Scribd
Upload
185 views

COMP1154 Week5 - Protocol-Suite

Uploaded by

So Sa
Copyright
© © All Rights Reserved
Available Formats
Download as PDF, TXT or read online on Scribd
185 views

COMP1154 Week5 - Protocol-Suite

Uploaded by

So Sa
Copyright
© © All Rights Reserved
Available Formats
Download as PDF, TXT or read online on Scribd
You are on page 1/ 46

Protocol Suites

© 2016 Cisco and/or its affiliates. All rights reserved. Cisco Confidential 1
Protocol Suites
Network Protocol Suites
Protocols must be able to work with other
protocols.
Protocol suite:
• A group of inter-related protocols
necessary to perform a communication
function
• Sets of rules that work together to help
solve a problem
The protocols are viewed in terms of layers:
• Higher Layers
• Lower Layers- concerned with moving
data and provide services to upper layers
© 2016 Cisco and/or its affiliates. All rights reserved. Cisco Confidential 2
Protocol Suites
Evolution of Protocol Suites
There are several protocol suites.
• Internet Protocol Suite or TCP/IP- The
most common protocol suite and maintained
by the Internet Engineering Task Force
(IETF)

• Open Systems Interconnection (OSI)


protocols- Developed by the International
Organization for Standardization (ISO) and
the International Telecommunications Union
(ITU)

• AppleTalk- Proprietary suite release by


Apple Inc.

• Novell NetWare- Proprietary suite


developed by Novell Inc.

© 2016 Cisco and/or its affiliates. All rights reserved. Cisco Confidential 3
Protocol Suites
TCP/IP Protocol Suite
• TCP/IP is the protocol suite used by
the internet and includes many
protocols.

• TCP/IP is:
• An open standard protocol suite
that is freely available to the public
and can be used by any vendor
• A standards-based protocol
suite that is endorsed by the
networking industry and approved
by a standards organization to
ensure interoperability

© 2016 Cisco and/or its affiliates. All rights reserved. Cisco Confidential 4
Data Encapsulation Encapsulation is the process where protocols
Protocol Data Units add their information to the data.
• At each stage of the process, a PDU has a
different name to reflect its new functions.
• There is no universal naming convention for
PDUs, in this course, the PDUs are named
according to the protocols of the TCP/IP
suite.
• PDUs passing down the stack are as
follows:
1. Data (Data Stream)
2. Segment
3. Packet
4. Frame
5. Bits (Bit Stream)
© 2016 Cisco and/or its affiliates. All rights reserved. Cisco Confidential 5
Transportation of Data

© 2016 Cisco and/or its affiliates. All rights reserved. Cisco Confidential 6
Transportation of Data
Role of the Transport Layer
The transport layer is:
• responsible for logical
communications between
applications running on
different hosts.

• The link between the


application layer and the lower
layers that are responsible for
network transmission.

© 2016 Cisco and/or its affiliates. All rights reserved. Cisco Confidential 7
Transportation of Data
Transport Layer Responsibilities
The transport layer has the following
responsibilities:
• Tracking individual conversations
• Segmenting data and reassembling
segments
• Adds header information
• Identify, separate, and manage multiple
conversations
• Uses segmentation and multiplexing to
enable different communication
conversations to be interleaved on the
same network

© 2016 Cisco and/or its affiliates. All rights reserved. Cisco Confidential 8
Transportation of Data
Transport Layer Protocols

• IP does not specify how the delivery


or transportation of the packets takes
place.
• Transport layer protocols specify how
to transfer messages between hosts
and are responsible for managing
reliability requirements of a
conversation.

• The transport layer includes the TCP


and UDP protocols.

© 2016 Cisco and/or its affiliates. All rights reserved. Cisco Confidential 9
Transportation of Data
Transmission Control Protocol

TCP provides reliability and flow


control. TCP basic operations:
• Number and track data segments
transmitted to a specific host from
a specific application
• Acknowledge received data
• Retransmit any unacknowledged
data after a certain amount of
time
• Sequence data that might arrive
in wrong order
• Send data at an efficient rate that
is acceptable by the receiver

© 2016 Cisco and/or its affiliates. All rights reserved. Cisco Confidential 10
Transportation of Data
User Datagram Protocol (UDP)

UDP provides the basic functions for


delivering datagrams between the
appropriate applications, with very
little overhead and data checking.
• UDP is a connectionless protocol.
• UDP is known as a best-effort
delivery protocol because there is
no acknowledgment that the data
is received at the destination.

© 2016 Cisco and/or its affiliates. All rights reserved. Cisco Confidential 11
Transportation of Data
The Right Transport Layer Protocol for the Right Application

• For request-and-reply applications


where the data is minimal, and
retransmission can be done quickly.
• UDP is also used by

• If it is important that all the data


arrives and that it can be processed
in its proper sequence,
• TCP is used

© 2016 Cisco and/or its affiliates. All rights reserved. Cisco Confidential 12
TCP Overview

© 2016 Cisco and/or its affiliates. All rights reserved. Cisco Confidential 13
TCP Overview
TCP Features
§ Establishes a Session - TCP is a connection-oriented protocol that negotiates and
establishes a permanent connection (or session) between source and destination devices
prior to forwarding any traffic.
§ Ensures Reliable Delivery - For many reasons, it is possible for a segment to become
corrupted or lost completely, as it is transmitted over the network. TCP ensures that each
segment that is sent by the source arrives at the destination.
§ Provides Same-Order Delivery - Because networks may provide multiple routes that can
have different transmission rates, data can arrive in the wrong order.
§ Supports Flow Control - Network hosts have limited resources (i.e., memory and
processing power). When TCP is aware that these resources are overtaxed, it can request
that the sending application reduce the rate of data flow.

© 2016 Cisco and/or its affiliates. All rights reserved. Cisco Confidential 14
TCP Overview
TCP Header
TCP is a stateful protocol which
means it keeps track of the state
of the communication session.

TCP records which information it


has sent, and which information
has been acknowledged.

© 2016 Cisco and/or its affiliates. All rights reserved. Cisco Confidential 15
TCP Overview
TCP Header Fields
TCP Header Field Description
Source Port A 16-bit field used to identify the source application by port number.
Destination Port A 16-bit field used to identify the destination application by port number.
Sequence Number A 32-bit field used for data reassembly purposes.
A 32-bit field used to indicate that data has been received and the next byte expected from
Acknowledgment Number
the source.
Header Length A 4-bit field known as ʺdata offsetʺ that indicates the length of the TCP segment header.

Reserved A 6-bit field that is reserved for future use.


A 6-bit field used that includes bit codes, or flags, which indicate the purpose and function
Control bits
of the TCP segment.
Window size A 16-bit field used to indicate the number of bytes that can be accepted at one time.
Checksum A 16-bit field used for error checking of the segment header and data.
Urgent A 16-bit field used to indicate if the contained data is urgent.

© 2016 Cisco and/or its affiliates. All rights reserved. Cisco Confidential 16
TCP Overview
Applications that use TCP

TCP handles all tasks associated


with dividing the data stream into
segments, providing reliability,
controlling data flow, and
reordering segments.

© 2016 Cisco and/or its affiliates. All rights reserved. Cisco Confidential 17
UDP Overview

© 2016 Cisco and/or its affiliates. All rights reserved. Cisco Confidential 18
UDP Overview
UDP Features
UDP features include the following:
• Data is reconstructed in the order that it is received.
• Any segments that are lost are not resent.
• There is no session establishment.
• The sending is not informed about resource availability.

© 2016 Cisco and/or its affiliates. All rights reserved. Cisco Confidential 19
UDP Overview
UDP Header
The UDP header is far simpler than the TCP header because it only has
four fields and requires 8 bytes (i.e. 64 bits).

© 2016 Cisco and/or its affiliates. All rights reserved. Cisco Confidential 20
UDP Overview
UDP Header Fields
The table identifies and describes the four fields in a UDP header.

UDP Header Field Description

Source Port A 16-bit field used to identify the source application by port number.

Destination Port A 16-bit field used to identify the destination application by port number.

Length A 16-bit field that indicates the length of the UDP datagram header.

Checksum A 16-bit field used for error checking of the datagram header and data.

© 2016 Cisco and/or its affiliates. All rights reserved. Cisco Confidential 21
UDP Overview
Applications that use UDP
§ Live video and multimedia applications -
These applications can tolerate some data loss
but require little or no delay. Examples include
VoIP and live streaming video.
§ Simple request and reply applications -
Applications with simple transactions where a
host sends a request and may or may not receive
a reply. Examples include DNS and DHCP.
§ Applications that handle reliability themselves
- Unidirectional communications where flow
control, error detection, acknowledgments, and
error recovery is not required, or can be handled
by the application. Examples include SNMP and
TFTP.
© 2016 Cisco and/or its affiliates. All rights reserved. Cisco Confidential 22
Port Numbers

© 2016 Cisco and/or its affiliates. All rights reserved. Cisco Confidential 23
Port Numbers
Multiple Separate Communications
TCP and UDP transport layer protocols use port numbers to manage multiple, simultaneous
conversations.

The source port number is associated with the originating application on the local host
whereas the destination port number is associated with the destination application on the
remote host.

© 2016 Cisco and/or its affiliates. All rights reserved. Cisco Confidential 24
Port numbers
Socket Pairs
• The source and destination ports are
placed within the segment.
• The segments are then encapsulated
within an IP packet.
• The combination of the source IP
address and source port number, or
the destination IP address and
destination port number is known as a
socket.
• Sockets enable multiple processes,
running on a client, to distinguish
themselves from each other, and multiple
connections to a server process to be
distinguished from each other.

© 2016 Cisco and/or its affiliates. All rights reserved. Cisco Confidential 25
Port Numbers
Port Number Groups
Port Group Number Range Description

•These port numbers are reserved for common or popular services and
applications such as web browsers, email clients, and remote access
Well-known
0 to 1,023 clients.
Ports
•Defined well-known ports for common server applications enables clients
to easily identify the associated service required.
•These port numbers are assigned by IANA to a requesting entity to use
with specific processes or applications.
•These processes are primarily individual applications that a user has
Registered
1,024 to 49,151 chosen to install, rather than common applications that would receive a
Ports
well-known port number.
•For example, Cisco has registered port 1812 for its RADIUS server
authentication process.
•These ports are also known as ephemeral ports.
Private and/or •The client’s OS usually assign port numbers dynamically when a
Dynamic 49,152 to 65,535 connection to a service is initiated.
Ports •The dynamic port is then used to identify the client application during
communication.

© 2016 Cisco and/or its affiliates. All rights reserved. Cisco Confidential 26
Port Numbers
Port Number Groups (Cont.)
Well-Known Port Numbers
Port Number Protocol Application
20 TCP File Transfer Protocol (FTP) - Data
21 TCP File Transfer Protocol (FTP) - Control
22 TCP Secure Shell (SSH)
23 TCP Telnet
25 TCP Simple Mail Transfer Protocol (SMTP)
53 UDP, TCP Domain Name Service (DNS)
67 UDP Dynamic Host Configuration Protocol (DHCP) - Server
68 UDP Dynamic Host Configuration Protocol - Client
69 UDP Trivial File Transfer Protocol (TFTP)
80 TCP Hypertext Transfer Protocol (HTTP)
110 TCP Post Office Protocol version 3 (POP3)
143 TCP Internet Message Access Protocol (IMAP)
161 UDP Simple Network Management Protocol (SNMP)
© 2016 Cisco and/or its affiliates. All rights reserved. Cisco Confidential 27
443 TCP Hypertext Transfer Protocol Secure (HTTPS)
Port Numbers
The netstat Command
Unexplained TCP connections can pose a major security threat. Netstat is
an important tool to verify connections.

C:\> netstat
Active Connections
Proto Local Address Foreign Address State
TCP 192.168.1.124:3126 192.168.0.2:netbios-ssn ESTABLISHED
TCP 192.168.1.124:3158 207.138.126.152:http ESTABLISHED
TCP 192.168.1.124:3159 207.138.126.169:http ESTABLISHED
TCP 192.168.1.124:3160 207.138.126.169:http ESTABLISHED
TCP 192.168.1.124:3161 sc.msn.com:http ESTABLISHED
TCP 192.168.1.124:3166 www.cisco.com:http ESTABLISHED

© 2016 Cisco and/or its affiliates. All rights reserved. Cisco Confidential 28
TCP Communication Process

© 2016 Cisco and/or its affiliates. All rights reserved. Cisco Confidential 29
TCP Communication Process
TCP Server Processes
Each application process running on a server is
configured to use a port number.
• An individual server cannot have two
services assigned to the same port number
within the same transport layer services.
• An active server application assigned to a
specific port is considered open, which
means that the transport layer accepts, and
processes segments addressed to that
port.
• Any incoming client request addressed to
the correct socket is accepted, and the data
is passed to the server application.

© 2016 Cisco and/or its affiliates. All rights reserved. Cisco Confidential 30
TCP Communication Process
TCP Connection Establishment
Step 1: The initiating client requests a client-
to-server communication session with the
server.
Step 2: The server acknowledges the client-
to-server communication session and
requests a server-to-client communication
session.
Step 3: The initiating client acknowledges
the server-to-client communication session.

© 2016 Cisco and/or its affiliates. All rights reserved. Cisco Confidential 31
TCP Communication Process
Session Termination

Step 1: When the client has no more data


to send in the stream, it sends a segment
with the FIN flag set.
Step 2: The server sends an ACK to
acknowledge the receipt of the FIN to
terminate the session from client to server.
Step 3: The server sends a FIN to the client
to terminate the server-to-client session.
Step 4: The client responds with an ACK to
acknowledge the FIN from the server.

© 2016 Cisco and/or its affiliates. All rights reserved. Cisco Confidential 32
TCP Communication Process
TCP Three-Way Handshake Analysis
Functions of the Three-Way Handshake:
• It establishes that the destination device is present on the network.
• It verifies that the destination device has an active service and is
accepting requests on the destination port number that the initiating
client intends to use.
• It informs the destination device that the source client intends to establish
a communication session on that port number.
After the communication is completed the sessions are closed, and the
connection is terminated. The connection and session mechanisms enable
TCP reliability function.

© 2016 Cisco and/or its affiliates. All rights reserved. Cisco Confidential 33
Reliability and Flow Control

© 2016 Cisco and/or its affiliates. All rights reserved. Cisco Confidential 34
Reliability and Flow Control
TCP Reliability- Guaranteed and Ordered Delivery

• TCP can also help maintain the flow


of packets so that devices do not
become overloaded.
• There may be times when TCP
segments do not arrive at their
destination or arrive out of order.
• All the data must be received and the
data in these segments must be
reassembled into the original order.
• Sequence numbers are assigned in
the header of each packet to achieve
this goal.

© 2016 Cisco and/or its affiliates. All rights reserved. Cisco Confidential 35
Reliability and Flow Control
TCP Reliability – Data Loss and Retransmission

No matter how well designed a network


is, data loss occasionally occurs.
TCP provides methods of managing
these segment losses. Among these is
a mechanism to retransmit segments
for unacknowledged data.

© 2016 Cisco and/or its affiliates. All rights reserved. Cisco Confidential 36
Reliability and Flow Control
TCP Reliability – Data Loss and Retransmission (Cont.)

Host operating systems today typically


employ an optional TCP feature called
selective acknowledgment (SACK),
negotiated during the three-way
handshake.
If both hosts support SACK, the receiver
can explicitly acknowledge which
segments (bytes) were received
including any discontinuous segments.

© 2016 Cisco and/or its affiliates. All rights reserved. Cisco Confidential 37
Reliability and Flow Control
TCP Flow Control – Window Size and Acknowledgments

TCP also provides mechanisms for


flow control as follows:

• Flow control is the amount of data


that the destination can receive
and process reliably.

• Flow control helps maintain the


reliability of TCP transmission by
adjusting the rate of data flow
between source and destination for
a given session.

© 2016 Cisco and/or its affiliates. All rights reserved. Cisco Confidential 38
Reliability and Flow Control
TCP Flow Control – Maximum Segment Size
Maximum Segment Size (MSS) is
the maximum amount of data that
the destination device can receive.

• A common MSS is 1,460 bytes


when using IPv4.
• A host determines the value of its
MSS field by subtracting the IP
and TCP headers from the
Ethernet maximum transmission
unit (MTU), which is 1500 bytes
be default.
• 1500 minus 40 (20 bytes for the
IPv4 header and 20 bytes for the
TCP header) leaves 1460 bytes.

© 2016 Cisco and/or its affiliates. All rights reserved. Cisco Confidential 39
Reliability and Flow Control
TCP Flow Control – Congestion Avoidance
When congestion occurs on a
network, it results in packets being
discarded by the overloaded router.

To avoid and control congestion,


TCP employs several congestion
handling mechanisms, timers, and
algorithms.

© 2016 Cisco and/or its affiliates. All rights reserved. Cisco Confidential 40
UDP Communication

© 2016 Cisco and/or its affiliates. All rights reserved. Cisco Confidential 41
UDP Communication
UDP Low Overhead versus Reliability
UDP does not establish a connection. UDP provides low overhead data transport because
it has a small datagram header and no network management traffic.

© 2016 Cisco and/or its affiliates. All rights reserved. Cisco Confidential 42
UDP Communication
UDP Datagram Reassembly

• UDP does not track


sequence numbers the way
TCP does.
• UDP has no way to reorder
the datagrams into their
transmission order.
• UDP simply reassembles the
data in the order that it was
received and forwards it to
the application.

© 2016 Cisco and/or its affiliates. All rights reserved. Cisco Confidential 43
UDP Communication
UDP Server Processes and Requests

UDP-based server applications


are assigned well-known or
registered port numbers.

UDP receives a datagram


destined for one of these ports, it
forwards the application data to
the appropriate application based
on its port number.

© 2016 Cisco and/or its affiliates. All rights reserved. Cisco Confidential 44
UDP Communication
UDP Client Processes

• The UDP client process


dynamically selects a port number
from the range of port numbers
and uses this as the source port
for the conversation.
• The destination port is usually the
well-known or registered port
number assigned to the server
process.
• After a client has selected the
source and destination ports, the
same pair of ports are used in the
header of all datagrams in the
transaction.

© 2016 Cisco and/or its affiliates. All rights reserved. Cisco Confidential 45

You might also like