`Second Edition
`
`Craig Hunt
`
`Cambridge
`
`O’REILLY”
`© KAMbookeExhibitNo4016/1 110
`Page 1
`
`Facebook's Exhibit No. 1016/1116
`Page 1
`
`
`
`TCP/IP Network Administration, Second Edition
`by Craig Hunt
`
`Copyright © 1998, 1992 Craig Hunt. All rights reserved.
`Printed in the United States of America.
`
`Published by O'Reilly & Associates, Inc., 101 Morris Street, Sebastopol, CA 95472.
`
`Editor: Mike Loukides
`
`Update Editor: Gigi Estabrook
`Production Editor: Nicole Gipson Arigo
`
`Printing History:
`
`August 1992:
`
`First Edition.
`
`March 1993:
`
`Minor corrections.
`
`September 1993: Minor corrections.
`
`January 1994:
`
`Minor corrections.
`
`May 1994:
`
`Minor corrections.
`
`January 1998:
`
`SecondEdition.
`
`Nutshell Handbook and the Nutshell Handbook logo are registered trademarks and The
`Java™Series is a trademark of O'Reilly & Associates, Inc. The association of a crab and the
`topic of TCP/IP is a trademark of O'Reilly & Associates, Inc.
`
`Manyof the designations used by manufacturers andsellers to distinguish their products are
`claimed as trademarks. Where those designations appearin this book, and O'Reilly &
`Associates, Inc. was aware of a trademark claim, the designations have been printed in caps
`or initial caps.
`
`While every precaution has been taken in the preparation of this book, the publisher assumes
`no responsibility for errors or omissions, or for damages resulting fromthe use of the
`information contained herein.
`
`RY
`Ed
`
`This bookis printed on acid-free paperwith 85% recycled content, 15% post-consumer waste.
`O'Reilly & Associates is committed to using paperwith the highest recycled content available
`consistent with high quality.
`
`ISBN: 1-56592-322-7
`
`Facebook's Exhibit No. 1016/1116
`Page 2
`
`Facebook's Exhibit No. 1016/1116
`Page 2
`
`
`
`lable of Contents
`
`PHOFACE oooeciceccccccecis cece tsetse cse esse teateeeeetissssssisiisitvesssstestuetiesenterenieseesen xt
`
`Te Overview Of TOPLIP iiciciccccccccccccee tests tes es issesstsseasesesitentursresssesereneteeses 1
`
`TCP/IP and the Internet oo... ccccccccccsccsscescsscescnecssesscstestssvsseseeseeasesessaesavaaens 2
`
`A Data Communications Model o..ccccccccecececeseecesscessesessesessevreeneeertreeniesens 5
`TCP/IP Protocol Architecture occ ccccceceseseescsessseresssessescssecveceesivstsissrerevaveres 8
`Network Access Layer o.cciccccccceccccsseetsessesestiessecstsssesersevsteensestssitesessvecsssaseees il
`Intermet Layer coe cccccecceeceereeeesseescsssescsesserssesesensessesvsesenstevsisesenerseres il
`Transport Layer cece ccc ceten en seenecsersessessstestisettatsasetersenisersiesiees 17
`Application Layer occ ciccccceeseeneceescieesnsesseetesesecssssesssteutersseevesieersitetieenees 21
`SUMIMALY occ erect ce cect reneeneeneetedeeetestesteeseteiseasiesstsassesitsiteitersesseetnsenes 22
`
`2) Delivering t@ Data ooiccccccccccccccccesiestessisssssssvsvssevssssessesssesversietsussevsevsaes 23
`Addressing, Routing, and Multiplexing .0..cc.ccccccccccesesessrseeesssneesteeseserees 23
`The TP Address oie ccccecccesesesevevsesscatseceecsteesscscerssereveevsvevivaveetavivasersesseses 25
`SUDNEES oo ccc ceccteeeesesesessscstsesssssesesensussessssnsesvsvscsssisssusiuevavevevevevesevavaneres 31
`Internet Routing Architecture occ cccccccesecscseccsecsscstesseevsusscsvssuecevsveaseneeete: 34
`The Routing Table oc ccccesesesseceeessescscscsessscstsvspsusitevevevevevevevevensesesss 36
`Address Resolution ooo. cccccssessetesscsesesssesesescsessecrsscstevsvssseevsvsvsvevevevsvecers 39
`Protocols, Ports, and SOCKetS occ cesecccucececeevssessessesessevsseusesstevievesecstens 42
`SUIMIMALY occ ce cece cesreerenevssseetsesassessessseessssacsesssssesestersecstarereesvessecissavanens 47
`
`Facebook's Exhibit No. 1016/1 116
`Page 3 ,,
`
`Facebook's Exhibit No. 1016/1116
`Page 3
`
`
`
`
`
` vi Table of Contents
`
`Bi
`
`N@tWworR SCrvices iiiiiccccccccccccseesississessisssssssesssetsscsereestretsessesssresressessesneses 48
`
`Names and Addresses occ iiccccccessesessessessessessecstsesesecessssssesseetisreeserscevienes 49
`The Host Table oi. cccccccssecsesessecscseessesssesssssecstvsusrssssesscestasversessanerssesrens 50
`Domain Name Service icc ccisecceecscerseescessesseeessssascasscesscacsascssenssensceversaveas 52
`Mail Services oie cscceseenecseesseeaetsessctessasessasesssiesssecseuesssvseaeaevinen 60
`Configuration SCrvers occ ccccessvscsscscsetetecsecscsscsscscetvscevsssseesvesssssvessavectensveteres 71
`Bootstrap Protocol ....cccccccccccseseccsscssssecsssccssseccussecceserecereseutrseeusseetsatestssrseeens 73
`File and Print Servers ooo. cceccccccccsesesscsecssesscsecssestessessvssccevatvicaevsevsevanveseeatees 76
`SUITUMALY occ cece ene ccsensceeecsenecseseaeeaerseessessesssesescascassenscnecnitesseniienssetertate 78
`
`AS GEN SEATON oie ccc cee eecs cess tesstessssvesvessessvessssvsssetiusasesisessisiuesetesavestees 80
`
`Connected and Non-Connected Networks ......cccccccccscccscesceccevecccecseeseeeerees 81
`Basic Information occ ccccccccecccessesesenscaesetecsecsesecssesssseecsevsssssessressesvatssersnsesnsseres 83
`Planning ROUocc eceeeeeneeensnsesesenecsesssenseresessssssscetsrstetstrsvevsvssesseenes 91
`Planning Naming Service 0... cccccccceecscscseescsecsenscsessescsesssssssessescssseereceusveneeeees 94
`Other Services voici ccceccceeeesesseeessvssseseesescassssssessvssessessvssssesissscertecsavaesavseeatees 97
`Informing the USers o.occccccccccscccccssscsscsscstesecccsssesccssvsscesvsevsrvsenssersescarsaesees 100
`NECCOMAQ cer cecseeetseseetereeetereeniessee vaseesaeeveeeeeeecseetsaeerseseneesteesesaees 102
`SUIIMATY occ ccc cece cece teciresstecensnecnesteseciessastaccssesserssssatserstesericaesetes 104
`
`52
`
`BASIC CONFIQUVATION oie ees testss eesti sessesssesesuesiesserseseitstens 105
`
`Kernel Configuration 00... cccccccceccccetectessisetsesessssecssssterestsssstntessissrenssesieass 105
`Linux Kernel Configuration. ooo. ccccccccceccssesscsseseesescrsessscstesestssvsevseveseeveres 106
`The BSD Kernel Configuration File oo... cccccccccececsesecsecsecserssseetestenseecssees 112
`The Internet Daemon o.ccccccccccccsscsssestssssetecsecacseesssecsecassavssssvsssevssevsvereecsees 118
`SUIMIMALY occ eceeececenereteeecneecneeeeteeeeeeetesseststecssesssaeesssecsssuvaterueeninenayeeatenss 121
`
`6. Configuring the Interface .oocccccccccccccccccccccessvesssesssessssssisssvessesssetsees 123
`‘The ifoonfig Command oc cccccccccccsccceescssseccsssessvecsecsessssaserstesvstssesernensses 123
`TCP/IP Overa Serial Line cc cccccccscscceenceeeeeeeen cent eeeentenneeniees 137
`Installing PPP oie cece tteceesetscsessesseeescstesseescsssitessssssseassscsesstssssssrees 140
`Installing SLIP woo. ecesccesessscsessesesessesevasssssseasssesesstessacseetsevavstissecseares 153
`SUITIMIALY eect ect re ect eccneeenneeneenisesneesieesstecteescneeenestreitiesseesensas 162
`
`7?
`
`CONFIQUVING ROUcece ccc ccccccccceessscseesescesneeteeiesesiseteetsinsieeersenseries 164
`
`Common Routing Configurations oo. ccccccccscececsecsersecessecssnscrseneveseseres 164
`The Minimal Routing Table oo... ceceneneeeteetetsesesseersverserseeteenes 165
`Building a Static Routing Table oc cc cccceceeeeeceetetiecsesecsetassesseseesvicesenes 167
`Interior Routing Protocols wo... eccceceeeceeeeeeeeecsssecsecesecvssecsseuseseievteeseneens 173
`Facebook's Exhibit No. 1016/1116
`Page 4
`
`Facebook's Exhibit No. 1016/1116
`Page 4
`
`
`
`Table of Contents
`
`vit
`
`Exterior Routing Protocols .....cccccccccscccccsesesssscecteeceveversecestnssseesecevtssneceres 184
`Gateway Routing Daemon cc eee ete ece ee eteetseeeteseteeetsttsssesstesereeeeen 187
`Configuring gated ce eececeenseeeeeeteneeuseettececseseeetstessststesvitsviesiensees 189
`SUITIDALY eee cere e etree reece ties e Cee cneettieFeetiabtnsdaetensaaareniaes 200
`
`Configuring DNS NAM SCrvile ooicccccccccccccsscssvesscesescsssssessescessesveses 202
`
`BIND: UNIX Name Service .oicccccccccecccseessscsseseecsassetsscssesssssvsesnaversuvrsenvrees 202
`Configuring the Resolver .o.cccccccccccccseesesscssesvssesvscsssesesssesevseetteseetseseesteaess 205
`Configuring MaAMed oo cece cccce sees stecsesececscscsesesesssesererseveveenseesersreaveeeevenes 208
`Using nslookup iicccccccceceeeesescsesececseecsesscsscssecsnsssevssesssssssssrssaveesserevavaraees 221
`SUITIMNALY iscccccecccccecececenscneeneseeeneeseessssasssecssvaseesssessssteasssceseasssscesvesuistareaeeets 225
`
`Configuring Network SCrvers i.ccccccccccccccecsscssessccssescssessitevsssetissees 226
`
`The Network File System ooo ceccceeetesestestesesesesestecstetseecsvevsererersevereens 226
`Line Printer Daemon woo. eceseteessetsesesstescsessseetiseseenetssesesreviey 240
`Network Information Service .o.cccccccccccscccscscesssessesssesrsevevseteseststerevansees 245
`A BOOTP Server once cccccccceetecssensenseseesesssesecatssesessesevirssesinassete tene tenes 250
`DHCP oie ccc ccccecceetseeseseeseessssessassessasceevsteusssssevsssivaesstsestecseteesattansanvatens 258
`Managing Distributed Servers oo... ccccccccccessecsesstesessesssscsessecsseseravcrseevertestans 263
`Mail Servers oii ccicceesecsseeseseceeseststsevaesevevssecsscecescersessssasavsavavaneseavenseeaves 266
`SUMUMALY cece ccc ccrcceseceeeseessessesssesessasssessssasvaterserseseevsseseivsavarevavereeesaeeas 269
`
`10:
`
`SONAMAI ooo. ciececccccccccs cesses tes etsteseesitssstistitessussasessissetssesectiesevseetiusveteeseen 271
`
`Sendmail’s FUNCHON ic cccecssesesesetscsesesecsesssesscscseecssstevisresevivieeesereneesseenes 272
`Running sendmail as a Da@MON o.....cccccccccscccceecscsereereeevsecseraeeatssestsevsees 273
`sendmail Aliases icc cccceceeeeseseneesesrsecsceescsesesssssessvsestevssesensavevausetenensees 274
`The sendmail.cf File co.cc cccccscsssessessssssesessscsescscscscsvsesereresievenveseensessaveeens 276
`sendmail Configuration ooo ccccccccccecsccescseecacssscsecsssesrsesescsssesvevsvssuevseasereavenss 283
`Rewriting the Mail Address ooo. ccccccccecsecsccscseeseseseseescssssssssevscessrsevevtecsataes 295
`Modifying a sendmail.cf File 0c cccccceccsesscetecscsvscsesessssssesssvsceversesevaveevenes 304
`Testing sendimail.cf oo. iesecccccecseccecersceesuscesassesssessesersseseesiseventeereerenses 308
`SUIMIMALY ccc ecccce ee cneeeeseeeessasssesseessissussessevssuesssssvscseseuvscesseversrssavesnesneveteaes 318
`
`11:
`
`Troubleshooting TCP/IP o..ccccccccccccccscccccsssccsssessstssesssieteJesceeevseeeeeneneeees 319
`Approaching a Problemocc ccccecccssesseseeessseeesssusrscsestevsessersasivteserveseevacens 320
`Diagmostic TOMS oo. cccecsccssesscsscsceecsecsesrtescsessscsstsssesesvseueutasssaesasavsateanas 322
`Testing Basic Comnectivity occ ccsesesetececacsescetsesessitessressviveviearsasisens 324
`Troubleshooting Network ACCESS oo... ccecccccccccscsesseseesessusvsevssestvasessestestessvecees 328
`Checking Routing occ cccccccccsssssssestsssessssssesvsesussessesessevsuevsvsvsssvavseseetenenes 335
`Checking Name Service ooccicceccssscsssescsssesesseesesvsnsusesscsusessresvavevnesevestevses 341
`Facebook's Exhibit No. 1016/1116
`Page 5
`
`Facebook's Exhibit No. 1016/1116
`Page 5
`
`
`
`
`
` viti Table of Contents
`
`Analyzing Protocol Problems oo.ccccccccccccccsssesecsecssesesessvecescestevececeseeceeceeee. 349
`Protocol Case Study oicccccccecesssssssesesssesessssscstacsevsvssesevsvststavssieavevevessveesesvies 352
`Simple Network Management Protocol
`.o.ccccccccccscscccscssesesvesesescsvssescaresesvevevens 356
`SUMIMALY eee ccesesecsesesssssssstescescsstssevepstcsusassaansassesvstavsestitavittevstescesses 361
`
`12: Network SCCULUY oocecccccccccccessssssscssssecsssietsssisessriessiictsiitssisssssssesessees 362
`Security Planning o...cc ccc sessseseesesescscsvecscsesssssvsesssssvetststusseaeevevavevecenes 363
`User Authentication occ cccccccsssssesscsssrsesssnsvsvscseasevscssavscerssseaeavavevevsveveves 368
`Application SECULtY oii ceceseeesssessesscstsusssevsticessesesssevavsvaveseatsvestavaveveee 384
`Security MOMILOTIN oe eee ce tesecessececesscesecessvevsvacsesestavsesevatavscavarsersvevsnes 385
`ACCESS CONULOL occ ccc csesesesesesetetsesscseversasvitstvevsereasstterertatassavareesessenes 393
`ENCryption occ cc csesesesessetetesseseesecsvecessevssesvecsvsevavsussetsavavavecstavscitvevsees 396
`Firewalls oo... cscssesesssesesesescesssesesesssssvscsssssatavssavavsususaratavsveveseaversecsvevees 398
`Words to the Wis ooocccccccccecccccscesseseersesesesevsevscvivrsetestetesvereteciceetececesce 403
`SUMIMALY ccc ci ceccneesesesesesevssscevscssssesersasusvavssausrsuesavevetensevsvavecsessseseeseecenee 404
`
`13: Internet INfOrMation RESOUPCES ooocccccccccccccccccccsccccsccsceccescesceeccecescecen. 405
`The World Wide Web oicccccccccscsecssscscscsrssesesvsvsustersusavstatssessseavarsucstseeseeees 405
`ANONYMOUS FTP oc ccceeneeeseeseetsecsecssscvesscsevecseserveseussvettavstsevavanseaneses 408
`Finding Files occ ceccccscsesssnesseecscscsescevevsesersessesersnsssuaressvevsssavavevececeees 413
`Retrieving RFCS ccc cscsceseseseseessssesestesssecscssvsvscsvsesvavseavssatsusttatieetenvess 417
`Mailing Lists occ ccs eseseeesssssssessscssssstssstucscerssvevsvsvacssesasetsnscansvavevsvavavevees 420
`The White Pages oo... cccccsscsestessesesssssestesescssusscsssesstsusevsreavateressesteesscevees 423
`SUMIMALY eee ccc ccccceseeeseessesessssssesesecsssvscsssvsvscititavasersvaversvatenstevevavavevsesees 428
`
`Al PPP TOUS ooo cccccscssssssssssssessssesessesvsseovisseretssetsvavasvesssieessacsssiseseseesesesa 429
`
`Br A BatCd RESCPENCE ooeiiieicceceocsecescccssessvsssesssessssssistsvessisssissssisssisessesseeesees 449
`
`Cr A MAMOCA REPCLENCE ooieeceeccccccccccccsssvssevsssvesseesseessessresssisssisssessseesssesseseessees 497
`
`Dz A ADCPd RESCVENCE oooceeicccccccccccsecesvsesesssssvessessecsisssessesssessesssesesesesesssesseen 519
`
`Er A SENAMALIL REFCVENCE ooociiecccccccccccecccccsescsssessessssssesssessisssessisssesssesssessees 532
`Fo Selected TCP/IP HeQders oceccccccccccccccccscccscsscesssesssvsssestsvsssessriessseseseesses 583
`
`TAO accesses cece esseeesesevsessistiisssssssressressressunsestessauasistsiesetsressereseesees 589
`
`Facebook's Exhibit No. 1016/1116
`Page 6
`
`Facebook's Exhibit No. 1016/1116
`Page 6
`
`
`
`
`
`
`
`THISBOOK ISDUEONTHELASTDATE _
`STAMPEDBELOW =
`BOOKS REQUESTED BY ANOTHER BORROWER
`ARE SUBJECT/TO IMMEDIATE RECALL
`
`e
`
`
`MAR 0 7 2010
`
`LIBRARY, UNIVERSITY OF CALIFORNIA, DAVIS
`
`04613-1:(5/02)M
`
`Facebook's Exhibit No. 1016/1116
`Page 7
`
`Facebook's Exhibit No. 1016/1116
`Page 7
`
`
`
`
`
`THIS BOOK IS DUE ON THE LAST DATE
`STAMPED BELOW
`
`
`
`5
`
`
`
`Page
`
`B 2005
`
`LIBRARY, UNIVERSITY: OF CALIFORNIA, DAVIS
`http:/Aibnte.ucdavis.edu/PatronRenew.htm!
`Automated Phone Renewal (24-hour): (530) 752-1132
`D4613 (4/99)M
`
`e
`
`Facebook's Exhibit No. 1016/1116
`Page 8
`
`Facebook's Exhibit No. 1016/1116
`Page 8
`
`
`
`
`
`THIS: BOOKS: DUE.ON THE LAST: DATE
`STAMPED BELOW
`
`BOOKS REQUESTED BY. ANOTHER BORROWER
`ARE SUBJECT TO IMMEDIATE RECALL
`
`
`UCD LIBRARY GD LIBRARY
`DUE jan ~ 6 GABLE] ‘JAN 1 9 2000
`
`
`
`LIBRARY, UNIVERSITY, OF CALIFORNIA, DAVIS
`http://www.lib.ucdavis.edu/access/circweb/patron.him
`Automated Phone Renewai (24--hour). (530) 75231132
`04613 (3/98)
`AUG 1 ¢ 2000 RENT
`
`Facebook's Exhibit No. 1016/1116
`Page 9
`
`Facebook's Exhibit No. 1016/1116
`Page 9
`
`
`
`Facebook's Exhibit No. 1016/1116
`Page 10
`
`Facebook's Exhibit No. 1016/1116
`Page 10
`
`