@ethniccel1 (tag you as you seem interested).
In the UK they mostly just ask technical questions and don't want a degree and often no references.
I've a list of Q&A I've been asked in the past and I've put in my answers so that I just revise it before an interview. Here is the network section. I have many others. I don't have C Q&A because I'm fluent in it now, and don't need reminders. I have these reminders so that as soon as I'm asked a question I give them the answer like a quarter second after. It gives a good impression.
Q. What is /etc/services used for?
A. Used by some applications to map service names to port numbers.
Q. How to list NICs on a host?
A. tcpdump -D
Q. How to turn off DNS?
A. # vi /etc/resolv.conf
comment out "nameserver" lines
Q. Name some TCP applications?
A. Apache 80
Apache 443
MySQL 3306
NFS 2049
LDAP 389
LDAPS 636
ssh 22
Q. Name some UDP applications?
A. named 53/UDP
DHCP
Q. How many machines in the /27 netmask range?
A. 30 (remember lower and upper not used)
Q. Which type of nodes exist on a network?
A. Hosts and routers.
Q. Difference between TCP and UDP?
A. Both operate at the transport layer.
TCP guarantees that all sent packets will reach the destination in the correct order.
UDP datagrams can arrive out of order or don't arrive at all.
Q. How does traceroute work?
A. traceroute sends a packet to the destination with a TTL of 1. It repeats this,
incrementing the TTL by 1, until it receives a packet from the destination.
Q. Describe the difference between unicast, broadcast, multicast.
A. Unicast: One sender, one receiver.
Broadcast: One sender, many receivers.
Multicast: One or more senders, many receivers.
Q. How to determine which process is listening on a port
A. netstat -planet or -plant
Q. What is ICMP?
A. Operates on the network layer along with IP.
Used to send error messages.
Used by ping, traceroute.
Q. What is a sub netmask?
A. A range of IP addresses created by applying a netmask to a network address.
Q. What does CIDR stand for?
A. Classless Inter-Domain Routing.
Replaces the older system based on Classes A, B, and C.
Q. Explain CIDR?
A single IP address can be used to designate many unique IP addresses with CIDR.
A CIDR IP address looks like a normal IP address except that it ends with a slash followed by a number,
called the IP network prefix.
Makes more IP addresses available within organizations.
Q. What are the port numbers for:
A. NTP 123/udp
DNS 53/tcp & 53/udp
SSH 22
SCP 22
Q. Explain iptables.
A. filter and nat tables have chains of rules (match part and target part)
iptables -t filter -A INPUT -p tcp -s 192.168.0.1 --sport 123 -d 192.168.0.2 --dport 1024: -j ACCEPT
Q. How to debug iptables?
A. iptables -t filter -nvL --line-numbers INPUT
iptables -t filter -Z INPUT
Q. What are the TCP/IP layers?
A. APPLICATION
TRANSPORT (TCP/UDP)
INTERNET (IP/ICMP/ARP)
LINK (Ethernet)
Q. What is IP aliasing?
A. Add more than one IP address to a NIC.
Used for a Virtual IP (VIP) as opposed to an actual IP.
Q. How to determine the IPs of clients connecting to the server.
A. tcpdump or iptables logging.
Q. Given a tcpdump output, how to display just unique IPs and nothing else.
A. awk | sort | uniq
Q. Dig: Reverse DNS lookup?
A. dig -x <IP>
Q. Dig: Specify a name servers?
A. dig @8.8.8.8
www.amazon.com
Q. How to configure DNS an a client host.
A. Add name server IPs to /etc/resolv.conf .
Q. Name and describe network tools.
A. tcpdump, ping, dig, netcat.
Q. What are the similarities between ping and traceroute?
A. Both send ICMP packets.
Q. How many bytes in a MAC address?
A. 6.
3 bytes manufacturer code; 3 bytes S/N.
Q. How to use tcpdump to display the headers?
A. # tcpdump -s 1500
Q. Name 4 DNS records?
A. A, PTR, CNAME, MX.
Q. How to refresh DNS zone files?
A. # rndc reload
Q. Given packets are inbound, but not outboud, what could the problem be?
A. Bad route.
Q. How to do SSH port forwarding?
A.
Q. How to enable IP forwarding? (default is disabled)
A. vim /etc/sysctl.conf
> net.ipv4.ip_forward = 1
sysctl -p /etc/sysctl.conf
Q. Ethernet Channel Bonding?(Many NICs can be bonded into a single virtual NIC)
A. modinfo bonding
modprobe bonding
ifcfg-bond0
>MASTER=yes
>OPTIONS=
NIC files:-
>MASTER=bond0
>SLAVE=yes
Test:-
ifdown eth0
cat /proc/net/bonding/bond0
Q. Explain NAT?
Masquerading
Port forwarding
