• No results found

How do I get to

N/A
N/A
Info
Download
Protected

Academic year: 2021

Share "How do I get to"

Copied!
45
0
0

Loading.... (view fulltext now)

Download now ( 45 Page )

Full text

(1)

Networking Primer*

*caveat: this is just a brief and incomplete introduction to networking to help students without a networking background learn Network Security.

(2)

How do I get to

www.randomsite.com?

www.randomsite.com Router

Router

Router

Router Router

Router Internet

Destination Network Local Network

Router

(3)

Layer Introduction

• Application - communicate high level

application information (Web, Email, etc)

• Transport - Enable communication of one process to another process across network

• Network– host-to-host protocol, enables communication from one device to

another

• Data Link/Physical – enable

communication over some transmission medium

Data Link (Ethernet, 802.11)

Network (IP, ARP, ICMP)

Transport (TCP/UDP) Application (HTTP,SMTP)

TCP/IP Stack

Physical (wired, wireless)

(4)

Data Encapsulation

• Same if TCP used instead of UDP

Source: “Internet Protocol Suite”, Wikimedia Foundation, Inc. http://en.wikipedia.org/wiki/Internet_protocol_suite

(5)

Communicating over layers

Source: “Internet Protocol Suite”, Wikimedia Foundation, Inc. http://en.wikipedia.org/wiki/Internet_protocol_suite

(6)

TCP/IP Address

OS Process Number

Port Number [0 – (2^16)-1]

IP Address [0.0.0.0-255.255.255.255]

Physical (MAC) Address

(e.g., Ethernet [00:00:00:00:00:00 – ff:ff:ff:ff:ff:ff]) Data Link

(Ethernet, 802.11) Network (IP, ARP, ICMP)

Transport (TCP/UDP) Application (HTTP,SMTP)

TCP/IP Stack

Physical (wired, wireless)

(7)

Wireshark Examples

• Wireshark

– Obtain from

https://www.wireshark.org/download.html

– Don’t use on networks you don’t own (such as WSU campus networks) as this may violate IT security/privacy policies!!!

(8)

Overview of Layers/Protocols

(9)

Data Link/Physical Layer

(10)

Data Link/Physical Layer

• Enables delivery of packets from one system to another within a network

• Covers

– How do we convert the data into the 0’s and 1’s on the physical media (encoding, framing)

– Physical transmission medium (e.g., wired, wireless) – Addressing of systems

– How access to physical transmission medium is manage

• Example: Ethernet, Wifi (802.11)

(11)

Ethernet

• 802.3 is standard for wired Ethernet

– Physical connection is copper or fiber optic cable – Physically connects to an Ethernet switch

– How packets are formatted

– How to schedule access to shared bus

• Logically bus topology

– Machine only reads packet if it has the packet’s destination address

• Theoretically…

(12)

Topology

Router Ethernet

Hub Packet

1.

Destination Source

Router Ethernet

Switch 1.

Destination Source

Layer 2 - Switch Layer 2 - Hub

(13)

Ethernet Header

• Ethernet Address

• Called media access control (MAC) Address

• 6 bytes, example: 01:23:45:67:89:0a

• Key fields

– Destination Address – Source Address

– Every Ethernet card has unique MAC address – EtherType – what is the network packet type

– IPv4, IPv6, ARP, etc..

Source: “Ethernet Frame”, Wikimedia Foundation, Inc.

http://en.wikipedia.org/wiki/Ethernet_frame

(14)

Network Layer

(15)

Network Layer Protocols

• IP

• ICMP

• ARP

(16)

Internet Protocol (IP)

• Transport packets across routed network/Internet

– Packets called “datagrams”

– Systems on Internet have unique “IP address”

– Enables Routing!!!

• Unreliable

– Performs “best effort” deliver

– Leaves reliability to higher level packets

• Data Fragments

– IP datagram can be large (2^16 bytes)

– May need to go into smaller link-layer protocols (Ethernet) – Has to broken up or “fragmented”, before transmission

and then reassembled when received

(17)

IPv4 vs IPv6

• IPv4

– Old (from 1980-81) – Problems

• No built in security

• Small address space (2^32 or ~4 billion addresses)

• IPv6

– Larger address space 2^128 – Other improvements

– Slow adoption

(18)

IP Header

Source: RFC 791 Internet Protocol https://www.ietf.org/rfc/rfc793.txt

• Key fields

– Source Address – Destination

Address

– Protocol – what higher level protocol is used (TCP, UDP) – Total Length

– Header Checksum - verify integrity of header (not payload)

– Fragment Offset -

(19)

IP Addresses

• IP Address:

– 32 bit address, range [0.0.0.0-255.255.255.255]

– Example: 168.192.100.35

– Example in binary: 10101000 11000000 01100100 00100011

• Address has two parts:

– Network Address

• First x bits of address

• Identifies the network of the host

– Host Address:

• Last (32-x) bits of address

• Identifies the host on the network

• “Netmask” determines what is Network Address and Host Address

– netmask is just a number the length of the Network Address

(20)

Net Mask Example

• Example:

– IP: 168.192.100.35 – In binary:

• 10101000 11000000 01100100 00100011

– Netmask : 16

• 11111111 11111111 00000000 00000000

• Network Addr: 168.192.0.0

• Host Addr: 100.35

– Netmask : 24

• Network Addr: 168.192.100.0

• Host Addr: .35

(21)

Routing

• Systems use Network Address to know where to send packets

– If Destination Address != Current Network Addr.

• Send to router

– Else

• Delver to host on local network

• Systems/routers have “route table” which contains either:

– Known Network Addresses and direction – Default route path for everything

(22)

Routing Example

www.randomsite.com Router

Router

Router

Router Router

Router Internet

Destination Network Local Network

4.3.2.0

4.3.2.1 4.3.0.0

4.3.1.0 1.2.3.0

1.2.3.4

Router 4.2.0.0

4.2.1.0

(23)

IP Addresses continued

• Other weirdness

– Private (non-routable) addresses

• For use on private/internal networks

• 10.X.X.X, 192.168.X.X, 172.16.X.X-172.31.X.X

– Localhost (127.0.0.1)

• So system can communicate with self

(24)

Address Resolution Protocol (ARP)

• Problem:

– Know we need to send message to IP: 1.2.3.4 – But don’t know what MAC address to send to

• ARP

– Asks

• “Who has IP address: 1.2.3.4”???

– Machine with IP 1.2.3.4, should respond

• “MAC address 00:11:22:33:44:55, for 1.2.3.4”

– Then can craft packet with correct MAC address

• Also does reverse (called RARP)

(25)

ICMP

• Protocol to support network diagnosis

• Defines numerous error messages to support IP communications

– Destination host unreachable – Packet reassembly failed

– Checksum incorrect

– Ping (or ICMP Echo Request)

• Receiver sends acknowledgement

(26)

Transport Layer

(27)

Transport Layer

• Protocols

– TCP – UDP

• Introduces “client” and “server”

– Server always running, waits for connection – Client initiates connection

(28)

User Datagram Protocol (UDP)

• Transport layer protocol

• Disadvantages

– Connectionless, unreliable

• Advantages

– Simple

– No overhead (e.g. connection setup)

• Common Uses

– DNS, NTP

– Streaming media

(29)

UDP Header

• Fields

– Source port (0-65355) – Dest. port (0-65355) – Length - # total bytes

– Checksum – 16 bits Source: RFC 768 User Datagram Protocol, https://www.ietf.org/rfc/rfc768.txt

(30)

Transmission Control Protocol (TCP)

• Reliable delivery of packets

• Used to carry

– HTTP (web), SMTP (email), etc.

• Reliability though the development of a

“connection”

• Detects and retransmits lost packets

(31)

TCP Header

• Key Fields

– Seq. number – Ack. number – Flags

• Syn

• Ack

• Fin

• Rst

Source: RFC 793 Transmission Control Protocol.

https://www.ietf.org/rfc/rfc793.txt

(32)

Connection (simplified)

Tear Down Handshake

Established

syn syn-ack

ack

ack ack fin fin ack

ack

(33)

Connection Reliability

• Sender/receiver use “sequence number” and

“acknowledgement number” to keep track of all data sent and received

• Sequence number:

– represents number of bytes sent – Incremented as data is sent

• Acknowledgement number:

– represents the next byte expected by receiver – Incremented as data is received

– If sender notices acknowledgement number not incremented, knows to resend that packet

(34)

Flow/Congestion Control

• Flow Control

– Receiver sets “receive window” to be how much data it is willing to buffer

– Prevents sender from overwhelming receiver by sending too much data

• Congestion Control

– Algorithms that attempt to minimize data lost

(35)

Application Layer

(36)

Applications

• Examples

– DNS - – HTTP – SMTP

(37)

Domain Name System (DNS)

• Problem

– Want to go to www.google.com, but don’t know the IP address

• Solution

– DNS queries “Name Servers” to get correct IP address

(38)

MORE DNS

• Terminology

– Name server

– Domain hierarchy – Zone

– Resource record – Record types

• NS, A, MX, CNAME

(39)

• Root Server – has zone of entire tree dns

– Generally delegates authority to other servers – 13 across world (still?)

• Primary Server – stores information about a

“zone”

– Maintain “zone files”

• Secondary Server - Remove?

(40)

DNS Hierarchy

com

net edu

wsu

eecs

www mail

jp cn

org

gov de

google

www mail

(41)

Resolution Types

• Recursive – initial resolver responsible for finding correct response

• Iterative - client chases down own DNS

response by querying additional servers

(42)

How do find randomsite’s IP?

www.randomsite.com Router

Router

Router

Router Router

Router Internet

Destination Network Local Network

Router

(43)

DNS Resolution Example

Internet

RandomSite Network Local Network

Root Name Server

Local Name Server

RandomSite Name Server

1 2

3 4 5

6

(44)

Record Types

• A – IP address

• AAAA – IPv6 address

• NS – Name server

• MX – Mail server

• CNAME – canonical name (alias/nickname)

(45)

Example

References

Download now ( PDF - 45 Page - 820.03 KB )

Related documents

How Do I Get A Rental Agreement

Violation of renting out how i get rental agreement form in the tenancy agreement will share posts, we are paid and which should know how the rent?. Wear and how do i contact a

HOW DO I GET THAT JOB? E D U C A T I O N A D M I N I S T R A T I O N

1) Texas public school districts, charter schools, and Education Service Centers may reproduce and use copies of the Materials and Related Materials for the districts’ and

Where is... How do I get to...

– Including 2D, 3D, vector, raster or point cloud support as well as visualization – Including Geo-enrichment to Big Data environments and semantic technologies – Including

Transmission Control Protocol Port Number

In the Internet model the port numbers are The data link layer attempts to make Transmission Control Protocol is an internet protocol suite?. TCP-IP Ports and how contract

Know-it-all! diggit. How do I get on internet?

Simple: to surf to a website you need a browser – like Google Chrome. Not for

How Do I Get My Resume Off Indeed

This crate still require me to term the led step in applying with this employer, you need to just sink your email id and surveillance new password, the first albeit a hiring

Wikimedia architecture. Mark Bergsma Wikimedia Foundation Inc.

• Article text is stored on separate data storage clusters. • Simple append-only

Wikimedia Architecture Doing More With Less. Asher Feldman Ryan Lane Wikimedia Foundation Inc.

Currently Tampa is our primary application cluster but cached traffc is served from Ashburn. • Europe served by a caching-only cluster in Amsterdam (uncached content is proxied