icnd1\/learn\/lecture\/8601712#content<\/a><\/p>\n<p>&nbsp;<\/p>\n<p><a href=\"http:\/\/wiki.thomasandsofia.com\/wp-content\/uploads\/2019\/07\/apac1.png\"><img loading=\"lazy\" decoding=\"async\" class=\"alignnone size-full wp-image-2097\" src=\"http:\/\/wiki.thomasandsofia.com\/wp-content\/uploads\/2019\/07\/apac1.png\" alt=\"\" width=\"762\" height=\"278\" srcset=\"https:\/\/wiki.thomasandsofia.com\/wp-content\/uploads\/2019\/07\/apac1.png 762w, https:\/\/wiki.thomasandsofia.com\/wp-content\/uploads\/2019\/07\/apac1-300x109.png 300w, https:\/\/wiki.thomasandsofia.com\/wp-content\/uploads\/2019\/07\/apac1-150x55.png 150w\" sizes=\"auto, (max-width: 762px) 100vw, 762px\" \/><\/a><\/p>\n<h2>Process<\/h2>\n<ul>\n<li>HA (Host A) will ARP for the MAC of its Default Gateway (RA-P1)\n<ul>\n<li>ARP Request Packet:\n<ul>\n<li>S IP = HA&#8217;s IP, D IP = RA-P1&#8217;s IP<\/li>\n<li>S MAC = HA&#8217;s MAC, D MAC = FFFF.FFFF.FFFF.FFFF<\/li>\n<\/ul>\n<\/li>\n<li>Sw1 (Switch 1) records the MAC of HA on Sw1-P1 (Port 1)<\/li>\n<li>Sw1 will broadcast the ARP request on all ports except Sw1-P1<\/li>\n<\/ul>\n<\/li>\n<li>RA (Router A) will see the request matches its IP and will reply with its MAC for RA-P1\n<ul>\n<li>ARP Reply Packet:\n<ul>\n<li>S IP = RA-P1&#8217;s IP, D IP = HA&#8217;s IP<\/li>\n<li>S MAC = RA-P1&#8217;s MAC, D MAC = HA&#8217;s MAC<\/li>\n<\/ul>\n<\/li>\n<li>Sw1 records the MAC of RA-P1 on Sw1-P2<\/li>\n<li>Sw1 sends RA&#8217;s ARP Reply to HA via Sw1-P1<\/li>\n<li>HA now knows the MAC for RA-P1, its Default Gateway<\/li>\n<\/ul>\n<\/li>\n<li>HA send a DNS request to the DNS server to get the IP of the Recipient FQDN, www.flackbox.com\n<ul>\n<li>DNS Request Packet:\n<ul>\n<li>S\u00a0 IP = HA&#8217;s IP, D IP = DS&#8217;s IP (DNS Server)<\/li>\n<li>S MAC = HA&#8217;s MAC, D MAC = RA-P1&#8217;s MAC<\/li>\n<\/ul>\n<\/li>\n<li>Sw1 knows RA-P1&#8217;s MAC is on Sw1-P2, so only routes the traffic that port (unicast).<\/li>\n<li>RA receives the packet on RA-P1<\/li>\n<\/ul>\n<\/li>\n<li>RA does not know the MAC for DS, so will hold the DNS request packet and ARPs for DS&#8217;s MAC.\u00a0 It knows from its routing table that it can find DS&#8217;s IP&#8217;s MAC via RA-P2, so it sends the ARP request out RA-P2.\n<ul>\n<li>RA&#8217;s ARP Request Packet:\n<ul>\n<li>S IP = RA-P2&#8217;s IP, D IP = DS&#8217;s IP<\/li>\n<li>S MAC =\u00a0 RA-P2&#8217;s MAC, D MAC = FFFF.FFFF.FFFF.FFFF<\/li>\n<\/ul>\n<\/li>\n<li>Sw3 maps RA-P2&#8217;s MAC to Sw3-P1<\/li>\n<li>Sw3 will broadcast that ARP on all ports except Sw3-P1<\/li>\n<li>DS receives the request and stores RA-P2&#8217;s MAC in its ARP cache<\/li>\n<li>DS sends an ARP reply with its MAC to RA-P2&#8217;s MAC\n<ul>\n<li>DS&#8217;s ARP Reply Packet:\n<ul>\n<li>S IP = DS&#8217;s IP, D IP = RA-P2&#8217;s IP<\/li>\n<li>S MAC =\u00a0 DS&#8217;s MAC, D MAC =\u00a0 RA-P2&#8217;s MAC<\/li>\n<\/ul>\n<\/li>\n<\/ul>\n<\/li>\n<li>Sw3 maps DS&#8217;s MAC to Sw3-P2<\/li>\n<li>Sw3 forwards the ARP reply via Sw3-P1 to RA-P2<\/li>\n<li>RA-P2 records DS&#8217;s MAC in its ARP cache<\/li>\n<\/ul>\n<\/li>\n<li>RA changes the S MAC for the DNS packet to RA-P2&#8217;s MAC (its own) and the D MAC to DS&#8217;s MAC\n<ul>\n<li>DNS Request Packet:\n<ul>\n<li>S IP = HA&#8217;s IP, D IP = DS&#8217;s IP<\/li>\n<li>S MAC = RA-P2&#8217;s MAC, D MAC = DS&#8217;s MAC<\/li>\n<\/ul>\n<\/li>\n<\/ul>\n<\/li>\n<li>Sw3 knows DS&#8217;s MAC maps to Sw3-P2, so only sends the request there.<\/li>\n<li>DS receives the request and replies with the IP of the FQDN\n<ul>\n<li>DNS Reply Packet:\n<ul>\n<li>S IP = DS&#8217;s IP, D IP = HA&#8217;s IP<\/li>\n<li>S MAC = DS&#8217;s MAC, D MAC = RA-P2&#8217;s MAC<\/li>\n<\/ul>\n<\/li>\n<\/ul>\n<\/li>\n<li>Sw3-P2 receives the packet and forwards it only out Sw3-P1<\/li>\n<li>RA-P2 receives the packet and sees the D IP does NOT match it&#8217;s own, but knows it can reach it from RA-P1 so it changes the Source and Destination MACs and sends it out RA-P1\n<ul>\n<li>DNS Reply Packet:\n<ul>\n<li>S IP = DS&#8217;s IP, D IP = HA&#8217;s IP<\/li>\n<li>S MAC =\u00a0 RA-P1&#8217;s MAC, D MAC = HA&#8217;s MAC<\/li>\n<\/ul>\n<\/li>\n<\/ul>\n<\/li>\n<li>Sw1-P2 receives the packet, see&#8217;s HA&#8217;a MAC on Sw1-P1 and sends it out that port.<\/li>\n<li>HA receives the packet and now knows the IP for www.flackbox.com is 10.10.12.10<\/li>\n<\/ul>\n<h2>Find the location of the Default Gateway<\/h2>\n<p>(I&#8217;m just going to break down this step so\u00a0 you get the idea.\u00a0 This should correlate with the steps outlined above.\u00a0 All remaining steps will be very similar)<\/p>\n<ul>\n<li>Host A (10.10.10.10\/24) wants to send a packet to FQDN www.flackbox.com, but it does not know the destination IP address.<\/li>\n<li>It will hold the packet and send a DNS request to its DNS server at 10.10.100.10<\/li>\n<li>Host A compares its IP address and subnet mask to the destination address of the DNS server and sees it is on a different subnet, so the DNS request needs to be sent via its Default Gateway.<\/li>\n<li>Host A will hold the DNS request and send a broadcast ARP for its Default Gateway&#8217;s MAC at 10.10.10.1<\/li>\n<\/ul>\n<p><a href=\"http:\/\/wiki.thomasandsofia.com\/wp-content\/uploads\/2019\/07\/apac2.png\"><img loading=\"lazy\" decoding=\"async\" class=\"alignnone size-full wp-image-2098\" src=\"http:\/\/wiki.thomasandsofia.com\/wp-content\/uploads\/2019\/07\/apac2.png\" alt=\"\" width=\"487\" height=\"323\" srcset=\"https:\/\/wiki.thomasandsofia.com\/wp-content\/uploads\/2019\/07\/apac2.png 487w, https:\/\/wiki.thomasandsofia.com\/wp-content\/uploads\/2019\/07\/apac2-300x199.png 300w, https:\/\/wiki.thomasandsofia.com\/wp-content\/uploads\/2019\/07\/apac2-150x99.png 150w\" sizes=\"auto, (max-width: 487px) 100vw, 487px\" \/><\/a><\/p>\n<ul>\n<li>The ARP request will be received by Switch 1<\/li>\n<li>Switch 1 will add an entry in its MAC address table mapping Host A&#8217;s MAC address to Port 1<\/li>\n<li>Switch 1 will flood the broadcast traffic out all ports apart from the one it was received on.<\/li>\n<\/ul>\n<p><a href=\"http:\/\/wiki.thomasandsofia.com\/wp-content\/uploads\/2019\/07\/apac3.png\"><img loading=\"lazy\" decoding=\"async\" class=\"alignnone size-full wp-image-2099\" src=\"http:\/\/wiki.thomasandsofia.com\/wp-content\/uploads\/2019\/07\/apac3.png\" alt=\"\" width=\"486\" height=\"320\" srcset=\"https:\/\/wiki.thomasandsofia.com\/wp-content\/uploads\/2019\/07\/apac3.png 486w, https:\/\/wiki.thomasandsofia.com\/wp-content\/uploads\/2019\/07\/apac3-300x198.png 300w, https:\/\/wiki.thomasandsofia.com\/wp-content\/uploads\/2019\/07\/apac3-150x99.png 150w\" sizes=\"auto, (max-width: 486px) 100vw, 486px\" \/><\/a><\/p>\n<ul>\n<li>The ARP request will hit Router A&#8217;s interface 10.10.10.1<\/li>\n<li>Router A will process the ARP request and see it is for itself.<\/li>\n<li>Router A will add an entry for Host A mapping IP 10.10.10.10 to MAC 1111.2222.3333 to its ARP cache<\/li>\n<li>Router A will send an ARP reply to Host A with its MAC address<\/li>\n<\/ul>\n<p><a href=\"http:\/\/wiki.thomasandsofia.com\/wp-content\/uploads\/2019\/07\/apac4.png\"><img loading=\"lazy\" decoding=\"async\" class=\"alignnone size-full wp-image-2100\" src=\"http:\/\/wiki.thomasandsofia.com\/wp-content\/uploads\/2019\/07\/apac4.png\" alt=\"\" width=\"486\" height=\"323\" srcset=\"https:\/\/wiki.thomasandsofia.com\/wp-content\/uploads\/2019\/07\/apac4.png 486w, https:\/\/wiki.thomasandsofia.com\/wp-content\/uploads\/2019\/07\/apac4-300x199.png 300w, https:\/\/wiki.thomasandsofia.com\/wp-content\/uploads\/2019\/07\/apac4-150x100.png 150w\" sizes=\"auto, (max-width: 486px) 100vw, 486px\" \/><\/a><\/p>\n<ul>\n<li>Switch 1 will add an entry in its MAC address table mapping Router A&#8217;s MAC 4444.5555.6666 to Port 2<\/li>\n<li>Since Switch 1 already knows which port the Destination MAC belong to, it will only send the ARP reply out only Port 1.<\/li>\n<\/ul>\n<p><a href=\"http:\/\/wiki.thomasandsofia.com\/wp-content\/uploads\/2019\/07\/apac5.png\"><img loading=\"lazy\" decoding=\"async\" class=\"alignnone size-full wp-image-2101\" src=\"http:\/\/wiki.thomasandsofia.com\/wp-content\/uploads\/2019\/07\/apac5.png\" alt=\"\" width=\"486\" height=\"321\" srcset=\"https:\/\/wiki.thomasandsofia.com\/wp-content\/uploads\/2019\/07\/apac5.png 486w, https:\/\/wiki.thomasandsofia.com\/wp-content\/uploads\/2019\/07\/apac5-300x198.png 300w, https:\/\/wiki.thomasandsofia.com\/wp-content\/uploads\/2019\/07\/apac5-150x99.png 150w\" sizes=\"auto, (max-width: 486px) 100vw, 486px\" \/><\/a><\/p>\n<ul>\n<li>Host A will an entry for Router A mapping IP address 10.10.10.1 to MAC 4444.5555.6666 to its ARP cache.<\/li>\n<li>It will now use this whenever it needs to send traffic outside of its local network.<\/li>\n<\/ul>\n<h1>69: Life of a Packet Part 2 &#8211;\u00a0 HTTP<\/h1>\n<p><a href=\"https:\/\/www.udemy.com\/cisco-icnd1\/learn\/lecture\/8601718#content\" target=\"_blank\" rel=\"noopener\">https:\/\/www.udemy.com\/cisco-icnd1\/learn\/lecture\/8601718#content<\/a><\/p>\n<h2>My Attempt<\/h2>\n<ul>\n<li>HA sends TCP\/HTTP GET request to Flackbox via RA-P1 (Default Gateway)\n<ul>\n<li>GET PACKET\n<ul>\n<li>SIP:HA, DIP:flackbox<\/li>\n<li>SMAC:HA, DMAC: RA-P1<\/li>\n<\/ul>\n<\/li>\n<\/ul>\n<\/li>\n<li>Sw1 rcvs packet on Sw1-P1 and connects it directly to Sw1-P2 because it has the DMAC in its MAC table<\/li>\n<li>RA-P1 rcvs packet and sees it needs to be forwarded to a network it is not connected to, so needs to find its default gateway @ RB-.11.2\n<ul>\n<li>RA-.11.1 sends ARP to RB-.11.2\n<ul>\n<li>SIP RA-.11.1, DIP RB-.11.2<\/li>\n<li>SMAC RA-.11.1, DMAC FFFF.FFFF.FFFF<\/li>\n<\/ul>\n<\/li>\n<li>RB-.11.2 Adds RA-.11.1 MAC to MAC cache<\/li>\n<li>RB-.11.2 replies with its MAC<\/li>\n<li>RA-.11.1 records RB-.11.2&#8217;s MAC<\/li>\n<\/ul>\n<\/li>\n<li>RA-.11.1 updates the packet with RB-.11.2&#8217;s MAC\n<ul>\n<li>GET PACKET\n<ul>\n<li>SIP:HA, DIP:flackbox<\/li>\n<li>SMAC:HA, DMAC: RA-P1<\/li>\n<\/ul>\n<\/li>\n<\/ul>\n<\/li>\n<li>RB-.11.2 rcvs packet and sees it needs to go to subnet .12.0, which it is a part of on RB-.12.1<\/li>\n<li>RB-.12.1 does not know the MAC for .12.10, so it stores the HTTP packet and sends an ARP for 12.10&#8217;s MAC\n<ul>\n<li>ARP Packet:\n<ul>\n<li>SIP RB-.12.1, DIP .12.10<\/li>\n<li>SMAC RB-.12.1, DMAC FFFF.FFFF.FFFF<\/li>\n<\/ul>\n<\/li>\n<\/ul>\n<\/li>\n<li>Sw3 sees the request on Sw3-P1 and records RB-.12.1&#8217;s MAC in it&#8217;s MAC table.<\/li>\n<li>Sw3 forwards the ARP request out all ports except Sw3-P1<\/li>\n<li>FlackBox sees the request is for it (based on the destination IP)\n<ul>\n<li>It records the MAC for RB-.12.1 in its MAC cache<\/li>\n<li>Sends an ARP reply with its MAC\n<ul>\n<li>SIP .12.10. DIP .12.1<\/li>\n<li>SMAC FlackBox, DMAC RB-.12.1<\/li>\n<\/ul>\n<\/li>\n<\/ul>\n<\/li>\n<li>Sw3-P2 sees the ARP reply and records FlackBox&#8217;s MAC in its MAC table for Sw3-P2<\/li>\n<li>Sw3 forwards the ARP reply through Sw3-P1 to RB-.12.1, which it already has in its MAC table<\/li>\n<li>RB-.12.1 rcvs the ARP reply and records .12.10&#8217;s MAC in its ARP cache.<\/li>\n<li>RB-.12.1 Sends the HTTP packet with the updated MAC\n<ul>\n<li>SIP HA, DIP FlackBox<\/li>\n<li>SMAC RB-.12.1, DMAC FlackBox<\/li>\n<\/ul>\n<\/li>\n<li>Sw3-P1 rcvs the HTTP packet and sends it out Sw3-P2 because it already knows P2 is assigned to FlackBox<\/li>\n<li>FlackBox Rcvs the HTTP Packet!<\/li>\n<\/ul>\n<h1>70: Life of a Packet Lab Exercises<\/h1>\n<p><a href=\"https:\/\/www.udemy.com\/cisco-icnd1\/learn\/lecture\/8601734#overview\" target=\"_blank\" rel=\"noopener\">https:\/\/www.udemy.com\/cisco-icnd1\/learn\/lecture\/8601734#overview<\/a><\/p>\n<p><a href=\"http:\/\/wiki.thomasandsofia.com\/wp-content\/uploads\/2019\/07\/12-The-Life-of-a-Packet-Lab-Exercise.pdf\">12 The Life of a Packet Lab Exercise<\/a><\/p>\n<p><a href=\"http:\/\/wiki.thomasandsofia.com\/wp-content\/uploads\/2019\/07\/12-The-Life-of-a-Packet-Answer-Key.pdf\">12 The Life of a Packet Answer Key<\/a><\/p>\n<p><a href=\"http:\/\/wiki.thomasandsofia.com\/wp-content\/uploads\/2019\/07\/12-The-Life-of-a-Packet.jpg\"><img loading=\"lazy\" decoding=\"async\" class=\"alignnone size-full wp-image-2111\" src=\"http:\/\/wiki.thomasandsofia.com\/wp-content\/uploads\/2019\/07\/12-The-Life-of-a-Packet.jpg\" alt=\"\" width=\"685\" height=\"360\" srcset=\"https:\/\/wiki.thomasandsofia.com\/wp-content\/uploads\/2019\/07\/12-The-Life-of-a-Packet.jpg 685w, https:\/\/wiki.thomasandsofia.com\/wp-content\/uploads\/2019\/07\/12-The-Life-of-a-Packet-300x158.jpg 300w, https:\/\/wiki.thomasandsofia.com\/wp-content\/uploads\/2019\/07\/12-The-Life-of-a-Packet-150x79.jpg 150w\" sizes=\"auto, (max-width: 685px) 100vw, 685px\" \/><\/a><\/p>\n<p>&nbsp;<\/p>\n","protected":false},"excerpt":{"rendered":"<p>&lt; Section 11 Main Menu Quick Notes Section 13 &gt; 31% Complete 63: Introduction https:\/\/www.udemy.com\/cisco-icnd1\/learn\/lecture\/8601662?start=0#content &nbsp; 64: DNS The Domain Name System https:\/\/www.udemy.com\/cisco-icnd1\/learn\/lecture\/8601682#content The Domain Name System The Domain Name System resolves a Fully Qualified Domain Name (FQDN) such as www.cisco.com to an IP address. Enterprises will typically have an internal DNS server which can ..<\/p>\n<div class=\"clear-fix\"><\/div>\n<p><a href=\"https:\/\/wiki.thomasandsofia.com\/?p=2082\" title=\"read more...\">Read more<\/a><\/p>\n","protected":false},"author":1,"featured_media":0,"comment_status":"open","ping_status":"open","sticky":false,"template":"","format":"standard","meta":{"footnotes":""},"categories":[45],"tags":[],"class_list":["post-2082","post","type-post","status-publish","format-standard","hentry","category-icnd1-ccent"],"_links":{"self":[{"href":"https:\/\/wiki.thomasandsofia.com\/index.php?rest_route=\/wp\/v2\/posts\/2082","targetHints":{"allow":["GET"]}}],"collection":[{"href":"https:\/\/wiki.thomasandsofia.com\/index.php?rest_route=\/wp\/v2\/posts"}],"about":[{"href":"https:\/\/wiki.thomasandsofia.com\/index.php?rest_route=\/wp\/v2\/types\/post"}],"author":[{"embeddable":true,"href":"https:\/\/wiki.thomasandsofia.com\/index.php?rest_route=\/wp\/v2\/users\/1"}],"replies":[{"embeddable":true,"href":"https:\/\/wiki.thomasandsofia.com\/index.php?rest_route=%2Fwp%2Fv2%2Fcomments&post=2082"}],"version-history":[{"count":19,"href":"https:\/\/wiki.thomasandsofia.com\/index.php?rest_route=\/wp\/v2\/posts\/2082\/revisions"}],"predecessor-version":[{"id":3606,"href":"https:\/\/wiki.thomasandsofia.com\/index.php?rest_route=\/wp\/v2\/posts\/2082\/revisions\/3606"}],"wp:attachment":[{"href":"https:\/\/wiki.thomasandsofia.com\/index.php?rest_route=%2Fwp%2Fv2%2Fmedia&parent=2082"}],"wp:term":[{"taxonomy":"category","embeddable":true,"href":"https:\/\/wiki.thomasandsofia.com\/index.php?rest_route=%2Fwp%2Fv2%2Fcategories&post=2082"},{"taxonomy":"post_tag","embeddable":true,"href":"https:\/\/wiki.thomasandsofia.com\/index.php?rest_route=%2Fwp%2Fv2%2Ftags&post=2082"}],"curies":[{"name":"wp","href":"https:\/\/api.w.org\/{rel}","templated":true}]}}