application layer last update 2011.09.05 1.4.0 1copyright 2005-2011 kenneth m. chipps ph.d
TRANSCRIPT
![Page 1: Application Layer Last Update 2011.09.05 1.4.0 1Copyright 2005-2011 Kenneth M. Chipps Ph.D](https://reader030.vdocuments.us/reader030/viewer/2022032606/56649eb15503460f94bb6913/html5/thumbnails/1.jpg)
1
Application Layer
Last Update 2011.09.05
1.4.0
Copyright 2005-2011 Kenneth M. Chipps Ph.D. www.chipps.com
![Page 2: Application Layer Last Update 2011.09.05 1.4.0 1Copyright 2005-2011 Kenneth M. Chipps Ph.D](https://reader030.vdocuments.us/reader030/viewer/2022032606/56649eb15503460f94bb6913/html5/thumbnails/2.jpg)
Copyright 2005-2011 Kenneth M. Chipps Ph.D. www.chipps.com
2
Application Layer Detail
• The application layer provides services to applications
• In other words it is the redirector we talked about earlier
• Whenever a request is made for a network service that the OS would not understand the application layer’s redirector redirects that request to the application layer
![Page 3: Application Layer Last Update 2011.09.05 1.4.0 1Copyright 2005-2011 Kenneth M. Chipps Ph.D](https://reader030.vdocuments.us/reader030/viewer/2022032606/56649eb15503460f94bb6913/html5/thumbnails/3.jpg)
Copyright 2005-2011 Kenneth M. Chipps Ph.D. www.chipps.com
3
Common Services
• What are some examples of these sorts of services
![Page 4: Application Layer Last Update 2011.09.05 1.4.0 1Copyright 2005-2011 Kenneth M. Chipps Ph.D](https://reader030.vdocuments.us/reader030/viewer/2022032606/56649eb15503460f94bb6913/html5/thumbnails/4.jpg)
Common Services
Copyright 2005-2011 Kenneth M. Chipps Ph.D. www.chipps.com
4
![Page 5: Application Layer Last Update 2011.09.05 1.4.0 1Copyright 2005-2011 Kenneth M. Chipps Ph.D](https://reader030.vdocuments.us/reader030/viewer/2022032606/56649eb15503460f94bb6913/html5/thumbnails/5.jpg)
Copyright 2005-2011 Kenneth M. Chipps Ph.D. www.chipps.com
5
What are Ports
• As you can see there are many services that live at the application layer
• To keep all of these separate port numbers are used
• It is the next step above the IP address• To illustrate
![Page 6: Application Layer Last Update 2011.09.05 1.4.0 1Copyright 2005-2011 Kenneth M. Chipps Ph.D](https://reader030.vdocuments.us/reader030/viewer/2022032606/56649eb15503460f94bb6913/html5/thumbnails/6.jpg)
The DeVry Building
• Lets use the DeVry building as an example
• In this case the address of 4800 Regent, Irving, Texas, 75063, USA is like the IP Address
• Because with that address we can find this building from anywhere in the world
• We’ll use Street Atlas to locate this building using that address
Copyright 2005-2011 Kenneth M. Chipps Ph.D. www.chipps.com
6
![Page 7: Application Layer Last Update 2011.09.05 1.4.0 1Copyright 2005-2011 Kenneth M. Chipps Ph.D](https://reader030.vdocuments.us/reader030/viewer/2022032606/56649eb15503460f94bb6913/html5/thumbnails/7.jpg)
The DeVry Building
Copyright 2005-2011 Kenneth M. Chipps Ph.D. www.chipps.com
7
![Page 8: Application Layer Last Update 2011.09.05 1.4.0 1Copyright 2005-2011 Kenneth M. Chipps Ph.D](https://reader030.vdocuments.us/reader030/viewer/2022032606/56649eb15503460f94bb6913/html5/thumbnails/8.jpg)
The DeVry Building
Copyright 2005-2011 Kenneth M. Chipps Ph.D. www.chipps.com
8
![Page 9: Application Layer Last Update 2011.09.05 1.4.0 1Copyright 2005-2011 Kenneth M. Chipps Ph.D](https://reader030.vdocuments.us/reader030/viewer/2022032606/56649eb15503460f94bb6913/html5/thumbnails/9.jpg)
The DeVry Building
Copyright 2005-2011 Kenneth M. Chipps Ph.D. www.chipps.com
9
![Page 10: Application Layer Last Update 2011.09.05 1.4.0 1Copyright 2005-2011 Kenneth M. Chipps Ph.D](https://reader030.vdocuments.us/reader030/viewer/2022032606/56649eb15503460f94bb6913/html5/thumbnails/10.jpg)
The DeVry Building
This gets us here
Copyright 2005-2011 Kenneth M. Chipps Ph.D. www.chipps.com
10
![Page 11: Application Layer Last Update 2011.09.05 1.4.0 1Copyright 2005-2011 Kenneth M. Chipps Ph.D](https://reader030.vdocuments.us/reader030/viewer/2022032606/56649eb15503460f94bb6913/html5/thumbnails/11.jpg)
The DeVry Building
• So it is a globally valid address• But it tells us nothing about where a
particular class is being held• To know this we need more information
Copyright 2005-2011 Kenneth M. Chipps Ph.D. www.chipps.com
11
![Page 12: Application Layer Last Update 2011.09.05 1.4.0 1Copyright 2005-2011 Kenneth M. Chipps Ph.D](https://reader030.vdocuments.us/reader030/viewer/2022032606/56649eb15503460f94bb6913/html5/thumbnails/12.jpg)
The DeVry Building
• At DeVry we use a classroom number - which is just like a port - inside the building
• So a complete address including the port would be– 4800 Regent, Irving, Texas, 75063,
USA:Room 138• Which is just like
– 168.35.2.11:80
Copyright 2005-2011 Kenneth M. Chipps Ph.D. www.chipps.com
12
![Page 13: Application Layer Last Update 2011.09.05 1.4.0 1Copyright 2005-2011 Kenneth M. Chipps Ph.D](https://reader030.vdocuments.us/reader030/viewer/2022032606/56649eb15503460f94bb6913/html5/thumbnails/13.jpg)
Port Numbers
• The port numbers were divided into three ranges
• Well Known Ports– 0 to 1023
• Registered Ports– 1024 to 49151
• Dynamic or Private Ports– 49152 to 65535
Copyright 2005-2011 Kenneth M. Chipps Ph.D. www.chipps.com
13
![Page 14: Application Layer Last Update 2011.09.05 1.4.0 1Copyright 2005-2011 Kenneth M. Chipps Ph.D](https://reader030.vdocuments.us/reader030/viewer/2022032606/56649eb15503460f94bb6913/html5/thumbnails/14.jpg)
Well Known Ports
• These ports are assigned by the ISI - under the authority of the IANA
• To the extent possible, the same port assignments are used with TCP and UDP
Copyright 2005-2011 Kenneth M. Chipps Ph.D. www.chipps.com
14
![Page 15: Application Layer Last Update 2011.09.05 1.4.0 1Copyright 2005-2011 Kenneth M. Chipps Ph.D](https://reader030.vdocuments.us/reader030/viewer/2022032606/56649eb15503460f94bb6913/html5/thumbnails/15.jpg)
Registered Ports
• These ports are also registered by the ISI for the IANA
• IANA registers uses of these ports as a convenience to the community
• Again to the extent possible, the same port assignments are used with TCP and UDP
Copyright 2005-2011 Kenneth M. Chipps Ph.D. www.chipps.com
15
![Page 16: Application Layer Last Update 2011.09.05 1.4.0 1Copyright 2005-2011 Kenneth M. Chipps Ph.D](https://reader030.vdocuments.us/reader030/viewer/2022032606/56649eb15503460f94bb6913/html5/thumbnails/16.jpg)
Dynamic or Private Ports
• These are not tracked by anyone other than the programmer for a particular application
• This is why they are called Private Port numbers
• They may be used as desired
Copyright 2005-2011 Kenneth M. Chipps Ph.D. www.chipps.com
16
![Page 17: Application Layer Last Update 2011.09.05 1.4.0 1Copyright 2005-2011 Kenneth M. Chipps Ph.D](https://reader030.vdocuments.us/reader030/viewer/2022032606/56649eb15503460f94bb6913/html5/thumbnails/17.jpg)
Copyright 2005-2011 Kenneth M. Chipps Ph.D. www.chipps.com
17
Dynamic or Private Ports
• They are also called Dynamic Ports because they are assigned to a purpose, then unassigned dynamically as needed
![Page 18: Application Layer Last Update 2011.09.05 1.4.0 1Copyright 2005-2011 Kenneth M. Chipps Ph.D](https://reader030.vdocuments.us/reader030/viewer/2022032606/56649eb15503460f94bb6913/html5/thumbnails/18.jpg)
Assignment of Port Numbers
• The list at the IANA is the source for starting the process of determining what port numbers are used for
• RFC 1700 once did this, but it has recently been moved to Historic status
• However what it states concerning the role of the IANA is still relevant
Copyright 2005-2011 Kenneth M. Chipps Ph.D. www.chipps.com
18
![Page 19: Application Layer Last Update 2011.09.05 1.4.0 1Copyright 2005-2011 Kenneth M. Chipps Ph.D](https://reader030.vdocuments.us/reader030/viewer/2022032606/56649eb15503460f94bb6913/html5/thumbnails/19.jpg)
Assignment of Port Numbers
• It states in part– The IANA - Internet Assigned Numbers
Authority is the central coordinator for the assignment of unique parameter values for Internet protocols
– It is to assign and coordinate the use of numerous Internet protocol parameters
Copyright 2005-2011 Kenneth M. Chipps Ph.D. www.chipps.com
19
![Page 20: Application Layer Last Update 2011.09.05 1.4.0 1Copyright 2005-2011 Kenneth M. Chipps Ph.D](https://reader030.vdocuments.us/reader030/viewer/2022032606/56649eb15503460f94bb6913/html5/thumbnails/20.jpg)
Assignment of Port Numbers
– The Internet protocol suite contains numerous parameters, such as internet addresses, domain names, autonomous system numbers, protocol numbers, port numbers, management information base object identifiers, including private enterprise numbers, and many others
Copyright 2005-2011 Kenneth M. Chipps Ph.D. www.chipps.com
20
![Page 21: Application Layer Last Update 2011.09.05 1.4.0 1Copyright 2005-2011 Kenneth M. Chipps Ph.D](https://reader030.vdocuments.us/reader030/viewer/2022032606/56649eb15503460f94bb6913/html5/thumbnails/21.jpg)
Assignment of Port Numbers
– The common use of the Internet protocols by the Internet community requires that the particular values used in these parameter fields be assigned uniquely
– It is the task of the IANA to make those unique assignments as requested and to maintain a registry of the currently assigned values
Copyright 2005-2011 Kenneth M. Chipps Ph.D. www.chipps.com
21
![Page 22: Application Layer Last Update 2011.09.05 1.4.0 1Copyright 2005-2011 Kenneth M. Chipps Ph.D](https://reader030.vdocuments.us/reader030/viewer/2022032606/56649eb15503460f94bb6913/html5/thumbnails/22.jpg)
Tracking Down Port Numbers
• The current list is found at http://www.iana.org, then clicking on Protocol Numbers and Assignment Services, then clicking on the P, then clicking on Port Numbers
Copyright 2005-2011 Kenneth M. Chipps Ph.D. www.chipps.com
22
![Page 23: Application Layer Last Update 2011.09.05 1.4.0 1Copyright 2005-2011 Kenneth M. Chipps Ph.D](https://reader030.vdocuments.us/reader030/viewer/2022032606/56649eb15503460f94bb6913/html5/thumbnails/23.jpg)
Tracking Down Port Numbers
Copyright 2005-2011 Kenneth M. Chipps Ph.D. www.chipps.com
23
![Page 24: Application Layer Last Update 2011.09.05 1.4.0 1Copyright 2005-2011 Kenneth M. Chipps Ph.D](https://reader030.vdocuments.us/reader030/viewer/2022032606/56649eb15503460f94bb6913/html5/thumbnails/24.jpg)
Tracking Down Port Numbers
• Click on the P on the following page, then click on Port Numbers, then scroll down to the number list itself
Copyright 2005-2011 Kenneth M. Chipps Ph.D. www.chipps.com
24
![Page 25: Application Layer Last Update 2011.09.05 1.4.0 1Copyright 2005-2011 Kenneth M. Chipps Ph.D](https://reader030.vdocuments.us/reader030/viewer/2022032606/56649eb15503460f94bb6913/html5/thumbnails/25.jpg)
Tracking Down Port Numbers
Copyright 2005-2011 Kenneth M. Chipps Ph.D. www.chipps.com
25
![Page 26: Application Layer Last Update 2011.09.05 1.4.0 1Copyright 2005-2011 Kenneth M. Chipps Ph.D](https://reader030.vdocuments.us/reader030/viewer/2022032606/56649eb15503460f94bb6913/html5/thumbnails/26.jpg)
Tracking Down Port Numbers
Copyright 2005-2011 Kenneth M. Chipps Ph.D. www.chipps.com
26
![Page 27: Application Layer Last Update 2011.09.05 1.4.0 1Copyright 2005-2011 Kenneth M. Chipps Ph.D](https://reader030.vdocuments.us/reader030/viewer/2022032606/56649eb15503460f94bb6913/html5/thumbnails/27.jpg)
Tracking Down Port Numbers
Copyright 2005-2011 Kenneth M. Chipps Ph.D. www.chipps.com
27
![Page 28: Application Layer Last Update 2011.09.05 1.4.0 1Copyright 2005-2011 Kenneth M. Chipps Ph.D](https://reader030.vdocuments.us/reader030/viewer/2022032606/56649eb15503460f94bb6913/html5/thumbnails/28.jpg)
Tracking Down Port Numbers
• A major problem with port numbers is that there is no definitive source of information on exactly what a port is being used for
• The list gives it a name and a contact, but it does not tell you why the host is listening to that port
• In some cases you can tell by the name or the company that registered the number
Copyright 2005-2011 Kenneth M. Chipps Ph.D. www.chipps.com
28
![Page 29: Application Layer Last Update 2011.09.05 1.4.0 1Copyright 2005-2011 Kenneth M. Chipps Ph.D](https://reader030.vdocuments.us/reader030/viewer/2022032606/56649eb15503460f94bb6913/html5/thumbnails/29.jpg)
Tracking Down Port Numbers
• But in many cases you have no clue• Even worse the numbers between 1024 to
49151, even though registered, are often used just like the dynamic numbers
Copyright 2005-2011 Kenneth M. Chipps Ph.D. www.chipps.com
29
![Page 30: Application Layer Last Update 2011.09.05 1.4.0 1Copyright 2005-2011 Kenneth M. Chipps Ph.D](https://reader030.vdocuments.us/reader030/viewer/2022032606/56649eb15503460f94bb6913/html5/thumbnails/30.jpg)
Tracking Down Port Numbers
• Tracking a port back to an application is difficult
• There are several tools that attempt to do this
• One of these is netstat• For example this command sequence will
map the open port back to the program that is using it– netstat –ano
Copyright 2005-2011 Kenneth M. Chipps Ph.D. www.chipps.com
30
![Page 31: Application Layer Last Update 2011.09.05 1.4.0 1Copyright 2005-2011 Kenneth M. Chipps Ph.D](https://reader030.vdocuments.us/reader030/viewer/2022032606/56649eb15503460f94bb6913/html5/thumbnails/31.jpg)
Copyright 2005-2011 Kenneth M. Chipps Ph.D. www.chipps.com
31
Traffic Seen
• What types of traffic are currently seen on networks worldwide
• Sandvine produces reports on this periodically
• In their report from March 2011 we see the following
![Page 32: Application Layer Last Update 2011.09.05 1.4.0 1Copyright 2005-2011 Kenneth M. Chipps Ph.D](https://reader030.vdocuments.us/reader030/viewer/2022032606/56649eb15503460f94bb6913/html5/thumbnails/32.jpg)
Copyright 2005-2011 Kenneth M. Chipps Ph.D. www.chipps.com
32
Traffic Seen
![Page 33: Application Layer Last Update 2011.09.05 1.4.0 1Copyright 2005-2011 Kenneth M. Chipps Ph.D](https://reader030.vdocuments.us/reader030/viewer/2022032606/56649eb15503460f94bb6913/html5/thumbnails/33.jpg)
Copyright 2005-2011 Kenneth M. Chipps Ph.D. www.chipps.com
33
Traffic Seen
![Page 34: Application Layer Last Update 2011.09.05 1.4.0 1Copyright 2005-2011 Kenneth M. Chipps Ph.D](https://reader030.vdocuments.us/reader030/viewer/2022032606/56649eb15503460f94bb6913/html5/thumbnails/34.jpg)
Copyright 2005-2011 Kenneth M. Chipps Ph.D. www.chipps.com
34
Traffic Seen
![Page 35: Application Layer Last Update 2011.09.05 1.4.0 1Copyright 2005-2011 Kenneth M. Chipps Ph.D](https://reader030.vdocuments.us/reader030/viewer/2022032606/56649eb15503460f94bb6913/html5/thumbnails/35.jpg)
Copyright 2005-2011 Kenneth M. Chipps Ph.D. www.chipps.com
35
Traffic Seen
![Page 36: Application Layer Last Update 2011.09.05 1.4.0 1Copyright 2005-2011 Kenneth M. Chipps Ph.D](https://reader030.vdocuments.us/reader030/viewer/2022032606/56649eb15503460f94bb6913/html5/thumbnails/36.jpg)
Copyright 2005-2011 Kenneth M. Chipps Ph.D. www.chipps.com
36
Traffic Seen
![Page 37: Application Layer Last Update 2011.09.05 1.4.0 1Copyright 2005-2011 Kenneth M. Chipps Ph.D](https://reader030.vdocuments.us/reader030/viewer/2022032606/56649eb15503460f94bb6913/html5/thumbnails/37.jpg)
Copyright 2005-2011 Kenneth M. Chipps Ph.D. www.chipps.com
37
Traffic Seen
![Page 38: Application Layer Last Update 2011.09.05 1.4.0 1Copyright 2005-2011 Kenneth M. Chipps Ph.D](https://reader030.vdocuments.us/reader030/viewer/2022032606/56649eb15503460f94bb6913/html5/thumbnails/38.jpg)
Copyright 2005-2011 Kenneth M. Chipps Ph.D. www.chipps.com
38
Traffic Seen
• As these tables show entertainment related traffic is increasing in all markets