IT-340 Assignment-3 Network management

IT340Assignment3-ANSWERHAI.docx

Home >English homework help >IT-340 Assignment-3 Network management

Pg. 05		Question Four

Assignment 3

Deadline: Thursday 04/04/2019 @ 23:59

[Total Mark for this Assignment is 6]

Network Management

IT340

https://www.seu.edu.sa/sites/ar/SitePages/images/logo.png

College of Computing and Informatics

Question One
1.5 Marks

Learning Outcome(s):

Demonstrate broadband networking services and technologies.

In ADSL profiles management there are a loss of signal and a loss of power traps.

a) Give the value of the field generic trap type for both.

The loss of signal has a value of “2” and it means that there is ATUR failure due to not receiving signal

The loss of power has a value of “3” and it means that there is ATUR failure due to loss of power

b) Explain how the NMS can differentiate between a loss of signal and a loss of power traps received from an ADSL modem.

The NMS can differentiate between a loss of signal and a loss of power traps by reading the value of “adslAtucCurrStatus” which indicates current state of the ATUC line. This is a bit-map of possible conditions. It has different values to represent each condition. If the adslAtucCurrStatus was “2”, the line failure is due to signal loss and if the value was ”3” it will mean a failure due to power loss .

c) Are they considered different in the alarm profile?

Alarms are generated when the preset counter reading exceeds 15 minutes on loss of signal, frame, power, link and error-seconds .there is no difference between loss of signal and a loss of power alarms

Question Two
1.5 Marks

Learning Outcome(s):

Demonstrate broadband networking services and technologies.

Let’s consider below given network of MPLS/IP routers without Tunnel. Draw routing table for Router R1.

Answer:

Destination

Output Interface

Next Hop

Metric ( hop count)

2.2.2.2

I1

2.2.2.2

1

3.3.3.3

I1

I2

2.2.2.2

6.6.6.6

2

3

4.4.4.4

I1

I2

2.2.2.2

6.6.6.6

3

4

5.5.5.5

I1

I2

2.2.2.2

6.6.6.6

4

5

6.6.6.6

I2

6.6.6.6

1

7.7.7.7

I2

I1

6.6.6.6

2.2.2.2

2

3

8.8.8.8

I1

I2

2.2.2.2 6.6.6.6

3 4

Question Three
1.5 Marks

Learning Outcome(s):

Demonstrate broadband networking services and technologies.

Let’s consider below given network of MPLS/IP routers with Tunnel. Draw routing table for Router R1.

Answer:

Destination

Output Interface

Next Hop

Metric ( hop count)

2.2.2.2

I1

2.2.2.2

1

3.3.3.3

I1

I2

2.2.2.2

6.6.6.6

2

3

4.4.4.4

T

4.4.4.4

3(without /1 with tunnel

5.5.5.5

T

4.4.4.4

4( without /2 with tunnel )

6.6.6.6

I2

6.6.6.6

1

7.7.7.7

I2

I1

6.6.6.6

2.2.2.2

2

3

8.8.8.8

T

I1

I2

4.4.4.4

2.2.2.2 6.6.6.6

3

3 4

Question Four
1.5 Marks

Learning Outcome(s):

Describe network management issues, standards and architecture

Fill the below given table related to security threats in the SNMP network management by using your own words.

Answer:

Threats

Description

Solution

Modification of information

Happens when some unauthorized user may modify the contents of the Message while it is in transit. It does not change the originating or destination address.

Using Authentication Module and privacy module in the SNMP Security Subsystem.

The privacy module provides data confidentiality service. Data confidentiality ensures that information is not made available or disclosed to unauthorized users, entities, or processes. The privacy of the message is accomplished by encrypting the message at the sending end and decrypting it at the receiving end.

The authentication module provides data integrity service by authenticating a message at the originating end and validating it at the receiving end, ensuring that it has not been modified in the communication process by an unauthorized intruder

Masquerade

Happens when an unauthorized user sends information to another assuming the identity of an authorized user. This can be done by changing the originating address.

the authentication module in the SNMP Security Subsystem that support Data origin authentication to ensure that the claimed identity of the user on whose behalf the message was sent is truly the originator of the message .

The authentication module appends to each message a unique identifier associated with an authoritative SNMP engine.

Message stream modification

The SNMP communication uses connectionless transport service, such as UDP. This means that the message could be fragmented into packets with each packet taking a different path. The packets could arrive at the destination out of sequence and have to be reordered The threat here is that the intruder may manipulate the message stream and maliciously reorder the data packets to change the meaning of the message.

The intruder could also delay messages so that those messages arrive out of sequence. The message could be interrupted, stored, and replayed at a later time by an unauthorized user.

Using Authentication Module and timeliness module in the SNMP Security Subsystem.

The authentication module ensure that message has not been modified in the communication process by an unauthorized intruder

The solution to the message delay or reply using The timeliness module which provides the function of checking message timeliness and thus prevents message redirection, delay, and replay.

Disclosure

• Disclosure is eavesdropping

• Disclosure does not require interception of message

Data encryption is the best countermeasure for Disclosure, it’s done using The privacy module which ensures that information is not made available or disclosed to unauthorized users, entities, or processes. The privacy of the message is accomplished by encrypting the message at the sending end and decrypting it at the receiving end.

Destination	Output Interface	Next Hop	Metric ( hop count)
2.2.2.2	I1	2.2.2.2	1
3.3.3.3	I1 I2	2.2.2.2 6.6.6.6	2 3
4.4.4.4	I1 I2	2.2.2.2 6.6.6.6	3 4
5.5.5.5	I1 I2	2.2.2.2 6.6.6.6	4 5
6.6.6.6	I2	6.6.6.6	1
7.7.7.7	I2 I1	6.6.6.6 2.2.2.2	2 3
8.8.8.8	I1 I2	2.2.2.2 6.6.6.6	3 4

Threats	Description	Solution
Modification of information	Happens when some unauthorized user may modify the contents of the Message while it is in transit. It does not change the originating or destination address.	Using Authentication Module and privacy module in the SNMP Security Subsystem. The privacy module provides data confidentiality service. Data confidentiality ensures that information is not made available or disclosed to unauthorized users, entities, or processes. The privacy of the message is accomplished by encrypting the message at the sending end and decrypting it at the receiving end. The authentication module provides data integrity service by authenticating a message at the originating end and validating it at the receiving end, ensuring that it has not been modified in the communication process by an unauthorized intruder
Masquerade	Happens when an unauthorized user sends information to another assuming the identity of an authorized user. This can be done by changing the originating address.	the authentication module in the SNMP Security Subsystem that support Data origin authentication to ensure that the claimed identity of the user on whose behalf the message was sent is truly the originator of the message . The authentication module appends to each message a unique identifier associated with an authoritative SNMP engine.
Message stream modification	The SNMP communication uses connectionless transport service, such as UDP. This means that the message could be fragmented into packets with each packet taking a different path. The packets could arrive at the destination out of sequence and have to be reordered The threat here is that the intruder may manipulate the message stream and maliciously reorder the data packets to change the meaning of the message. The intruder could also delay messages so that those messages arrive out of sequence. The message could be interrupted, stored, and replayed at a later time by an unauthorized user.	Using Authentication Module and timeliness module in the SNMP Security Subsystem. The authentication module ensure that message has not been modified in the communication process by an unauthorized intruder The solution to the message delay or reply using The timeliness module which provides the function of checking message timeliness and thus prevents message redirection, delay, and replay.
Disclosure	• Disclosure is eavesdropping • Disclosure does not require interception of message	Data encryption is the best countermeasure for Disclosure, it’s done using The privacy module which ensures that information is not made available or disclosed to unauthorized users, entities, or processes. The privacy of the message is accomplished by encrypting the message at the sending end and decrypting it at the receiving end.

IT-340 Assignment-3 Network management

Assignment 3

Deadline: Thursday 04/04/2019 @ 23:59

Question One 1.5 Marks Learning Outcome(s): Demonstrate broadband networking services and technologies.

Question Two 1.5 Marks Learning Outcome(s): Demonstrate broadband networking services and technologies.

Question Three 1.5 Marks Learning Outcome(s): Demonstrate broadband networking services and technologies.

Question Four 1.5 Marks Learning Outcome(s): Describe network management issues, standards and architecture

Question One
1.5 Marks

Learning Outcome(s):

Demonstrate broadband networking services and technologies.

Question Two
1.5 Marks

Learning Outcome(s):

Demonstrate broadband networking services and technologies.

Question Three
1.5 Marks

Learning Outcome(s):

Demonstrate broadband networking services and technologies.

Question Four
1.5 Marks

Learning Outcome(s):

Describe network management issues, standards and architecture