Understanding Network Layers and Protocols

csci 1680 n.w
1 / 43
Embed
Share

Explore the fundamentals of network layers, services, and protocols, including the transport layer and TCP introduction, with insights on BGP and anycast technology. Learn about the communication aspects between hosts and nodes, and the movement of data across different network links.

  • Network Layers
  • Transport Layer
  • TCP
  • BGP
  • Anycast
rayaanacharya
mizael_b Follow

Uploaded on | 0 Views

Download Presentation

Please find below an Image/Link to download the presentation.

The content on the website is provided AS IS for your information and personal use only. It may not be sold, licensed, or shared on other websites without obtaining consent from the author. If you encounter any issues during the download, it is possible that the publisher has removed the file from their server.

You are allowed to download the files provided on this website for personal or commercial use, subject to the condition that they are used lawfully. All files are the property of their respective owners.

Download Presentation

The content on the website is provided AS IS for your information and personal use only. It may not be sold, licensed, or shared on other websites without obtaining consent from the author.

E N D

Presentation Transcript

  1. CSCI-1680 Transport Layer Warmup (ish) Nick DeMarinis Based partly on lecture notes by Rodrigo Fonseca, Jennifer Rexford, Rob Sherwood, David Mazi res, Phil Levis, John Jannotti

  2. Advertised by Export to Warmup Customer Everyone Peer Customers only Given the following AS relationships, Which ASes will A know about? Provider Customers only X Y Z A B C D Customer ( A is customer of X ) Peer

  3. Administrivia: This week IP: Due Thursday Signups for grading meetings after that Code cleanup, README, etc after deadline is okay HW2: Out today, due in ~2wks TCP: Out on Friday Maybe a short intro/gearup on Thursday

  4. This week Start of transport layer Intro to TCP

  5. One more fun BGP thing

  6. Anycast Advertise the same prefix (IP) from multiple places => Multiple devices have the same IP!! Used to make certain IPs highly available Public DNS: 8.8.8.8 (Google), 1.1.1.1 (Cloudflare) Problems?

  7. Anycast Advertise the same prefix (IP) from multiple places => Multiple devices have the same IP!! Used to make certain IPs highly available Public DNS: 8.8.8.8 (Google), 1.1.1.1 (Cloudflare) => If you send multiple packets to 8.8.8.8, no guarantee you re talking to the same server! => Protocol must be able to account for this (DNS does, more on this later)

  8. Ports & Sockets

  9. Layers, Services, Protocols Service: user-facing application. Application-defined messages Application How to support multiple applications? Transport Moving data between hosts (nodes) Network Move data across individual links Link Service: move bits to other node across link Physical

  10. The story so far Network layer (L3): move packets between hosts (anywhere on Internet)

  11. How to support multiple applications? Network layer: moving data between hosts Transport layer: abstraction for getting data to different applications on a host

  12. How to support multiple applications? Network layer: moving data between hosts Transport layer: abstraction for getting data to different applications on a host Multiplexing multiple connections at the same IP using port numbers Turns series of packets => stream of data/messages

  13. How to support multiple applications? Network layer: moving data between hosts Transport layer: abstraction for getting data to different applications on a host Multiplexing multiple connections at the same IP using port numbers Turns series of packets => stream of data/messages Provided by OS as sockets Use this abstraction to build other application protocols!

  14. The transport layer MAY provide Reliable data delivery Creating a data stream Managing throughput/sharing bandwidth Congestion control

  15. The transport layer MAY provide Reliable data delivery Creating a data stream Managing throughput/sharing bandwidth Congestion control These are provided by TCP, which is our main focus. However: Not required for all transport layer (UDP has none of these) Other protocols do this too (eg. QUIC)

  16. Transport Layer

  17. From Lec 2: OSI Model Application Protocol Transport Protocol Network Protocol Link-Layer Protocol

  18. Whats a port number? 16-bit unsigned integer, 0-65535 Ports define a communication endpoint, usually a process/service on the host

  19. Whats a port number? 16-bit unsigned integer, 0-65535 Ports define a communication endpoint, usually a process/service on the host

  20. Whats a port number? 16-bit unsigned integer, 0-65535 Ports define a communication endpoint, usually a process/service on the host OS keeps track of which ports map to which applications Port numbering port < 1024: Well known port numbers port > 20000: ephemeral ports , for general app use

  21. Some common ports Port Service 20, 21 22 23 25 53 67, 68 80 443 File Transfer Protocol (FTP) Secure Shell (SSH) Telnet (pre-SSH remote login) SMTP (Email) Domain Name System (DNS) DHCP HTTP (Web traffic) HTTPS (Secure HTTP over TLS)

  22. How ports work The kernel maps ports to sockets, which are used in applications like file descriptors to access the network Two modes for using ports/sockets: Listen mode: apps bind to a port to accept new connections Outgoing mode *: make a connection Individual connections use 5-tuple of source-dest port (protocol, source IP, source port, dest IP, dest port) => connection N *: Nick made this term up so it has a name

  23. How ports work The kernel maps ports to sockets, which are used in applications like file descriptors to access the network Two modes for using ports/sockets: Listen mode: apps bind to a port to accept new connections Outgoing mode*: make a connection to another socket *: Nick made this term up so it has a name

  24. How ports work The kernel maps ports to sockets, which are used in applications like file descriptors to access the network Two modes for using ports/sockets: Listen mode: apps bind to a port to accept new connections => Used to receive/wait for new connections Normal mode*: make a connection to another socket => Used to make outgoing connections *: Nick made this term up so it has a name

  25. A B 1.2.3.4 5.6.7.8 listen(80)

  26. A B 1.2.3.4 5.6.7.8 listen(80) connect(1.2.3.4, 80) Src Dst IP 1.2.3.4 5.6.7.8 Port 12345 80

  27. A B 1.2.3.4 5.6.7.8 listen(80) connect(1.2.3.4, 80) Src Dst IP 1.2.3.4 5.6.7.8 Port 12345 80 A must know B is listening on port 80 => "well known numbers"! When connecting, A's OS picks random source port (eg. 12345), for its side of connection

  28. A B 1.2.3.4 5.6.7.8 listen(80) connect(1.2.3.4, 80) Src Dst IP 1.2.3.4 5.6.7.8 Port 12345 80 Src Dst IP 5.6.7.8 1.2.3.4 Port 80 12345 B responds to A using this port

  29. Demo: netcat

  30. How sockets work Socket: OS abstraction for a network connection (like a file descriptor) Kernel receives all packets => needs to map each packet to a socket to deliver to app Socket table: list of all open sockets Each socket has some kernel state too (buffers, etc.) You will build this!!!

  31. How to map packets to sockets? Kernel table looks something like this: Proto Local (yours) Remote (theirs) Socket IP Port IP Port tcp/udp (some struct)

  32. How to map packets to sockets? Kernel table looks something like this: Proto Local (yours) Remote (theirs) Socket IP Port IP Port tcp/udp (some struct) ... ... ... Value: kernel state for socket (state, buffers, ) Key: 5-tuple of (local IP, local port, remote IP, remote port, protocol)

  33. How to map packets to sockets? Kernel table looks something like this: Proto Local (yours) Remote (theirs) Socket IP Port IP Port tcp 1.2.3.4 12345 5.6.7.8 80 (some struct) ... ... ... Value: kernel state for socket (state, buffers, ) Key: 5-tuple of (local IP, local port, remote IP, remote port, protocol)

  34. Netstat deemer@vesta ~/Development % netstat -an Active Internet connections (including servers) Proto Recv-Q Send-Q Local Address Foreign Address (state) tcp4 0 0 10.3.146.161.51094 104.16.248.249.443 ESTABLISHED tcp4 0 0 10.3.146.161.51076 172.66.43.67.443 ESTABLISHED tcp6 0 0 2620:6e:6000:900.51074 2606:4700:3108::.443 ESTABLISHED tcp4 0 0 10.3.146.161.51065 35.82.230.35.443 ESTABLISHED tcp4 0 0 10.3.146.161.51055 162.159.136.234.443 ESTABLISHED tcp4 0 0 10.3.146.161.51038 17.57.147.5.5223 ESTABLISHED tcp6 0 0 *.51036 *.* LISTEN tcp4 0 0 *.51036 *.* LISTEN tcp4 0 0 127.0.0.1.14500 *.* LISTEN

  35. What if A does: listen(22) Proto Local (yours) Remote (theirs) Socket IP Port IP Port tcp 1.2.3.4 12345 5.6.7.8 80 (normal struct) tcp ... * ... 22 ... * * (listen struct) Value: kernel state for socket (state, buffers, ) Key: 5-tuple of (local IP, local port, remote IP, remote port, protocol) => For listen sockets, some fields may be blank

  36. Ports are part of the transport layer UDP TCP Port numbers are the first two fields of these headers! (Not part of IP!)

  37. An interface to applications Ports define an interface to applications If you can connect to the port, you can (usually) use it! Problems?

  38. Port scanning What can we learn if we just start connecting to well-known ports? Applications have common port numbers Network protocols use well-defined patterns deemer@vesta ~/Development % nc <IP addr> 22 SSH-2.0-OpenSSH_9.1

  39. Port scanning What can we learn if we just start connecting to well-known ports? Applications have common port numbers Network protocols use well-defined patterns deemer@vesta ~/Development % nc <IP addr> 22 SSH-2.0-OpenSSH_9.1 Can discover things about the network Can learn about open (vulnerable) systems

  40. Port scanning What can we learn if we just start connecting to well-known ports? Applications have common port numbers Network protocols use well-defined patterns deemer@vesta ~/Development % nc <IP addr> 22 SSH-2.0-OpenSSH_9.1 Can discover things about the network Can learn about open (vulnerable) systems Port scanners: try to connect to lots of ports, determine available services, find vulnerable services...

  41. Large-scale port scanning Can reveal lots of open/insecure systems! Examples: shodan.io VNC roulette Open webcam viewers

  42. Disclaimer Network scanning is easy to detect Unless you are the owner of the network, it s seen as malicious activity If you scan the whole Internet, the whole Internet will get mad at you (unless done very politely) Do NOT try this on the Brown network. I warned you.

  43. Internet scanning I have done Scanned IPv4 space for ROS (Robot Operating System) Found ~200 things using ROS (some robots, some other stuff)

Related


RAZER LAPTOP REPAIR

RAZER LAPTOP REPAIR

muhammed1
Historic Investments in Climate Action: Inflation Reduction Act May 2023

Historic Investments in Climate Action: Inflation Reduction Act May 2023

esa
Computer Peripherals and Interfacing

Computer Peripherals and Interfacing

ellen
Update on Biometric Movement Control System (BMCS) & Automated Biometric Identification System (ABIS) Roll-out

Update on Biometric Movement Control System (BMCS) & Automated Biometric Identification System (ABIS) Roll-out

lian
The QuickBooks Error H202: How to Fix It?

The QuickBooks Error H202: How to Fix It?

paxton1
Inland transport for last mile delivery

Inland transport for last mile delivery

Nidhi1
Passive Attacks and Reconnaissance using NMAP for Network Scanning

Passive Attacks and Reconnaissance using NMAP for Network Scanning

aden
Passive Attacks and Reconnaissance in Network Security

Passive Attacks and Reconnaissance in Network Security

suri
Mississippi River Navigation Projects Overview

Mississippi River Navigation Projects Overview

lavender
Enhanced Type II Testing Setup for NR eMIMO Performance Evaluation

Enhanced Type II Testing Setup for NR eMIMO Performance Evaluation

bowie
Economic Conditions During the Sangam Age

Economic Conditions During the Sangam Age

oksana
The Merchant's Character in Canterbury Tales

The Merchant's Character in Canterbury Tales

gwendolyn
Opportunities in Karnataka's Maritime Sector: Virtual Maritime India Summit 2021

Opportunities in Karnataka's Maritime Sector: Virtual Maritime India Summit 2021

maple
Effective Infection Control in Port Operations During the COVID-19 Pandemic

Effective Infection Control in Port Operations During the COVID-19 Pandemic

bria
Gati Shakti National Master Plan for Comprehensive Infrastructure Connectivity

Gati Shakti National Master Plan for Comprehensive Infrastructure Connectivity

maci
USB-TypeC Charging Operation Confirmation Results

USB-TypeC Charging Operation Confirmation Results

wizard
Japan's Transformation During the Age of Imperialism

Japan's Transformation During the Age of Imperialism

cyprian
Urban Models in African and Southeast Asian Cities

Urban Models in African and Southeast Asian Cities

midge
Comprehensive Study of Ports-to-Plains Corridor and I-27 Expansion

Comprehensive Study of Ports-to-Plains Corridor and I-27 Expansion

selene
Strategies for Enhancing PORTS System Effectiveness and Resilience

Strategies for Enhancing PORTS System Effectiveness and Resilience

mayt_93
The Potential of Cabotage for Domestic Shipping and Ports

The Potential of Cabotage for Domestic Shipping and Ports

dbutk
Impact of Particle Pollution in Italian Ports: Insights from Northern European ECA

Impact of Particle Pollution in Italian Ports: Insights from Northern European ECA

loughman_s

More Related Content