Home > Store

Integrated Cisco and UNIX Network Architectures

Add To My Wish List

Integrated Cisco and UNIX Network Architectures

By Gernot Schmied
Published Sep 14, 2004 by Cisco Press. Part of the Networking Technology series.

Book

Sorry, this book is no longer in print.

Not for Sale

Description

Sample Content

Updates

Copyright 2005
Dimensions: 7-3/8" x 9-1/8"
Pages: 600
Edition: 1st

Book
ISBN-10: 1-58705-121-4
ISBN-13: 978-1-58705-121-0

Design, build, and operate integrated gateway routing systems

Learn how to design, build, and administer integrated gateway routing systems
Identify the advantages and disadvantages of Cisco/UNIX integrated designs
Review lab exercises throughout the book that bring concepts to life
Encounter the fascinating world of dynamic UNIX routing and TCP/IP stacks
Understand the way forwarding and signaling are implemented in the UNIX world
Gain proficiency with tunnels and VPNs
Utilize advanced features such as high availability, NAT, bandwidth management, policy routing, and multicast architectures
Explore Linux and BSD networking concepts

UNIX gateways introduce massive performance possibilities at a fraction of the price of dedicated proprietary appliances by performing network tasks entirely in software. With Cisco Systems routers dominating the Internet and enterprise networking and UNIX routing and gateway solutions spreading from within server farms and data centers, new opportunities and possibilities arise for system and network administrators who understand the benefit of integrated designs. For example, the use of UNIX gateways can enable intrusion detection, firewalling, cable and DSL access, terminal servers and access concentrators, VPNs, roaming user support, and other LAN and WAN services. Far from being mutually exclusive, Cisco devices, UNIX operating systems, and open source applications can enjoy a peaceful, perhaps even inevitable, coexistence for years to come. Integrated Cisco and UNIX Network Architectures shows how Cisco routers, switches, and firewalls seamlessly work together with UNIX operating systems in an integrated networking and security environment.

Integrated Cisco and UNIX Network Architectures reveals not just the feasibility but also the desirability of Cisco/UNIX integrated routing with regard to systems integration, interoperability, and feature requirements. Detailed, progressively complex lab scenarios emphasize enterprise and ISP requirements, casting light on the similarities and differences of these two worlds. Platform issues, such as behavior of firewall filters, kernel features, and proper standards compliance, are discussed, analyzed with sniffers, and tested with handcrafted traffic from packet generators and test applications.

If you want to master and maximize the operation of your UNIX and Cisco network architectures, this book shows you how.

This book is part of the Networking Technology Series from Cisco Press¿ which offers networking professionals valuable information for constructing efficient networks, understanding new technologies, and building successful careers.

Introduction

Chapter 1 Operating System Issues and Features—The Big Picture

Why UNIX Is Viable

Routing, Forwarding, and Switching Approaches

The Evolution of AT&T System V (SVR4) UNIX and 4.4-Lite BSD Derivatives

Operating Systems Design Considerations

Kernel-Space Modules Versus User-Space Applications

Cisco IOS Software

OpenBSD

FreeBSD

NetBSD

Linux

GNU Hurd/Mach

Other Commercial Unices

Summary

Recommended Reading

Endnotes

Chapter 2 User-Space Routing Software

The GNU Zebra Routing Software

Feature Description and Architecture of Zebra

Installation and Startup of Zebra

The Development Roadmap of Zebra

The Quagga Project

The routed Daemon

Feature Description of routed

Installation of routed

Lab 2-1: routed

GateD 3.6

Feature Description

Installation of GateD 3.6

Reliance on Service

Maturity, Scalability, and Stability of GateD 3.6

MRT (Multithreaded Routing Toolkit)

Feature Description of MRT

Installation of MRT

Maturity, Scalability, and Stability of MRT

The Bird Project

Feature Description of Bird

Installation of Bird

Maturity, Scalability, and Stability of Bird

The XORP Project

Feature Description of XORP

The MIT Click Modular Router Project

XORP Installation

Maturity, Scalability, and Stability of XORP

Multicast Routing Daemons: mrouted and pimd

Summary

Recommended Reading

Chapter 3 Kernel Requirements for a Full-Featured Lab

The sysctl Facility

IP Forwarding Control and Special Interfaces

VLAN Subinterface Support and Trunk Termination (802.1Q)

Alias or Secondary Interfaces

Ethernet Channel Bonding

Interface Cloning

ECMP (Equal-Cost Multi-Path)

Driver Support for LAN/WAN Interface Cards

Encapsulation Support for WAN Interface Cards

Support for Bridging Interfaces

TCP Tuning

Tunnel Support

Multicast Support

Firewall and Traffic-Shaping Support

The IPv6 Protocol Stack

Summary

Recommended Reading

Chapter 4 Gateway WAN/Metro Interfaces

Dial-on-Demand Routing: Analog and ISDN Dialup

Wireless Technologies

SDH/SONET

Powerline Communications

Ethernet to the Home/Premises

Cisco Long-Reach Ethernet (LRE)

Synchronous Serial Interface and PRIs

ATM Interfaces

Linux ATM Support

The FreeBSD HARP ATM Subsystem

Cable Access (Ethernet Interfaces)

DSL Access

Lab 4-1: Synchronous Serial Connection Setup

Exercise 4-1: Frame Relay Point-to-Multipoint Setup

Summary

Recommended Reading

Chapter 5 Ethernet and VLANs

Ethernet NICs

Hubs, Bridges, and Multilayer Switches

Access Ports, Uplinks, Trunks, and EtherChannel Port Groups

Alias Interfaces

VLAN Configurations

Linux VLAN Capabilities

FreeBSD/OpenBSD VLAN Capabilities

A Few Words on Cabling

Lab 5-1: FreeBSD Bridge Cluster Lab

Lab 5-2: Linux Bridging and the Spanning Tree

Lab 5-3: OpenBSD Bridging and Spanning Tree

A Few Words on Layer 2 Security

Exercise 5-1: Linux/FreeBSD Ethernet Channel Bonding

Exercise 5-2: STP Operation

Summary

Recommended Reading

Chapter 6 The Analyzer Toolbox, DHCP, and CDP

Terminal Emulation Software

Secure Shell Tools

Protocol Analyzer

Statistical Tools

Port Scanners

socklist and netstat

Ping and Traceroute Combinations

DNS Auditing Tools

Traffic and Packet Generators

What You Need in a Small Toolbox

The BSD ipfilter Traffic Generator

The Linux Kernel Packet Generator

Performance-Testing and Network-Benchmarking Tools

Lab 6-1: Using Sniffers—DHCP Example

Lab 6-2: UNIX CDP Configuration

Summary

Recommended Reading

Chapter 7 The UNIX Routing and ARP Tables

Address Resolution: ARP and RARP

Proxy ARP

ARP Cache

Static ARP Entries

Gratuitous ARP

Reverse ARP (RARP), the Bootstrap Protocol (BOOTP), and Dynamic H

Configuration Protocol (DHCP)

TFTP

Inverse ARP (InARP), UNARP, and DirectedARP

Power of the Linux ip, netstat, and route Utilities

ARP-Related Tools

Lab 7-1: ARP Security Issues

Summary

Recommended Reading

Endnote

Chapter 8 Static Routing Concepts

Administrative Distance and Metric

Classful Routing, VLSM, and CIDR

Default Gateways, Default Routes, and Route(s) of Last Resort

Route Caches, Routing Tables, Forwarding Tables, and the ISO Context

The Near and Far End of a Link

The route Command—Adding and Removing Routes

Route Cloning

Blackholes and Reject/Prohibit Routes

Floating Static Routes

Equal-Cost Multi-Path (ECMP) Routing

Lab 8-1: Interface Metrics, Floating Static Routes, and Multiple Equal-Cost Rou

(ECMP)

Linux TEQL (True Link Equalizer)

Adding Static Routes via Routing Daemons

Summary

Recommended Reading

Endnotes

Chapter 9 Dynamic Routing Protocols—Interior Gateway Protocols

Interaction with the UNIX Routing Table

Classification of Dynamic Routing Protocols

Link-State Protocols

Distance-Vector Protocols

From RIP to EIGRP

RIP—A Distance-Vector Routing Protocol (Bellman-Ford-Fulkerson)

(E)IGRP

Lab 9-1: RIPv2 Scenario

Lab 9-2: RIP Neighbor Granularity

Lab 9-3: RIPv2 via GateD

Exercise 9-1: RIPv2 over Frame Relay Topologies

Exercise 9-2: RIPv2 Metric Manipulation and Redistribution Control

Introduction to Link-State Routing Protocols

Area Concepts

The Full Picture—Autonomous Systems and Areas

OSPFv2

Lab 9-4: Leaf-Area Design Featuring GateD and Cisco IOS

Exercise 9-3: Exporting Loopback Addresses

Lab 9-5: Leaf-Area Design Featuring Zebra and Cisco IOS Software

ECMP—Manipulating Metric and Distance

The Art of Redistribution

Lab 9-6: Route Filtering and Redistribution

Lab 9-7: OSPF Authentication

Route Tagging and Multiple OSPF Processes/Instances

IS-IS (Intermediate System-to-Intermediate System)

Disadvantages of IS-IS

Advantages of IS-IS

Relevant IS-IS Standards

Current IS-IS Developments

Lab 9-8: IS-IS Flat Backbone Area

Lab 9-9: IS-IS Backbone and Leaf Area

Lab 9-10: OSPF Point-to-Point Lab

Exercise 9-4: Dynamic Routing in Point-to-Multipoint Scenarios

Advanced OSPF Features

Traffic-Engineering Extensions

Opaque LSAs

Quagga’s Implementation

Summary

Recommended Reading

Endnotes

Chapter 10 ISP Connectivity with BGPv4—An Exterior Gateway Path-Vector Rout

Protocol for Interdomain Routing

Exterior Gateway Protocols: EGP and BGPv4

BGPv4: Introductory Thoughts

Neighboring Relations

Limitations of IGPs

Flavors of BGPv4

BGP Message Types

Capabilities Negotiation

BGP Finite State Machine

BGP Path Attributes

BGP Active Path-Selection Criteria

BGP Loop Detection

Provider-Independent Addresses (PI Prefixes, Provider Aggregates)

Internet Exchange Points

EBGP and EBGP Multihop

Weighted Route Dampening

The next-hop-self Command

IGP Synchronization

The soft-reconfiguration Command

Multiple BGP Instances and Views and the Route Server Context

IBGP Full Mesh, Route Reflectors, and Confederation

Lab 10-1: Route Reflection

Exercise 10-1: BGP and IGP Interaction

Exercise 10-2: BGP Synchronization

Lab 10-2: Confederation

Lab 10-3: Multi-AS BGP Topology

Lab 10-4: BGP with GateD

Avoiding Single Points of Failure

Single-Homed Nontransit (Stub) Scenario with a Private AS

Multi-Homed Nontransit (Stub) Scenario

Transit Services

Route Server and Routing Registries

Requesting ASNs and IP Addresses

Zebra Route Server with Multiple Views

The Route Server Next Generation Project (RSng)

Internet Routing Registries

The Whois/Rwhois Interface

IRRd

The IRRToolSet

Looking Glasses

Cisco IOS Configuration

The Looking Glass CGI Script and HTML Code

Zebra Looking Glasses

Routing Policies

Defining an AS Policy

BGP Route Maps and Filters

BGP Communities and Extended Communities

Special BGP Topics

BGP “Pseudo” Load Balancing

BGP Security Considerations

Multiprotocol BGP Extensions

Summary

Recommended Reading

Chapter 11 VPN Technologies, Tunnel Interfaces, and Architectures

The Rationale for Tunnels in Routing Environments

The VPNC Concept of VPNs

The OSI Stack Perspective

Internet, Intranet, and Extranet Terminology

IP-IP Tunnel

Lab 11-1: IP-IP Tunnel Linux-to-FreeBSD

Lab 11-2: IP-IP Tunnel OpenBSD-to-Cisco

Generic Router Encapsulation (GRE) Tunnel

Lab 11-3: GRE Tunnel OpenBSD-to-Cisco

Lab 11-4: GRE Tunnel Linux-to-FreeBSD (Featuring gre-tun)

Lab 11-5: Linux-to-Cisco GRE Tunnel

Exercise 11-1: GRE Advanced Features

Special Multicast and IPv6 Tunneling (RFC 2473, RFC 3053)

Cisco L2F (Layer 2 Forwarding)

PPTP (Point-to-Point Tunnel Protocol)

Exercise 11-2: PPTP on UNIX

L2TP (Layer 2 Tunnel Protocol)

Securing L2TP Using IPSec (RFC 3193)

L2TP Operation

L2TPv3 and Related “Work in Progress”

L2TPd for UNIX: A Project in Transition

Exercise 11-3: L2TP

Mobile IP

User-Space Tunneling

CIPE (Crypto IP Encapsulation)

V-TUN (Virtual Tunnel)

OpenVPN

Stunnel/SSLwrap—SSL/TLS-Based “Wrapped” Tunnels and SSL Proxying/Relaying

Secure Shell (SSH)

IPSec Foundation

IPSec ESP/AH and Tunnel and Transport Mode

Manual/Automatic Keying, Preshared Secrets, and Certificates

IKE Phase 1 and 2: Main Mode and Aggressive Mode

Resolving the IKE, PKI, SA, ISAKMP, and Oakley Confusion

What Is Opportunistic Encryption (OE)?

What Is NAT-Traversal (NAT-T)?

DHCP Provisioning over IPSec Tunnel Mode

IPSec Implementations

Linux IPSec

KAME

FreeBSD

OpenBSD

General Tunnel and Specific IPSec Caveats

Tunnels and Firewalls

Tunnels Do Not Like NAT

Tunnels Cause MTU Issues

Tunnels Add Protocol Overhead

Unnumbered Links and Tunnel Routing

Multicast Transit via Point-to-Point Tunnels

Crypto Performance

High Availability

VPN Deployment and Scalability

Advice About IPSec Lab Scenarios

Lab 11-8: An IPSec with IKE (racoon/isakmpd) Scenario (Gateway-to-Gate

Tunnel Mode)

Road-Warrior Scenarios (Road Warrior-to-OpenBSD/FreeBSD Gateway with IKE)

Dynamic Routing Protocols over Point-to-Point Tunnels—Transpar

Infrastructure VPN

IPSec Development and Evolution

Summary

Recommended Reading

Endnotes

Chapter 12 Designing for High Availability

Increasing Availability

Withstanding a (D)DoS Attack

Network HA Approaches

Redundant Paths

Standby Equipment

Simple but Effective Approaches to Server HA

DNS Shuffle Records and Round-Robin (DNS RR)

Dynamic Routing Protocols

Firewall Failover

Clustering and Distributed Architectures

Linux Virtual Server Project (LVSP)

Connection Integrity Issues

LVS—Virtual Services

Linux Ultra Monkey

IP Address Takeover with Heartbeat

The Service Routing Redundancy Daemon (SRRD)

IPv4/IPv6 Anycast

A Few Words About Content Caches and Proxies

Load Balancing

Firewall Load-Balancing Approaches

HighUpTime Project loadd Daemon

Pure Load Balancer

The PEN Load Balancer

Super Sparrow

Cisco Gateway Load Balancing Protocol (GLBP)

Cisco HA and Load-Balancing Approaches

Cisco IOS Server Load Balancing (SLB) Feature

Cisco Content Networking Devices and Software

VRRP

VRRPd

Freevrrpd

Comparison of the VRRP Implementations

OpenBSD CARP

IRDP

Summary

Recommended Reading

Endnotes

Chapter 13 Policy Routing, Bandwidth Management, and QoS

Policy Routing

Policy Routing on BSD

Linux iproute2 Policy Routing

Cisco IOS Policy-Routing Example

Traffic Shaping, Queuing, Reservation, and Scheduling

Linux QoS

Layer 3 QoS: IP ToS, Precedence, CoS, IntServ, and DiffServ Codepoints

802.1P/Q Tagging/Priority—QoS at the Data-Link/MAC Sublayer

MPLS Exp Field and MPLS Traffic Engineering

DiffServ and RSVP/RSVP-TE Implementations for UNIX

Cisco IOS QoS and Queuing Architectures

UNIX Firewalling Engines and Queuing

OpenBSD ALTQ+pf

FreeBSD ipfilter+ALTQ

FreeBSD IP Firewall(ipfw) + dummynet

Linux Firewall Marking and iproute2 (ip/tc)

Bell Labs’ Eclipse—An Operating System with QoS Support

Summary

Recommended Reading

Endnote

Chapter 14 Multicast Architectures

Multicast Deployments

Multicast Addresses and Scope

Administratively Scoped IP Multicast

The Multicast Protocol Cocktail

Internet Group Management Protocol (IGMP) and Cisco Group Managem

Protocol (CGMP)

IGMPv1 Operation

IGMPv2 Operation

IGMPv3 Implementations

Cisco IOS Multicast Router Configuration and IGMP/CGMP Operation

Cisco Group Management Protocol (CGMP)

The Cisco IOS Multicast Routing Monitor (MRM)

mrouted and DVMRP

mrouted and the MBONE

Lab 14-1: DVMRP via mrouted

Native-Multicast Test Applications

The ip and smcroute Multicast Utilities

PIM Operation and Daemons

Lab 14-2: Native Linux and FreeBSD Multicast (PIM-SMv2) in Combination w

Cisco PIM-SM-DM

Lab 14-3: XORP PIM Operation

Multicast Open Shortest Path First (MOSPF)

Multicast Source Discovery Protocol (MSDP)

BGPv4 Multicast Extensions (Multiprotocol BGP, RFC 2858)

Multicast Transport Layer Protocols

Multicast Invitations and Session Announcements

Multicast Security

Summary

Recommended Reading

Chapter 15 Network Address Translation

The NAT Foundation—Basic/Traditional NAT

NAT, PAT(NAPT), Masquerading, and Port Mapping/Multiplexing

Static NAT and ARP/Routing Issues

Redirection (Port Forwarding/Relaying or Transparent Proxying)

UNIX NAT Approaches

Lab 15-1: OpenBSD ipfilter

Lab 15-2: FreeBSD ipfw+natd

Lab 15-3: BSD Packet Filter (pf)

Lab 15-4: Linux NAT (iptables)

NAT-Hostile Protocols

Future Developments: NAT-T, MPLS+NAT, Load Balancer

NAT Redundancy—Stateful Failover

Summary

Recommended Reading

Appendix A UNIX Kernel Configuration Files

Appendix B The FreeBSD Netgraph Facility

Index

Submit Errata

Cisco Press Promotional Mailings & Special Offers

I would like to receive exclusive offers and hear about products from Cisco Press and its family of brands. I can unsubscribe at any time.

Privacy Notice

Overview

Pearson Education, Inc., 221 River Street, Hoboken, New Jersey 07030, (Pearson) presents this site to provide information about Cisco Press products and services that can be purchased through this site.

This privacy notice provides an overview of our commitment to privacy and describes how we collect, protect, use and share personal information collected through this site. Please note that other Pearson websites and online products and services have their own separate privacy policies.

Collection and Use of Information

To conduct business and deliver products and services, Pearson collects and uses personal information in several ways in connection with this site, including:

Questions and Inquiries

For inquiries and questions, we collect the inquiry or question, together with name, contact details (email address, phone number and mailing address) and any other additional information voluntarily submitted to us through a Contact Us form or an email. We use this information to address the inquiry and respond to the question.

Online Store

For orders and purchases placed through our online store on this site, we collect order details, name, institution name and address (if applicable), email address, phone number, shipping and billing addresses, credit/debit card information, shipping options and any instructions. We use this information to complete transactions, fulfill orders, communicate with individuals placing orders or visiting the online store, and for related purposes.

Surveys

Pearson may offer opportunities to provide feedback or participate in surveys, including surveys evaluating Pearson products, services or sites. Participation is voluntary. Pearson collects information requested in the survey questions and uses the information to evaluate, support, maintain and improve products, services or sites; develop new products and services; conduct educational research; and for other purposes specified in the survey.

Contests and Drawings

Occasionally, we may sponsor a contest or drawing. Participation is optional. Pearson collects name, contact information and other information specified on the entry form for the contest or drawing to conduct the contest or drawing. Pearson may collect additional personal information from the winners of a contest or drawing in order to award the prize and for tax reporting purposes, as required by law.

Newsletters

If you have elected to receive email newsletters or promotional mailings and special offers but want to unsubscribe, simply email information@ciscopress.com.

Service Announcements

On rare occasions it is necessary to send out a strictly service related announcement. For instance, if our service is temporarily suspended for maintenance we might send users an email. Generally, users may not opt-out of these communications, though they can deactivate their account information. However, these communications are not promotional in nature.

Customer Service

We communicate with users on a regular basis to provide requested services and in regard to issues relating to their account we reply via email or phone in accordance with the users' wishes when a user submits their information through our Contact Us form.

Other Collection and Use of Information

Application and System Logs

Pearson automatically collects log data to help ensure the delivery, availability and security of this site. Log data may include technical information about how a user or visitor connected to this site, such as browser type, type of computer/device, operating system, internet service provider and IP address. We use this information for support purposes and to monitor the health of the site, identify problems, improve service, detect unauthorized access and fraudulent activity, prevent and respond to security incidents and appropriately scale computing resources.

Web Analytics

Pearson may use third party web trend analytical services, including Google Analytics, to collect visitor information, such as IP addresses, browser types, referring pages, pages visited and time spent on a particular site. While these analytical services collect and report information on an anonymous basis, they may use cookies to gather web trend information. The information gathered may enable Pearson (but not the third party web trend services) to link information with application and system log data. Pearson uses this information for system administration and to identify problems, improve service, detect unauthorized access and fraudulent activity, prevent and respond to security incidents, appropriately scale computing resources and otherwise support and deliver this site and its services.

Cookies and Related Technologies

This site uses cookies and similar technologies to personalize content, measure traffic patterns, control security, track use and access of information on this site, and provide interest-based messages and advertising. Users can manage and block the use of cookies through their browser. Disabling or blocking certain cookies may limit the functionality of this site.

Do Not Track

This site currently does not respond to Do Not Track signals.

Security

Pearson uses appropriate physical, administrative and technical security measures to protect personal information from unauthorized access, use and disclosure.

Children

This site is not directed to children under the age of 13.

Marketing

Pearson may send or direct marketing communications to users, provided that

Pearson will not use personal information collected or processed as a K-12 school service provider for the purpose of directed or targeted advertising.
Such marketing is consistent with applicable law and Pearson's legal obligations.
Pearson will not knowingly direct or send marketing communications to an individual who has expressed a preference not to receive marketing.
Where required by applicable law, express or implied consent to marketing exists and has not been withdrawn.

Pearson may provide personal information to a third party service provider on a restricted basis to provide marketing solely on behalf of Pearson or an affiliate or customer for whom Pearson is a service provider. Marketing preferences may be changed at any time.

Correcting/Updating Personal Information

If a user's personally identifiable information changes (such as your postal address or email address), we provide a way to correct or update that user's personal data provided to us. This can be done on the Account page. If a user no longer desires our service and desires to delete his or her account, please contact us at customer-service@informit.com and we will process the deletion of a user's account.

Choice/Opt-out

Users can always make an informed choice as to whether they should proceed with certain services offered by Cisco Press. If you choose to remove yourself from our mailing list(s) simply visit the following page and uncheck any communication you no longer want to receive: www.ciscopress.com/u.aspx.

Sale of Personal Information

Pearson does not rent or sell personal information in exchange for any payment of money.

While Pearson does not sell personal information, as defined in Nevada law, Nevada residents may email a request for no sale of their personal information to NevadaDesignatedRequest@pearson.com.

Supplemental Privacy Statement for California Residents

California residents should read our Supplemental privacy statement for California residents in conjunction with this Privacy Notice. The Supplemental privacy statement for California residents explains Pearson's commitment to comply with California law and applies to personal information of California residents collected in connection with this site and the Services.

Sharing and Disclosure

Pearson may disclose personal information, as follows:

As required by law.
With the consent of the individual (or their parent, if the individual is a minor)
In response to a subpoena, court order or legal process, to the extent permitted or required by law
To protect the security and safety of individuals, data, assets and systems, consistent with applicable law
In connection the sale, joint venture or other transfer of some or all of its company or assets, subject to the provisions of this Privacy Notice
To investigate or address actual or suspected fraud or other illegal activities
To exercise its legal rights, including enforcement of the Terms of Use for this site or another contract
To affiliated Pearson companies and other companies and organizations who perform work for Pearson and are obligated to protect the privacy of personal information consistent with this Privacy Notice
To a school, organization, company or government agency, where Pearson collects or processes the personal information in a school setting or on behalf of such organization, company or government agency.

Links

This web site contains links to other sites. Please be aware that we are not responsible for the privacy practices of such other sites. We encourage our users to be aware when they leave our site and to read the privacy statements of each and every web site that collects Personal Information. This privacy statement applies solely to information collected by this web site.

Requests and Contact

Please contact us about this Privacy Notice or if you have any requests or questions relating to the privacy of your personal information.

Changes to this Privacy Notice

We may revise this Privacy Notice through an updated posting. We will identify the effective date of the revision in the posting. Often, updates are made to provide greater clarity or to comply with changes in regulatory requirements. If the updates involve material changes to the collection, protection, use or disclosure of Personal Information, Pearson will provide notice of the change through a conspicuous notice on this site or other appropriate way. Continued use of the site after the effective date of a posted revision evidences acceptance. Please contact us if you have questions or concerns about the Privacy Notice or any objection to any revisions.

Last Update: November 17, 2020

Email Address