Rediscover fundamental and advanced topics in IPAM, DNS, DHCP and other core networking technologies with this updated one-stop reference
The thoroughly revised second edition of IP Address Management is the definitive reference for working with core IP management technologies, like address allocation, assignment, and network navigation via DNS. Accomplished professionals and authors Timothy Rooney and Michael Dooley offer readers coverage of recent IPAM developments in the world of cloud computing, Internet of Things (IoT), and security, as well as a comprehensive treatment of foundational concepts in IPAM.
The new edition addresses the way that IPAM needs and methods have evolved since the publication of the first edition. The book covers the impact of mainstream use of private and public cloud services, the maturation of IPv6 implementations, new DNS security approaches, and the proliferation of IoT devices. The authors have also reorganized the flow of the book, with much of the technical reference material appearing at the end and making for a smoother and simpler reading experience.
The 2nd edition of IP Address Management also covers topics like such as:
- Discussions about the fundamentals of Internet Protocol Address Management (IPAM), including IP addressing, address allocation and assignment, DHCP, and DNS
- An examination of IPAM practices, including core processes and tasks, deployment strategies, IPAM security best-practices, and DNS security approaches
- A treatment of IPAM in the modern context, including how to adapt to cloud computing, the Internet of Things, IPv6, and new trends in IPAM
- A one-stop reference for IPAM topics, including IP addressing, DHCP, DNS, IPv6, and DNS security
Perfect for IP network engineers and managers, network planners, network architects, and security engineers, the second edition of IP Address Management also belongs on the bookshelves of senior undergraduate and graduate students studying in networking, information technology, and computer security-related courses and programs.
Preface 1
Part 1: IPAM Introduction 2
Chapter 1 Introduction 3
IP Networking Overview 3
Why Manage IP space? 18
Basic IPAM Approaches 19
Chapter 2 IP Addressing 21
Internet Protocol History 21
The Internet Protocol, Take 1 21
The Internet Protocol, Take 2 28
IPv4-IPv6 co-existence 33
Chapter 3 IP Address Assignment 35
Address Planning 35
Endpoint address allocation 39
Server-based address allocation using DHCP 40
DHCP for IPv6 (DHCPv6) 43
IPv6 Address Autoconfiguration 46
Chapter 4 Navigating the Internet with DNS 51
Domain Hierarchy 51
Name Resolution 52
Zones and Domains 55
Reverse Domains 57
Additional Zones 62
Chapter 5 IPAM Technology Applications 64
DHCP Applications 64
Popular DNS Applications 72
Part 2: IPAM Mechanics 76
Chapter 6 IP Management Core Tasks 77
IPAM is Foundational 77
FCAPS Summary 79
Configuration Management 79
Network Services Configuration 96
Fault Management 97
Accounting Management 100
Performance Management 103
Security Management 105
ITIL® Process Mappings 105
Chapter 7 IPv6 Deployment 111
IPv6 Deployment Process Overview 111
IPv6 Address Plan Objectives 112
IPv4-IPv6 Co-Existence Technologies 117
Dual Stack Approach 118
Tunneling Approaches 119
Translation Approaches 124
Bump in the Host (BIH) 128
Application Migration 133
Planning Your IPv6 Deployment Process 133
Chapter 8 IPAM for the Internet of Things 135
IoT architectures 135
6LoWPAN 137
Summary 141
Chapter 9 IPAM in the Cloud 142
IPAM VNFs 142
Cloud IPAM concepts 142
Cloud Automation with APIs 146
Workflow Realization 153
Automation Scenarios 154
Summary 158
Part 3: IPAM and Security 159
Chapter 10 IPAM Services Security 160
Securing DHCP 160
DNS infrastructure Risks and Attacks 163
DNS Service Denial 164
Reflector Style Attacks 167
Authoritative Poisoning 167
Resolver Redirection Attacks 168
Securing DNS transactions 169
Last Mile Protection 174
DNS Encryption 174
Chapter 11 IPAM and Network Security 178
Securing Network Access 178
Securing the network using IPAM 183
Malware Detection using DNS 184
Other attacks that leverage DNS 189
DNS Rebinding Attack 190
Data Exfiltration 190
Advanced Persistent Threats 192
Chapter 12 IPAM and Your Internet Presence 193
IP address space integrity 193
Publicizing your public namespace 193
Signing your public namespace 195
Enhancing Internet application encryption integrity 200
Securing Email with DNS 202
Part 4: IPAM in Practice 206
Chapter 13 IPAM Use Case 207
Introduction 207
IPv4 Address Allocation 209
IPAM Worldwide’s Public IPv4 Address Space 216
IP Address Tracking 219
DNS and IP Address Management 220
Chapter 14 IPAM Deployment Strategies 223
General deployment principles for DHCP/DNS 223
DHCP Deployment 224
DNS Deployment 229
Deploying DNS Servers with Anycast Addresses 238
IPAM Deployment Summary 241
Chapter 15 The Business Case for IPAM 243
IPAM Business Benefits 243
Business Case Overview 244
Business Case Cost Basis 245
Business Case Expenses 262
Netting it Out: Business Case Results 262
Conclusion 263
Chapter 16 IPAM evolution/trends 264
Security advancements 264
Intent-based Networking 265
Artificial Intelligence applied to IPAM 266
Edge Computing 269
Identifier/Locator Networking 270
Information Centric Networking 270
Part 5: IPAM Reference 272
Chapter 17 IP Addressing Reference 273
IP Version 4 273
IP version 6 274
Chapter 18 DHCP Reference 282
DHCPv6 Protocol 282
DHCP for IPv4 293
Chapter 19 DNS Reference 306
DNS Message Format 306
Internationalized Domain Names 308
DNS Message Format 308
DNS Update Messages 314
DNS Extensions (EDNS0) 316
The DNS Resolution Process Revisited 319
DNS Resolution Privacy Extension 325
DNS Resolver Configuration 326
DNS Applications and Resource Records 327
DNS Resource Record Summary 362
Chapter 20 RFC Reference 368
IPv4 Protocol RFCs 368
IPv6 Protocol RFCs 368
IPv4/IPv6 Co-Existence RFCs 370
IP Address Management RFCs 372
DHCP Protocol RFCs 373
DHCPv6 Protocol RFCs 376
DNS Protocol RFCs 377
DNSSEC RFCs 381
Non-DNSSEC DNS Security-related RFCs 382
DNS ENUM-related RFCs 383
Management or Operational RFCs 384
Chapter 21 Glossary 385
Chapter 22 References 386
Michael Dooley
