4. APPLICATION LAYER PROTOCOLS
4.2 File Transfer Protocol (FTP)
This section is dedicated to detailed explanation of the FTP protocol. File Transfer Protocol is closely related to the Transmission Control Protocol (TCP) and therefore it is also analyzed.
4. Application Layer Protocols
21
4.2.1 FTP over TCP
File Transfer Protocol provides a reliable way to transfer data between hosts. Before going more into detail about FTP, some clarifications about Transmission Control Protocol are presented. Thus, understanding FTP, running on top of TCP is easier. Structure of the FTP packet is shown in the Figure 4.2.
MAC header IP header TCP header FTP message
Figure 4.2: FTP packet
Reliability of the transfers is ensured by Transmission Control Protocol. TCP is designed to fit multi-layered hierarchy of protocols and it provides reliable end-to-end communication. The receiver uses the sequence numbers to order the packets and to remove the duplicates. The sender retransmits the packet, if the ACK is not received within a predetermined time window. [5]
Acknowledgement Number dictates, the next Sequence number, the sender is expecting to receive. This is shown in Figure 4.3.
ππππ πππ‘ = π΄πππππ π‘ ππππππ£ππ
Figure 4.3: Calculation of the new Sequence number
Next Acknowledgement number is the sum of Sequence number and the length of the header with data included. This is visualized by Figure 4.4.
π΄πππ πππ‘ = ππππππ π‘ ππππππ£ππ + πΏππππ‘βπππ π‘ π ππππππ‘
4. Application Layer Protocols
22
As an ALG is changing the addresses it can cause changes in the length. Addresses are in the string format and therefore it is easy to cause differences whenever they are changed. These differences need to be considered every time the CES is changing the addresses. This is discussed later in the thesis when ALG for FTP is analysed.
File Transfer Protocol tries to achieve four goals that are: contribute to file sharing, encourage the use of remote machines, minimize the effect of the differences in the storage systems and transfer data in a reliable and efficient way. Commands used in the FTP connection specify the parameters. In a similar way, the aspects of the file system can be determined. [14]
FTP creates two TCP connections: one for the control and one for the data. A TCP session is identified by the source and destination addresses and ports. An FTP connection can be either active or passive. In active mode the client announces the address where it wants to receive the data. This is done by sending PORT command. In the passive mode the client requests an address from the server with PASV command. Server responds with the address that can be used to get the data. This means that the server is either sending the data to a certain address or allowing the host to access it via a certain address. [14]
4.2.2 FTP functionality
The following capture from the command prompt presents how the communication works between two hosts when using FTP. List of files or actual data is not included to maintain clarity. The client commands can be seen in the lines starting with βftp>β. tester@hardy2:~$ ftp hardy4.cesa.ces
Connected to hardy4.cesa.ces. 220 (vsFTPd 2.0.6)
Name (hardy4.cesa.ces:tester): 331 Please specify the password. Password:
230 Login successful.
Remote system type is UNIX.
Using binary mode to transfer files. ftp> ls
200 PORT command successful. Consider using PASV. 150 Here comes the directory listing. ...
226 Directory send OK. ftp> passive
Passive mode on. ftp> ls
227 Entering Passive Mode (10,1,1,10,113,24). 150 Here comes the directory listing. ... 226 Directory send OK.
ftp> passive Passive mode off.
4. Application Layer Protocols
23 ftp> ls
200 PORT command successful. Consider using PASV. 150 Here comes the directory listing. ...
226 Directory send OK. ftp> exit
221 Goodbye.
The test scenarios analyzed later in the thesis follow the same commands structure as previously shown. These test scenarios include local and CES-to-CES communication. More information related to the tests can be found in the Chapters 7, 8 and 9.
4.2.3 Issues with Network Address Translation (NAT)
Network Address Translation breaks FTP because the IP addresses, contained in the messages βRequest: Portβ (active) and βResponse: 227β (passive), are not changed. This causes a mismatch with the IP addresses in the outer header and IP addresses in the payload of the IP packet, preventing the communication between the hosts.
Following aspects also introduce challenges: the new sequence number is defined by the old acknowledgement number and the new acknowledgement number is the sum of the old length and the old sequence number. Because the addresses are handled in the string format rather than octets by the prototype, any changes in the addresses and therefore in the length of the packet may cause problems. These issues need to be considered when designing the Application Layer Gateway for the FTP.
4.2.4 FTP applications
The FTP client installed in both, physical and virtual machines, is just a basic user interface for File Transfer Protocol. This program enables the transmission of data to the remote hosts or from the remote hosts. The program is run via command line as seen earlier in this chapter.