- Community Home
- >
- Networking
- >
- Legacy
- >
- Switches, Hubs, Modems
- >
- Switches
Categories
Company
Local Language
Forums
Discussions
Forums
- Data Protection and Retention
- Entry Storage Systems
- Legacy
- Midrange and Enterprise Storage
- Storage Networking
- HPE Nimble Storage
Discussions
Discussions
Discussions
Forums
Forums
Discussions
Discussion Boards
Discussion Boards
Discussion Boards
Discussion Boards
- BladeSystem Infrastructure and Application Solutions
- Appliance Servers
- Alpha Servers
- BackOffice Products
- Internet Products
- HPE 9000 and HPE e3000 Servers
- Networking
- Netservers
- Secure OS Software for Linux
- Server Management (Insight Manager 7)
- Windows Server 2003
- Operating System - Tru64 Unix
- ProLiant Deployment and Provisioning
- Linux-Based Community / Regional
- Microsoft System Center Integration
Discussion Boards
Discussion Boards
Discussion Boards
Discussion Boards
Discussion Boards
Discussion Boards
Discussion Boards
Discussion Boards
Discussion Boards
Discussion Boards
Discussion Boards
Discussion Boards
Discussion Boards
Discussion Boards
Discussion Boards
Discussion Boards
Discussion Boards
Discussion Boards
Discussion Boards
Discussion Boards
Discussion Boards
Discussion Boards
Community
Resources
Forums
Blogs
- Subscribe to RSS Feed
- Mark Topic as New
- Mark Topic as Read
- Float this Topic for Current User
- Bookmark
- Subscribe
- Printer Friendly Page
- Mark as New
- Bookmark
- Subscribe
- Mute
- Subscribe to RSS Feed
- Permalink
- Report Inappropriate Content
тАО12-09-2002 07:57 PM
тАО12-09-2002 07:57 PM
Solved! Go to Solution.
- Mark as New
- Bookmark
- Subscribe
- Mute
- Subscribe to RSS Feed
- Permalink
- Report Inappropriate Content
тАО12-10-2002 07:00 AM
тАО12-10-2002 07:00 AM
Re: Switches
In order to do most of their tricks switches need to be managed. While you can always manage them with a serial connection to something like Hyperterm the preferred way is to telnet or use an browser to access and manage them. In order to do that you need to assign an IP address. Most switches will happily operate without an IP address but to make it easier to manage you almost always want to add an IP address. A level 3 switch can switch between VLANs and usually does this by assigning an IP address to each VLAN.
http://www.lantronix.com/learning/tutorials/switching.html
Firewalls usually need at least 2 IP addresses. One for the outside world to see and one for the inside protected world to use. The purpose of a firewall is to control what passes from the outside to the inside (and vice versa).
http://www.taoshosting.com/firewall/fwslide05.html
Ron
- Mark as New
- Bookmark
- Subscribe
- Mute
- Subscribe to RSS Feed
- Permalink
- Report Inappropriate Content
тАО12-10-2002 01:12 PM
тАО12-10-2002 01:12 PM
Re: Switches
Thanks for taking time to answer my dumb questions. To be truthful, my knowledge is not sufficient to understand all your answers. I am working on it. I bought some books and read them.
I am going to set up network in my office. Before, I start it I like to understand how it works. I may have more questions.
Thanks again.
- Mark as New
- Bookmark
- Subscribe
- Mute
- Subscribe to RSS Feed
- Permalink
- Report Inappropriate Content
тАО12-10-2002 03:12 PM
тАО12-10-2002 03:12 PM
Solutionmight be a good place to start.
If you are building an office network you will need either a hub or a switch. Either serves as a tie point for all of your Ethernet connections. There will be one connection from each computer back to the hub/switch so you need a hub or switch which has enough ports (connections) to have at least one for each computer (and network printer). Nowadays we use RJ45 style connectors (like the connector for your US telephone but bigger) with a 4 pair cable. The cable should be rated Cat5 or better. You can get them already cut to standard lengths with the ends on them or you can buy bulk Cat5 cable and a terminator kit and put the ends on yourself or hire someone to come in and do it for you. The premade cables come in two version: straight and crossover. You will use the straight version between a PC and a hub/switch. Each PC will need a Network Interface Connector (NIC) which is nothing more than an Ethernet card (some may have one built in and not use a separate card.)
I assume since you are talking about firewalls that you plan to connect to the internet. From the hub/switch you would have a connection to the inside port of your firewall. The firewall will then have its outside port connected to whatever device you have for connecting to the internet. Perhaps a DSL, cable, or dialup modem or perhaps even a router. Depending on the device you may need a crossover cable instead of a straight cable for this connection.
Switches are getting down in price so that the price difference between a low-end switch and a hub is fairly small so you might as well get a switch especially if you are going to putting a lot of traffic on the network or if you have a lot of computers. If you do have to get a hub try and get one which does both 10M and 100M. Usually called dual speed or 10/100.
Commercial firewalls are pretty expensive tho you can build a fairly decent one cheaply with an old computer running LINUX. Depending on how much risk you can stand you can even dispense with a separate box and use something like ZoneAlarm on each PC tho then you have to trust your users not to open the gates too wide. If you have one computer which is always on and you are running something like Windows 2K then you could let it do Internet Connection sharing and IP Filtering and let it control the access for the whole office. I think I would still want ZoneAlarm on that computer. Some companies use their firewall not just for protection from the outside but to prevent their users from accessing non-business sites like porno or clogging the internet connection by downloading music or videos.
One more thing. A registered IP address will be provided by your ISP (Internet Service Provider) so you won't have to worry about it. Normally the computers in an office network would use DHCP which is a method of getting an IP address from a central point. In the above case the firewall would provide the IP addresses from a pool of what are known as private IP addresses. These address can not be used on the Internet but the firewall will change them to valid addresses as the packets pass through it so you don't have to worry about them either.
Ron
- Mark as New
- Bookmark
- Subscribe
- Mute
- Subscribe to RSS Feed
- Permalink
- Report Inappropriate Content
тАО12-10-2002 03:16 PM
тАО12-10-2002 03:16 PM
Re: Switches
Here's the primary difference:
Imagine a network with 3 hosts A,B,C all connected to one HUB. A sends a frame to B. B and C receive the frame.
Replace the HUB with a switch. A sends a packet to B. Only B receives the frame.
Why? A frame that enters a HUB port is broadcast to all other ports. A switch on the other hand, 'learns' over time what hosts are on each port by reading the MAC addresses in the frames. It builds a Table that maps MAC->Port so that when an incoming frame is received, it checks the table and sends the frame ONLY to destination host.
This gives some benefits:
1. Speed - Because on a hub only one host can transmit at a time, bandwidth is limited. On a switch it is possible for every port carry on a separate conversation, so bandwidth is limited by the speed of the backplane.
2. Reliability - Hubs can experience collisions because a host must wait for other hosts to stop transmitting before sending anything. A switch eliminates this problem because every port can send at anytime without interfering with another port.
3. Security - On a hub, all frames are sent to all ports. Obviously the data can be seen by any host on the network. A switch sends data only to the destination host, so only the sender and receiver see the data. Of course a switch by itself does not add any great security, but it does help.
There are some more details that I didn't go into, but feel free to ask and I'll try to answer.
Hope this helps,
Vijay
- Mark as New
- Bookmark
- Subscribe
- Mute
- Subscribe to RSS Feed
- Permalink
- Report Inappropriate Content
тАО12-10-2002 03:49 PM
тАО12-10-2002 03:49 PM
Re: Switches
Again, thanks!
Based on what you said, it sounds that firewall also serves as DHCP server. I have a modem/router with WAN IP from ISP. It is also a DHCP server (therefore, several of my computers are in the LAN with IP addresses assigned by this DHCP). If I connect a firewall down stream from this router, should I disable the router's DHCP? Is the router still part of LAN? Also, it sounds that switch has some functionality similar to router. Obviously, router is not a switch (is this because IP protocol in router but not in switch?), what is the difference between the switch and router?
Jay,
- Mark as New
- Bookmark
- Subscribe
- Mute
- Subscribe to RSS Feed
- Permalink
- Report Inappropriate Content
тАО12-10-2002 03:52 PM
тАО12-10-2002 03:52 PM
Re: Switches
Thank you for spending the time to answer my questions.
Jay
- Mark as New
- Bookmark
- Subscribe
- Mute
- Subscribe to RSS Feed
- Permalink
- Report Inappropriate Content
тАО12-11-2002 12:07 PM
тАО12-11-2002 12:07 PM
Re: Switches
internet=>router=>firewall=>LAN
then the router is no longer part of the LAN. You would probably need a crossover cable between the router and the firewall so that they could talk tho some may have uplink ports which can use a straight cable.
I would prefer to use Static addresses on the link between the router and the firewall but I guess it would work with DHCP as long as you make sure they are not both assigning addresses in the same range. ie if the router assigns addresses in the 192.168.0.x range then you would need to use 192.168.1.x for the Firewall's DHCP pool.
Same goes with static IPs. You would need to make sure there was no chance of them being used on both sides of the firewall.
Ron
- Mark as New
- Bookmark
- Subscribe
- Mute
- Subscribe to RSS Feed
- Permalink
- Report Inappropriate Content
тАО12-12-2002 03:37 PM
тАО12-12-2002 03:37 PM
Re: Switches
Thanks! I will try it.
- Mark as New
- Bookmark
- Subscribe
- Mute
- Subscribe to RSS Feed
- Permalink
- Report Inappropriate Content
тАО12-12-2002 07:38 PM
тАО12-12-2002 07:38 PM
Re: Switches
-Charlie