Module 1

Sunday, 15 September 2024 20:43

Course 2 Page 1
Module 2
Sunday, 15 September 2024 20:46

IPv4 Datagram and Encapsulation

• IP Datagram : A highly structured series of fields that are strictly defined.
• Header length field: Almost always 20 bytes in length when dealing with IPv4.
• Service type fields: These 8 bits can be used to specify details about quality of service or Qos,
technologies.
• Total length field: Indicates the total length of the IP datagram it's attached to.
• Identification field: A 16-bit number that's used to group messages together.
• Flag field: Used to indicate if a diagram is allowed to be fragmented, or to indicate that the
datagram has already been fragmented.
• Fragmentation: The process of taking a single IP datagram and splitting it up into several
smaller datagram.
• Time to live (TTL) field: An 8-bit field that indicate how many router hops a datagram can
traverse before it's thrown away.
• Protocol field: Another 8-bit field that contains data about what transport layer protocol is
being used. (most used are: TCP and UDP)
• Header checksum field: A checksum of the contents of the entire IP datagram header.
• IP options field: An optional field and is used to set special characteristics for datagrams
primarily used for testing purposes.
• Padding field: A series of zeros to ensure the header is the correct total size.

IPv4 Address Classes

• Address class system: A way of defining how the global IP address space is split up.

Address Resolution Protocol

• Address resolution protocol (ARP): A protocol used to discover the hardware address of a
node with a certain IP address.
• ARP table: A list of IP addresses and the MAC addresses associated with them. ( ARP tables
entries generally expires after a short amount of time to ensure changes in the network are
accounted for)

Subnetting

• Subnetting : The process of taking a large network and splitting it up into many individual and
smaller subnetworks, or subnets.

Subnet masks
• Subnet masks : 32-bit numbers that are normally written out as four octets in decimal.

CIDR
• CIDR ( Classless inter-domain routing) : a flexible approach to describing blocks of IP
addresses.
• Demarcation point : To describe where one network or system ends and another one begins.

Basic routing concepts

Course 2 Page 2
Basic routing concepts
•
• Router : A network device that forwards traffic depending on the destination address of that
traffic.

Routing tables
• Destination network : This column would contain a row for each network that the router
knows about.
• Next hop : This is the IP address of the next router that should receive data intended for the
destination networking question.

Interior gateway protocols

• Routing protocols : These are special protocols the routers use to speak to each other in order
to share what information they might have.
• Interior gateway protocols : Used by routes to share information within a single autonomous
system.
• Autonomous system : A collection of networks that all the fall under the control of a single
network operator.
• Exterior gateway protocols : Are used for the exchange of information between independent
autonomous systems.

Exterior gateway, Autonomous systems, and the IANA

• Internet assigned numbers authority (IANA) : A non-profit organization that helps manage
things like IP address allocation.
• Autonomous system number (ASN) : Numbers assigned to individual autonomous systems.

Non-Routable address space

• Non-routable address space : They are ranges of IPs set aside for use by anyone that cannot
be routed to.

Module 2 Glossary

Address class system: A system which defines how the global IP address space is
split up
Address Resolution Protocol (ARP): A protocol used to discover the hardware
address of a node with a certain IP address
ARP table: A list of IP addresses and the MAC addresses associated with them
ASN: Autonomous System Number is a number assigned to an individual autonomous
system
Demarcate: To set the boundaries of something
Demarcation point: Where one network or system ends and another one begins
Destination network: The column in a routing table that contains a row for each
network that the router knows about
DHCP: A technology that assigns an IP address automatically to a new device. It is an
application layer protocol that automates the configuration process of hosts on a
network
Dotted decimal notation: A format of using dots to separate numbers in a string, such
as in an IP address
Dynamic IP address: An IP address assigned automatically to a new device through a
technology known as Dynamic Host Configuration Protocol

Course 2 Page 3
technology known as Dynamic Host Configuration Protocol
Exterior gateway: Protocols that are used for the exchange of information between
independent autonomous systems
Flag field: It is used to indicate if a datagram is allowed to be fragmented, or to
indicate that the datagram has already been fragmented
Fragmentation: The process of taking a single IP datagram and splitting it up into
several smaller datagrams
Fragmentation offset field: It contains values used by the receiving end to take all the
parts of a fragmented packet and put them back together in the correct order
Header checksum field: A checksum of the contents of the entire IP datagram header
Header length field: A four bit field that declares how long the entire header is. It is
almost always 20 bytes in length when dealing with IPv4
IANA: The Internet Assigned Numbers Authority, is a non-profit organization that helps
manage things like IP address allocation
Identification field: It is a 16-bit number that's used to group messages together
Interface: For a router, the port where a router connects to a network. A router gives
and receives data through its interfaces. These are also used as part of the routing
table
Interior gateway: Interior gateway protocols are used by routers to share information
within a single autonomous system
IP datagram: A highly structured series of fields that are strictly defined
IP options field: An optional field and is used to set special characteristics for
datagrams primarily used for testing purposes
Network Address Translation (NAT): A mitigation tool that lets organizations use one
public IP address and many private IP addresses within the network
Next hop: The IP address of the next router that should receive data intended for the
destination networking question or this could just state the network is directly
connected and that there aren't any additional hops needed. Defined as part of the
routing table
Non-routable address space: They are ranges of IPs set aside for use by anyone
that cannot be routed to
Padding field: A series of zeros used to ensure the header is the correct total size
Protocol field: A protocol field is an 8-bit field that contains data about what transport
layer protocol is being used
Routing protocols: Special protocols the routers use to speak to each other in order
to share what information they might have
Service type field: A eight bit field that can be used to specify details about quality of
service or QoS technologies
Static IP address: An IP address that must be manually configured on a node
Subnet mask: 32-bit numbers that are normally written as four octets of decimal
numbers
Subnetting: The process of taking a large network and splitting it up into many
individual smaller sub networks or subnets
Time-To-Live field (TTL): An 8-bit field that indicates how many router hops a
datagram can traverse before it's thrown away
Total hops: The total number of devices data passes through to get from its source to
its destination. Routers try to choose the shortest path, so fewest hops possible. The
routing table is used to keep track of this
Total length field: A 16-bit field that indicates the total length of the IP datagram it's
attached to

Terms and their definitions from previous modules

B
Bit: The smallest representation of data that a computer can understand
Border Gateway Protocol (BGP): A protocol by which routers share data with each
other
Broadcast: A type of Ethernet transmission, sent to every single device on a LAN
Broadcast address: A special destination used by an Ethernet broadcast composed
by all Fs
C
Cable categories: Groups of cables that are made with the same material. Most
network cables used today can be split into two categories, copper and fiber
Cables: Insulated wires that connect different devices to each other allowing data to

Course 2 Page 4
Cables: Insulated wires that connect different devices to each other allowing data to
be transmitted over them
Carrier-Sense Multiple Access with Collision Detection (CSMA/CD): CSMA/CD is
used to determine when the communications channels are clear and when the device
is free to transmit data
Client: A device that receives data from a server
Collision domain: A network segment where only one device can communicate at a
time
Computer networking: The full scope of how computers communicate with each
other
Copper cable categories : These categories have different physical characteristics
like the number of twists in the pair of copper wires. These are defined as names like
category (or cat) 5, 5e, or 6, and how quickly data can be sent across them and how
resistant they are to outside interference are all related to the way the twisted pairs
inside are arranged
Crosstalk: Crosstalk is when an electrical pulse on one wire is accidentally detected
on another wire
Cyclical Redundancy Check (CRC): A mathematical transformation that uses
polynomial division to create a number that represents a larger set of data. It is an
important concept for data integrity and is used all over computing, not just network
transmissions
D
Data packet: An all-encompassing term that represents any single set of binary data
being sent across a network link
Datalink layer: The layer in which the first protocols are introduced. This layer is
responsible for defining a common way of interpreting signals, so network devices can
communicate
Destination MAC address: The hardware address of the intended recipient that
immediately follows the start frame delimiter
Duplex communication: A form of communication where information can flow in both
directions across a cable
E
Ethernet: The protocol most widely used to send data across individual links
Ethernet frame: A highly structured collection of information presented in a specific
order
EtherType field: It follows the Source MAC Address in a dataframe. It's 16 bits long
and used to describe the protocol of the contents of the frame
F
Fiber cable: Fiber optic cables contain individual optical fibers which are tiny tubes
made of glass about the width of a human hair. Unlike copper, which uses electrical
voltages, fiber cables use pulses of light to represent the ones and zeros of the
underlying data
Five layer model: A model used to explain how network devices communicate. This
model has five layers that stack on top of each other: Physical, Data Link, Network,
Transport, and Application
Frame check sequence: It is a 4-byte or 32-bit number that represents a checksum
value for the entire frame
Full duplex: The capacity of devices on either side of a networking link to
communicate with each other at the exact same time
H
Half-duplex: It means that, while communication is possible in each direction, only one
device can be communicating at a time
Hexadecimal: A way to represent numbers using a numerical base of 16
Hub: It is a physical layer device that broadcasts data to everything computer
connected to it
I
Internet Protocol (IP): The most common protocol used in the network layer
Internet Service Provider (ISP): A company that provides a consumer an internet
connection
Internetwork: A collection of networks connected together through routers - the most
famous of these being the Internet
L
Line coding: Modulation used for computer networks

Course 2 Page 5
Line coding: Modulation used for computer networks
Local Area Network (LAN): A single network in which multiple devices are connected
M
MAC(Media Access Control) address: A globally unique identifier attached to an
individual network interface. It's a 48-bit number normally represented by six groupings
of two hexadecimal numbers
Modulation: A way of varying the voltage of a constant electrical charge moving
across a standard copper network cable
Multicast frame: If the least significant bit in the first octet of a destination address is
set to one, it means you're dealing with a multicast frame. A multicast frame is similarly
set to all devices on the local network signal, and it will be accepted or discarded by
each device depending on criteria aside from their own hardware MAC address
N
Network layer: It's the layer that allows different networks to communicate with each
other through devices known as routers. It is responsible for getting data delivered
across a collection of networks
Network port: The physical connector to be able to connect a device to the network.
This may be attached directly to a device on a computer network, or could also be
located on a wall or on a patch panel
Network switch: It is a level 2 or data link device that can connect to many devices so
they can communicate. It can inspect the contents of the Ethernet protocol data being
sent around the network, determine which system the data is intended for and then
only send that data to that one system
Node: Any device connected to a network. On most networks, each node will typically
act as a server or a client
O
Octet: Any number that can be represented by 8 bits
Organizationally Unique Identifier (OUI): The first three octets of a MAC address
OSI model: A model used to define how network devices communicate. This model
has seven layers that stack on top of each other: Physical, Data Link, Network,
Transport, Session, Presentation, and Application
P
Patch panel: A device containing many physical network ports
Payload: The actual data being transported, which is everything that isn't a header
Physical layer: It represents the physical devices that interconnect computers
Preamble: The first part of an Ethernet frame, it is 8 bytes or 64 bits long and can itself
be split into two sections
Protocol: A defined set of standards that computers must follow in order to
communicate properly is called a protocol
R
Router: A device that knows how to forward data between independent networks
S
Server: A device that provides data to another device that is requesting that data, also
known as a client
Simplex communication: A form of data communication that only goes in one
direction across a cable
Source MAC address: The hardware address of the device that sent the ethernet
frame or data packet. In the data packet it follows the destination MAC address
Start Frame Delimiter (SFD): The last byte in the preamble, that signals to a receiving
device that the preamble is over and that the actual frame contents will now follow
T
Transmission Control Protocol (TCP): The data transfer protocol most commonly
used in the fourth layer. This protocol requires an established connection between the
client and server
Transport layer: The network layer that sorts out which client and server programs
are supposed to get the data
Twisted pair cable: The most common type of cabling used for connecting computing
devices. It features pairs of copper wires that are twisted together
U
Unicast transmission: A unicast transmission is always meant for just one receiving
address
User Datagram Protocol (UDP): A transfer protocol that does not rely on connections.
This protocol does not support the concept of an acknowledgement. With UDP, you

Course 2 Page 6
This protocol does not support the concept of an acknowledgement. With UDP, you
just set a destination port and send the data packet
V
Virtual LAN (VLAN): It is a technique that lets you have multiple logical LANs
operating on the same physical equipment
VLAN header: A piece of data that indicates what the frame itself is. In a data packet it
is followed by the EtherType

Course 2 Page 7
Module 3
Sunday, 15 September 2024 20:51

Introduction to the transport and application layers

• Transport layer : Allows traffic to be directed to specific network applications.
• Application layer : Allows these applications to communicate in a way they understand.

The transport layer

• Port : A 16-bit number that's used to direct traffic to specific services running on a networked
computer.

TCP socket states

• Socket : The instantiation of an end-point in a potential TCP connection.
• Instantiation : The actual implementation of something defined elsewhere.
• LISTEN : A TCP socket is ready and listening for incoming connections.
• SYN_SENT : A synchronization request has been sent, but the connection hasn't been
established yet. (on the client side only)
• SYN-RECEIVED : A socket previously in a LISTEN state has received a synchronization request
and sent a SYN/ACK back.
• ESTABLISHED : The TCP connection is in working order and both sides are free to send each
other data.
• FIN_WAIT : A FIN has sent, but the corresponding ACK from the other end hasn't been
received yet.
• CLOSE_WAIT : The connection has been closed at the TCP layer, but that the application that
opened the socket hasn't released its hold on the socket yet.
• CLOSED : The connection has been fully terminated and that no further communication is
possible.

Connection-oriented and Connectionless protocols

• Connection-orientated protocol : Establishes a connection, and uses this to ensure that all data
has been properly transmitted.

Supplemental reading for system ports versus ephemeral ports

Firewalls
• Firewall : A device that blocks traffic that meets certain criteria.

The application layer

• K

The application layer and the OSI model

• Session layer : Responsible for facilitating the communication between actual applications and
the transport layer. Takes application layer data and hands it off to the presentation layer.
• Presentation layer : Responsible for making sure that the unencapsulated application layer
data is able to be understood by the application in question.

Course 2 Page 8
All layers working in unison

• Pre example.

Course 2 Page 9
Module 4
Sunday, 15 September 2024 20:51

Course 2 Page 10
Module 5
Sunday, 15 September 2024 20:51

Course 2 Page 11