ilab
play

ilab Lab 1+2 The Basics / Static Routing ISO/OSI Layer Model - PowerPoint PPT Presentation

Oct 02, 2023 •238 likes •804 views

Lehrstuhl fr Netzarchitekturen und Netzdienste Institut fr Informatik Technische Universitt Mnchen ilab Lab 1+2 The Basics / Static Routing ISO/OSI Layer Model (1979-1983) Applications, e.g. HTTP, FTP, 7 Application Layer

  1. Lehrstuhl für Netzarchitekturen und Netzdienste Institut für Informatik Technische Universität München ilab Lab 1+2 The Basics / Static Routing

  2. ISO/OSI Layer Model (1979-1983) Applications, e.g. HTTP, FTP, … 7 Application Layer Representation of data 6 Presentation Layer 5 Management of Sessions Session Layer 4 Transport, e.g. TCP, UDP, SCTP Transport Layer 3 Network Layer Routing, e.g. IP 2 Data Link Layer Transmission of frames 1 Physical layer, e.g. Ethernet Physical Layer Ilab: The basics / Static Routing 2

  3. Internet Layer Model vs. ISO/OSI 7 Applications 4 Application Layer 6 http, ftp, telnet, smtp, pop, … 5 End-to-end data transport 3 Transport Layer 4 tcp, udp, sctp, … 2 Routing in the internet Internet Layer 3 IPv4, IPv6 2 Interface to the physical medium 1 Link Layer Ethernet, WLAN, Token Ring, FDDI, … 1 • Alternative name: TCP/IP protocol hierarchy • Adaptation of the abstract ISO/OSI layer model for the internet • ISO/OSI layers 5, 6, 7 and layers 1, 2 are aggregated x = Equivalent to ISO/OSI Ilab: The basics / Static Routing 3

  4. Horizontal Communication 4 Application Application 3 TCP TCP 2 IP IP IP IP 1 Net 1 Net 1 Net 2 Net 2 Net 3 Net 3 Router Router Telephone, SDH / SONET WLAN modem (Hi-Speed Fibre) • Horizontal communication = logical communication between instances of the same protocol layer over an abstract medium • Only the lowest layer has a real (indirect) connection with the partner instance Ilab: The basics / Static Routing 4

  5. Vertical Communication 4 Application Application 3 TCP TCP 2 IP IP IP IP 1 Net 1 Net 1 Net 2 Net 2 Net 3 Net 3 Router Router Telefone, SDH / SONET WLAN Modem (Hi-Speed Fiber) • Vertical communication = Instances of a protocol layer communicate with instances of protocol layers above or below. Ilab: The basics / Static Routing 5

  6. Cooperation of Protocol Instances: PDUs  A service provides a Service Access Point (SAP) to the layer above it  Protocol Data Units (PDUs) are encapsulated  TCP/UDP adds process addressing (ports) to IP  TCP adds reliability to IP  IP routes data packets through the network to the destination 4 Data Application TCP-Header Data 3 Transport Layer bzw. UDP-Header Data 2 IP-Header TCP/UDP-Header Data Internet Layer 1 MAC/LLC-Header IP-Header TCP/UDP-Header Data Trailer Link Layer Ilab: The basics / Static Routing 6

  7. Internet Architecture: Common Design Decisions  Hold no information (state) in nodes between sender of data and destination (e.g. no need for resynchronisation)  All information specific for the stream is stored only at the sender and the destination of data: End-to-end principle  Separation of packet forwarding from one hop to the next and the creation of routing tables  Routing vs. Forwarding Ilab: The basics / Static Routing 7

  8. TCP/IP Protocol Family – Overview  „TCP/IP “ is used often as a synonym for a whole family of protocols  The TCP/IP family and the ISO/OSI layer model: Session Layer TCP UDP Transport Layer IGMP ICMP IP Network Layer ARP RARP Data Link Layer  ICMP and IGMP use IP like an application layer (ISO/OSI) protocol, but are assigned to the network layer (ISO/OSI)  Application layer (ISO/OSI) protocols are e.g. FTP, TELNET or SMTP Ilab: The basics / Static Routing 8

  9. Properties of IP  Paket-switched  Connectionless datagram service  Unreliable transmission:  Datagramms may get lost  Datagramms may overtake each other  Datagramms may be forwarded ad infinitum (routing loop)  Transmission errors that could not be fixed by the layer 2 protocol used, normally cannot be fixed by IP, too  ICMP (Internet Control Message Protocol) is used for error notification  No flow control  Used in private and public networks  Private home networks  Coupling of subnetworks in enterprise networks  Public (wide area) networks (e.g. in the internet backbone)  Best effort, no quality of service (QoS) guaranteed Ilab: The basics / Static Routing 9

  10. IPv4 Datagramm Layout Don ‘ t Fragment Congestion Control (Explicit Congestion Notification) Reserved More Fragments QoS Class DiffServ Codepoint ECN 0 DF MF Bit 0 3 7 15 31 Version Hdr.Len DiffServ Total Length Identifier Flags Fragment Offset IP-Header Time to Live Protocol Header Checksum Source Address Destination Address Options and Padding Data Ilab: The basics / Static Routing 10

  11. Control of IP: ICMP  IP only provides (unreliable) paket transmission  When errors occur or for testing purposes ICMP (Internet Control Message Protocol) is used.  ICMP uses IP Router connection Router Router interrupted Router Destination Sender ICMP message  Message type, examples:  Echo Request / Reply : Echo Reply is requested (" ping ").  Timestamp Request / Reply : similar to Echo Request: a timestamp that holds the time of arrival (query) and time of sending (response) is added. Ilab: The basics / Static Routing 11

  12. ICMP: Error messages  Destination unreachable: A data packet could not be delivered, e.g. because of an interrupted cable or a router failure.  Time to live exceeded: A data packet was dropped by a router because the packet ‘ s TTL exceeded.  Parameter problem: A data packet was discarded due to illegal values in its IP header.  Source quench: A overloaded communication system requests the sender to throttle transmission rate.  Redirect: A data packet should be sent over another router. Ilab: The basics / Static Routing 12

  13. ICMP: Packet layout  Transmission of ICMP messages  ICMP messages are transmitted in IP Header IP-packets. ICMP Message [Protocol = 1]  ICMP messages have the value „1 “ in the protocol field of the IP header. Type Code Checksum Info  Format of ICMP messages  Type: the type of this message, e.g. Type = 3 means „Destination unreachable “ )  Code: more specific information, e.g. „Network not reachable “ )  Checksum: Checksum over the ICMP message  The content of the Info-Field depends on the Type of the ICMP message, e.g. timestamps Ilab: The basics / Static Routing 13

  14. Layer 2 Adresses  MAC addresses (also referred to as “ physical address ” )  Specific for the network type, e.g. Ethernet, Bluetooth, ATM  Are not unique for all network types  Ethernet / WLAN 48 Bit long (z.B.: aa:bb:cc:dd:ee:ff )  Contains information about vendor and product  MAC addresses are not hierarchically issued, e.g.:  Device with MAC aa:bb:cc:dd:ee:ff is located in the US  Device with MAC aa:bb:cc:dd:ee:fe is located in Japan  When MAC addresses would be used for global addressing of devices, routing of packets would not scale as every router would need to know the route to every possible destination Ilab: The basics / Static Routing 14

  15. Routing Inside the Internet  IP addresses are 32 bit long  this results in 2^32 possible host addresses  A naive approach would result in huge routing tables, a router would need to know all routes to all end systems  impossible  Better approach: Hierarchical Addressing  Use first n bit of the IP address for addressing the network  Use last 32 - n bit of the IP address for addressing the host inside the network  Effect:  A router only needs to know how to reach the hosts within the own network  For reaching hosts outside the own network, the router only needs to know the router that „cares “ for the destination network Ilab: The basics / Static Routing 15

  16. IP Address Classes 0 1 2 4 8 16 24 31 0 Net-ID Node-ID 1. Class A: Nets with up to 16 million nodes (prefix: 1 bit/ net: 7 / host: 24) 1 0 Net-ID Node-ID 2. Class B: Nets with up to 65.536 nodes (2/ 14/ 16) 1 1 0 Net-ID Node-ID 3. Class C: Nets with up to 256 nodes (3/ 21/ 8) 1 1 1 0 Multicast Address 4. Class D: used for group communication (multicast) 1 1 1 1 0 Reserved for future use 5. Class E, unused, reserved for future use Ilab: The basics / Static Routing 16

  17. Subnetworks  Purpose: Split the static Class A, B C networks into parts (subnets)  Use:  Makes large (Class A) networks manageable  Easier network administration  Separation of business units  …  Implemented with subnetwork masks  Bsp: 255.255.255.0 Ilab: The basics / Static Routing 17

  18. IP Subnetwork Addresses  IP-Address (in this example: Class B , prefix 10, 2/14/16): Network Part Local Part Network Part Subnet Part Host Part  Subnetwork mask marks the bits that describe the network and the subnetwork. In the binary representation of the subnetwork mask this area is represented with a sequence of set bits („1 “ )  Example: IP-Addresse: 129. 13. 3. 64 Subnetmask: 255. 255. 255. 0 1111 1111 1111 1111 1111 1111 0000 0000 Network: 129. 13. Subnetwork: 3. Endsystem: 64  The network part can be derived from the address class.  If the subnetwork mask only covers the network part (e.g. 255.255.0.0), no subnetwork is specified. Ilab: The basics / Static Routing 18

Download Presentation
Download Policy: The content available on the website is offered to you 'AS IS' for your personal information and use only. It cannot be commercialized, licensed, or distributed on other websites without prior consent from the author. To download a presentation, simply click this link. If you encounter any difficulties during the download process, it's possible that the publisher has removed the file from their server.

Recommend

your exercise iLab 1+2 info event online Tell your friends!

your exercise iLab 1+2 info event online Tell your friends!

The iLab Experience a blended learning hands-on course concept you set the focus Final Lecture Marc-Oliver Pahl, Jul 25, 2017 your exercise iLab 1+2 info event online Tell your friends!

1.81k views • 96 slides
ilab 2 - IPSec with IKEv2 and Strongswan Lukas Grillmayer and Linus Lotz Chair for Network

ilab 2 - IPSec with IKEv2 and Strongswan Lukas Grillmayer and Linus Lotz Chair for Network

ilab 2 - IPSec with IKEv2 and Strongswan Lukas Grillmayer and Linus Lotz Chair for Network Architectures and Services Department for Computer Science Technische Universit at M unchen June 4, 2014 Lukas Grillmayer and Linus Lotz: ilab 2 -

1.39k views • 51 slides
iLab Countersurveillance Benjamin Hof hof@in.tum.de Lehrstuhl fr Netzarchitekturen und

iLab Countersurveillance Benjamin Hof hof@in.tum.de Lehrstuhl fr Netzarchitekturen und

iLab Countersurveillance Benjamin Hof hof@in.tum.de Lehrstuhl fr Netzarchitekturen und Netzdienste Fakultt fr Informatik Technische Universitt Mnchen Surveillance and operational security 14ws 1 lecture evaluation oral

916 views • 30 slides
ilab Lab 5 DNS and DNSSec History and Motivation of DNS Problem: The Internet needs IP

ilab Lab 5 DNS and DNSSec History and Motivation of DNS Problem: The Internet needs IP

Lehrstuhl fr Netzarchitekturen und Netzdienste Institut fr Informatik Technische Universitt Mnchen ilab Lab 5 DNS and DNSSec History and Motivation of DNS Problem: The Internet needs IP addresses. Human beings do not memorize IP

779 views • 23 slides
ilab Lab 4 TCP/UDP Purpose of the Transport Layer Provides an end to end connectivity to

ilab Lab 4 TCP/UDP Purpose of the Transport Layer Provides an end to end connectivity to

Lehrstuhl fr Netzarchitekturen und Netzdienste Institut fr Informatik Technische Universitt Mnchen ilab Lab 4 TCP/UDP Purpose of the Transport Layer Provides an end to end connectivity to applications application application 4

647 views • 26 slides
iLab TLS and packet filters Benjamin Hof hof@in.tum.de Lehrstuhl fr Netzarchitekturen und

iLab TLS and packet filters Benjamin Hof hof@in.tum.de Lehrstuhl fr Netzarchitekturen und

iLab TLS and packet filters Benjamin Hof hof@in.tum.de Lehrstuhl fr Netzarchitekturen und Netzdienste Fakultt fr Informatik Technische Universitt Mnchen Lab 7 17ws 1 / 41 Outline Trust Transport Layer Security Packet filter

1.19k views • 43 slides
iLab Onion Routing Benjamin Hof hof@in.tum.de Lehrstuhl fr Netzarchitekturen und Netzdienste

iLab Onion Routing Benjamin Hof hof@in.tum.de Lehrstuhl fr Netzarchitekturen und Netzdienste

iLab Onion Routing Benjamin Hof hof@in.tum.de Lehrstuhl fr Netzarchitekturen und Netzdienste Fakultt fr Informatik Technische Universitt Mnchen Lab 9 18ss 1 / 36 Outline Introduction Trust architecture Protocols Attacks

663 views • 45 slides
iLab Onion Routing Benjamin Hof hof@in.tum.de Lehrstuhl fr Netzarchitekturen und Netzdienste

iLab Onion Routing Benjamin Hof hof@in.tum.de Lehrstuhl fr Netzarchitekturen und Netzdienste

iLab Onion Routing Benjamin Hof hof@in.tum.de Lehrstuhl fr Netzarchitekturen und Netzdienste Fakultt fr Informatik Technische Universitt Mnchen Lab 9 16ss 1 / 38 Outline Introduction Trust architecture Protocols Attacks

879 views • 47 slides
iLab NAT / DHCP Florian Wohlfart wohlfart@in.tum.de Lehrstuhl fr Netzarchitekturen und

iLab NAT / DHCP Florian Wohlfart wohlfart@in.tum.de Lehrstuhl fr Netzarchitekturen und

iLab NAT / DHCP Florian Wohlfart wohlfart@in.tum.de Lehrstuhl fr Netzarchitekturen und Netzdienste Fakultt fr Informatik Technische Universitt Mnchen Lab 6 16ss 1 / 34 Motivation: IPv4 Address Scarcity source:

784 views • 54 slides
course evaluation room for attestations: 03.05.051 iLab Threat modelling, surveillance,

course evaluation room for attestations: 03.05.051 iLab Threat modelling, surveillance,

course evaluation room for attestations: 03.05.051 iLab Threat modelling, surveillance, operational security Benjamin Hof hof@in.tum.de Lehrstuhl fr Netzarchitekturen und Netzdienste Fakultt fr Informatik Technische Universitt

986 views • 47 slides
iLab TCP / UDP Florian Wohlfart wohlfart@in.tum.de Lehrstuhl fr Netzarchitekturen und

iLab TCP / UDP Florian Wohlfart wohlfart@in.tum.de Lehrstuhl fr Netzarchitekturen und

iLab TCP / UDP Florian Wohlfart wohlfart@in.tum.de Lehrstuhl fr Netzarchitekturen und Netzdienste Fakultt fr Informatik Technische Universitt Mnchen Lab 4 14ws 1 Outline Transport Layer UDP TCP MTCP / SCTP 2 Outline

720 views • 32 slides
ilab Lab 8 - SSL/TLS and IPSec Outlook: On Layer 4: Goal: Provide security for one

ilab Lab 8 - SSL/TLS and IPSec Outlook: On Layer 4: Goal: Provide security for one

Lehrstuhl fr Netzarchitekturen und Netzdienste Fakultt fr Informatik Technische Universitt Mnchen ilab Lab 8 - SSL/TLS and IPSec Outlook: On Layer 4: Goal: Provide security for one specific port SSL (Secure Socket Layer) /

812 views • 25 slides
iLab 2 Internet Protocol version 6 Stefan Liebald liebald@net.in.tum.de Lehrstuhl fr

iLab 2 Internet Protocol version 6 Stefan Liebald liebald@net.in.tum.de Lehrstuhl fr

iLab 2 Internet Protocol version 6 Stefan Liebald liebald@net.in.tum.de Lehrstuhl fr Netzarchitekturen und Netzdienste Fakultt fr Informatik Technische Universitt Mnchen October 18, 2017 Based on slides of Lukas Schwaighofer 1

678 views • 46 slides
iLab 2 Internet Protocol version 6 Stefan Liebald liebald@net.in.tum.de Lehrstuhl fr

iLab 2 Internet Protocol version 6 Stefan Liebald liebald@net.in.tum.de Lehrstuhl fr

iLab 2 Internet Protocol version 6 Stefan Liebald liebald@net.in.tum.de Lehrstuhl fr Netzarchitekturen und Netzdienste Fakultt fr Informatik Technische Universitt Mnchen April 25, 2017 Based on slides of Lukas Schwaighofer 1

471 views • 10 slides
iLab Static routing Minoo Rouhi rouhi@net.in.tum.de Slides by Benjamin Hof hof@in.tum.de

iLab Static routing Minoo Rouhi rouhi@net.in.tum.de Slides by Benjamin Hof hof@in.tum.de

iLab Static routing Minoo Rouhi rouhi@net.in.tum.de Slides by Benjamin Hof hof@in.tum.de Chair of Network Architectures and Services Department of Informatics Technical University of Munich Lab 2 17ws 1 / 21 Outline Meta

540 views • 27 slides
The iLab Experience a blended learning hands-on course concept you set the focus Do It Yourself

The iLab Experience a blended learning hands-on course concept you set the focus Do It Yourself

The iLab Experience a blended learning hands-on course concept you set the focus Do It Yourself - Hardware YE - Topic Outline May 29, 2018 10.4. Kick Off, IPv6 1 IPv6 BGP 17.4. 2 Minilab 1 2 mini labs Advanced Wireless Playground BGP

1.64k views • 125 slides
Computer Networks - Xarxes de Computadors Outline Course Syllabus Unit 1: Introduction Unit 2.

Computer Networks - Xarxes de Computadors Outline Course Syllabus Unit 1: Introduction Unit 2.

Xarxes de Computadors Computer Networks Computer Networks - Xarxes de Computadors Outline Course Syllabus Unit 1: Introduction Unit 2. IP Networks Unit 3. Point to Point Protocols -TCP Unit 4. LANs Unit 5. Data Transmission 1 Lloren

1.13k views • 87 slides
The Internet 2011-10-10 Saturday, 3 December 2011 The internet has grown through cooperation and

The Internet 2011-10-10 Saturday, 3 December 2011 The internet has grown through cooperation and

The Internet 2011-10-10 Saturday, 3 December 2011 The internet has grown through cooperation and interconnection between countless local networks. In principle the internet accepts information from any source and makes best e fg orts to deliver

505 views • 25 slides
Topology of the Internet Autonomous Systems (AS) The global Internet consists of Autonomous

Topology of the Internet Autonomous Systems (AS) The global Internet consists of Autonomous

Topology of the Internet Autonomous Systems (AS) The global Internet consists of Autonomous Systems (AS) interconnected with each other: - Collection of routers under same administrative control, all running the same routing protocol among

317 views • 5 slides
Apache Traffic Server Extensible Host Resolution at ApacheCon NA 2014 Speaker Alan M.

Apache Traffic Server Extensible Host Resolution at ApacheCon NA 2014 Speaker Alan M.

Apache Traffic Server Extensible Host Resolution at ApacheCon NA 2014 Speaker Alan M. Carroll, Apache Member, PMC Started working on Traffic Server in summer 2010. Implemented Transparency, IPv6, range acceleration, yada yada yada

691 views • 50 slides
IP Fragmentation and Reassembly IP datagrams can be up to 65,535 bytes much larger

IP Fragmentation and Reassembly IP datagrams can be up to 65,535 bytes much larger

IP Fragmentation and Reassembly IP datagrams can be up to 65,535 bytes much larger than most networks can transmit in one packet Each network type defines maximum transmission unit (MTU) maximum number of bytes that can be

1.01k views • 23 slides
System Health and Intrusion Monitoring System Health and Intrusion Monitoring Using a Hierarchy

System Health and Intrusion Monitoring System Health and Intrusion Monitoring Using a Hierarchy

Advanced Security Research System Health and Intrusion Monitoring System Health and Intrusion Monitoring Using a Hierarchy of Constraints Using a Hierarchy of Constraints Calvin Ko Calvin Ko , Network Associates, Inc. NAI Labs , Network

462 views • 27 slides
Lecture 17 - Network Security CMPSC 443 - Spring 2012 Introduction Computer and Network Security

Lecture 17 - Network Security CMPSC 443 - Spring 2012 Introduction Computer and Network Security

Lecture 17 - Network Security CMPSC 443 - Spring 2012 Introduction Computer and Network Security Professor Jaeger www.cse.psu.edu/~tjaeger/cse443-s12/ CMPSC 443 Introduction to Computer and Network Security - Spring 2012 - Professor Jaeger The

868 views • 21 slides
9 Data Link Layer Data Link Layer LAN Address (more) Why both MAC and IP address? Answer:

9 Data Link Layer Data Link Layer LAN Address (more) Why both MAC and IP address? Answer:

Data Link Layer Data Link Layer Taking Turns MAC protocols Taking Turns MAC protocols Token passing: Polling: T control token passed master node from one node to next invites slave nodes data sequentially. to

448 views • 7 slides

More recommend