10 hours 41 minutes
this module we're gonna talk about I p addresses ports and protocols.
So an I p address
lives at the later three. It's after we've already translated the Mac address
into these and that, and we moved to Layer three, and now we have
T's P i p coming in. And so T's Pipi uses eyepiece. Or, uh,
you're not protocol Joses
to identify machines or devices on the network
I P address, at least with I p before is 32 bits and links, which is divided into four AQ debts.
The Oct It's air separated by dots.
This example. Everything translates the binary and computers that would be the buying a representation of
192.1 68. That one. That one.
The I P address reflects both the network that the host is on in the host itself. What does that mean? So that means the 1st 3 octopus usually defined the network that belongs to,
and the last octet would define the actual host, which would be unique to that network
in a diagram example.
So if we have an I P address
that would commonly refer to an entire network that is known behind a common router
or switch as
S. O. C.
So say this switch is everything Behind the switch is the network 10 dup
So each I pee behind here
would be identified with a different forthe octet, which would identify it individually as a host. So in this case, we could say
this one was 10.10
this one viki 10.6
0.7 They would all have the same network.
That's how they all know which network to be long to is by the 1st 3 AQ tents there. So those 1st 3 numbers can change if they're on different network, so we could have another switch over here with a different network
will be tender.
zero indicates the entire network
and each of those and then each of the boxes under here would have the same three numbers.
They could only have values between one and 2 54
So anywhere, the doctor it's cannot be valued
between that's over 2 54
They cannot be 00 identifies the network that the coast belongs to.
Now we do have what's called private I p addresses.
They're defined for internal use.
So these reserved and these air not row doble on the Internet. So with I pee before we have a limit number of Internet
addresses available, and as more people get on the Internet, those addresses are being used up.
So to avoid depletion, if you do not have to have a device that directly sits on the Internet,
you can use one of these private I P addresses.
it saves Internet eyepiece. But also, if for some reason, your packets from your computer if they have with the P addresses trying it on the Internet,
any Internet router would drop them because they're non row double on the Internet.
So you see, the common ones you see are like 10. Like I was using it. My example. So I say $10.0.0 because I can use
any value in the 2nd 3rd octet from 1 to 2 55
so I could have a network that's
Tenn 0.1 dot one duck
13 to 55 I could just keep building it up. So that's that's a huge network
and the other one you commonly see, especially on home right home routers and home devices, is the 1 92.1 68
But the goal here is to fold is one that we don't waste private eye Pete. We don't waste public I p addresses, and I pee before so most corporation will have their own internal I p scheme
with not rideable Internet addresses and then just own a few external facing
our Internet facing I. P V four addresses.
So I have to be six. It's the next version of the Internet protocol. So far, we've been talking in terms of
Ivy. Six came around, mainly because we're running out of I P four addresses
as significantly work as significant. More capacity could use 128 bits for the addresses instead of 32
It also has a smaller head, so it has less overhead.
Adoption has been
so so there's federal mandates for when
government agencies need to adopt it. But a lot of people
I have not.
The main reason Fried, 56 was really just because we're running out of I P addresses
that your address
and I V six you can see is a lot different because it's
using four hex digits instead of our typical
that we see the night before.
This is typical in to be separated by Coghlan's instead of dots
in the equivalent private I'd pee Space
is this I p address an I P V six format, which would be the equivalent of a
10 or 1 72 or 192 based network.
There's other comparison, so you could see the 32 bit address
of Top private before decimal format,
which gives us
4.3 times 10 to the ninth addresses. But
with the new I P scheme with 100 20
i p v six address,
it's insane. I don't even know where we'd start with saying that number. Besides using
3.4 times 10 to the 38
we're the biggest challenges like V six is. It uses Hexi decimal, which most of us which a lot of people aren't familiar with compared to regular decimal.
So T's V. I P
uses two types of protocol
commonly called TCP transport Control Protocol and UDP User data Graham Protocol.
The key difference between the two is you want to use. TCP is used when you want to make sure the connection
is, uh has to be defendable has to be dependable. Guaranteed delivery. What UDP is connection list so it's not guaranteed. That's gonna make it either. End
so T Examples of TCP would be file transfers, email, Web page, Web page requests
We need a file transfer go through guaranteed because if it doesn't go through right to follow, be corrupted.
UDP is more likely to be used for such things. It's streaming
of audio and video,
I said. No guarantee of delivery.
It's best effort.
So we'll go over some of the examples of ports and protocols that used TCP and UDP and talk about why they use
one or the other.
So port so talking about P addresses, the next step is port supports are usually are always associate with an I P address,
and the port is used to a uniquely identify application of processes.
They're running on that
so we may have multiple network type service is being offered on the host before we have the eyepiece address. How do we access that specific service running on the host.
So the poor is kind of like which mailbox to go to on that machine.
Which door do we open in the house to get to where we want
And the ports always be TCP or UDP.
Remember, TCP is guaranteed delivery. UDP is best effort.
So we go over some of the common default ports they would see on most
networks not know surely on your host. But your host would use these. Your computer would use these ports to communicate with other servers.
So we're gonna go through each of the East. I'm not gonna read them all by themselves.
So first is FTP and T F T P
FTP stands for file transfer protocol goes over port 21 for control and 20 for the actual data. So if you're opening, if you're having FTP go through your firewall, gonna make sure you have both
20 and 21 TCP ports open.
Now we're using TCP because we're transferring files and want to guarantee that they're gonna be delivered. It's a state full. It's a guaranteed session because you're gonna log in.
The biggest problem with so file transfer protocol has been around for a while. Very common way to host files. It's basically you connect with FTP client, which could be gooey or could be at the command line. You log in with user name and password, and then you can download files.
So FTP was around way before the Web. It was a common way to transfer files over the network.
The biggest problem FTP now is that it's
very insecure because nothing is encrypted, not even the user name and password.
So when you got a law again, it's the user name and password or transferred over the clear.
You know, security wasn't the main goal when they developed FTP when computers were first coming out. Uh, the Internet wasn't around. It wasn't
being used as widely as it is now, so they weren't thinking security in these old protocols.
It's best to avoid FTP unless absolutely necessary
in today's environment, since it is so easily detected
and so, especially if, like a lot of people do they use the same password for everything. So if they get the password from your FTP account, there's a good chance they have the password from something else.
The most time you would have a client, you'd access an FTP server that think of it as an early way of doing file share.
T f T P is called Trivial File Transfer Protocol.
It's a simpler version of FTP and runs on you Deport 69
Very simple Autistic. Um, upload a file. Er, get a file
today. T T f T P is mainly used for
booting computers over the network.
So when you boot a computer from land will go look for a key FTP server. Or you could specify a T FTP server. Basically download a small filed I'll tell it. Okay, go look here to boot. And here's the rest of the instructions to follow through
and says T f T P is only those required whose name log in no way does very small files and typically used just abou a computer. That's why it's over UDP
It's not interactive session like you would with a teepee.
So with the insecurities FTP and,
uh, telling that which will talk about also in a second
there's s s h, so shh replace Telnet.
Telling a is a program that allows you to remotely access
computers, mainly UNIX machines and switches and routers from the command line using plain text.
It's only for doing like commanding control. It wasn't for downloading uploading files of more just the typing commands. It wasn't completely in the clear.
So now we have a CH,
which is a secure replacement for talent and also security placement for FTP
operates in Port 22
but does more than just operate as a security placement for telling. An FTP can also use it to do what's called tunneling, where you can send other traffic such as Web and email.
That's what basically does is you log in with user name and password to another machine running Sshh, as we were in the estate server,
encrypt using and password and that encrypts the rest of your session.
All the data going back and forth is in the is encrypted or report 22
and that's called a tunnel. So now you have this created. You can use it to pass other types of information,
such as your Web browsing activity or connect to other ports. And it'll be encrypted through that initial logging that you already did,
almost like a VPN,
just not as user friendly
but probably more powerful.
So secure. FTP is the file transfer port portion of estates
still using Port 22 because
we're using the same username, password, same
But we can use this to also transfer files much like we did with FTP.
But again, your your name and your password is encrypted,
and so are the file transfers.
tell that, like I mentioned a few minutes ago, I should have had this to slides earlier.
TCP. This a very plain text
log in, usually to a router switch. It's not gooey,
no graphical interface.
This was the only way to communicate with early Lennox UNIX machines
before the days of Windows,
but it's still available on older switches and routers.
That's the way you can remote access them to change configurations.
A lot of the newest switches and routers
now support Sshh so you don't have to use tone. It's so tell that should only be used in case of extreme case, uh, extreme emergencies, where there's no other option to access the machine
melon consider still turned off, telling that only access to that machine physically, if that's all that's available
at some TV. Simple male transfer protocol operates important 25 TCP
This support We're used to send mail
from client to servers and between servers.
So when you connect to a mail server or you're eating your outlook earlier or whatever your E mail plane is, it goes to send mail. It's gonna contact the mail server over Port 25.
So to kind of put it back in perspective, bit blowing it out again. If I have one server that's running, Web
how do I know the port tells me which which programmed to go to, Because if I just go to the I P address, I don't How am I gonna know if I'm accessing the Web server or from access in the mail server or I'm going to S H The poor is what directs us to
toe which program we're gonna use on the server.
SMTP has no authentication by default.
Before, we had what we called open relays where we didn't have any kind of authentication or any kind of I p control so anyone could send mail from anyone else's mail server
that's called being an open relay, and it caused a lot of the early spam on the Internet.
You don't see that very often. A lot of eye of peace. Internet service providers actually block port 25 so you can't run your own open relay or your own mail server.
Most SMTP servers now support some kind of authentication.
And so I mean, support encryption
pop. Very popular. One port 110 TCP Um, I kind of noticed. I say popular, but I guess now, with Web mail, you don't see Pop and I map as much
because they want to access their page of the Web mail. But using some kind of email client to access your
your Web your your email from another server, you're likely using either popper. I map port runs over Wound zero
basically goes and clears the mail server using your username password and download your mail messages for you to your local client.
I'm map. Run the import. 1443 Internet Message Access protocol.
Instead of downloading the messages and taking him off the server pop, think of as a retrieval.
I'm map allowed you to keep it on the server and made and sink it between the server and your client.
You could do that with multiple clients. So with Pop, if you download your mail on one particular machine now that may only exist on that machine. It's no longer on the server. Thigh map
exists in both places until you delete it on your one of your machines and deleted on the I'm app server.
No, the very early form of what now we take for granted in an enterprise environment with Microsoft Outlook. Where,
where if you're in exchange environment with Microsoft Exchange, you see the same male and Web mail that you see in your outlook client that you'd see
anywhere you'd log in.
I'm map is the same principle, but before outlook was around.