Network Layer

Network layer is responsible for the source to desitnation delivery of a packet across multiple networks.

Functions of Network Layer

Internetworking : It provides logical connection between deifferent networks.
Logical Addressing : In order to identify each device uniquely and universally, network layer defines an addressing scheme.
Routing : The network layer protocols determine which route or path is best from source to destination.
Routing is process/method to design a routing table. Switching is a method to send the data to the destination/next router.
Packetizing : the process in which network layer creates its own packets by encapsulating the data from the upper layer.
Fragmentation : Framgmentation means dividing the larger packets into small fragments to make it transportable for the physical medium.

Design Issues in Network Layer

Addressing: Assigning unique addresses to devices in a network to enable proper routing and communication.
Routing: Determining the optimal path for data packets to reach their destination.
Forwarding: Transferring data packets from an incoming interface to the appropriate outgoing interface based on the routing table.
Fragmentation and Reassembly: Handling data packets that are larger than the maximum transmission unit (MTU) of the underlying network.
Quality of Service (QoS): Considering specific performance requirements for applications in the network layer design.
Security: Addressing security concerns, such as preventing unauthorized access and protecting against network attacks.
Scalability: Designing the network layer to accommodate a growing number of devices and increasing network traffic.
Interoperability: Ensuring that network layer protocols and designs are interoperable with other networking technologies and standards.
Error Handling and Recovery: Including mechanisms for error detection, error handling, and recovery in the network layer design.
Network Management: Considering network management aspects, such as monitoring network performance and troubleshooting network issues.

IPv4 Addressing

Each host and router on the Internet is assigned a unique 32-bit logical address known as IP address.

VER : It stores the version number in bits (4 or 6).
HLEN : It stores the length of the header upto to 15 bytes. To get the actual header length, we need to multiply the hlen by 4.
Service :
- Precedence : It is used to prioritize the packets.
- Delay : It is used to minimize the delay.
- Throughput : It is used to maximize the throughput.
- Reliability : It is used to maximize the reliability.
- Cost : It is used to minimize the cost.
Total Length : It stores the total length of the packet.
Identification : It is used to identify the packet and to detect the duplication of the packet.
Flags :
- Reserved : It is used to store the flags.
- Don't Fragment : It is used to indicate that the packet can't be fragmented.
- More Fragments : It is used to indicate that the packet has more fragments.
Fragment Offset : It is used to indicate the offset of the fragment.
Time to Live : It is used to indicate the number of routers that the packet can traverse.
Protocol : It is used to identify the protocol used in the packet.
Header Checksum : It is used to verify the integrity of the header.
Source Address : It is used to store the source IP address.
Destination Address : It is used to store the destination IP address.
Options or padding : It is used to store the options or to manage the length in the form of 2^p. It can be used for end of option, record route, timestamp, etc.

IPv4 addresses are fundamental for identifying devices in a network. Key aspects include:

Address Format : IPv4 addresses are 32-bit numerical labels divided into four octets, typically represented in dotted-decimal format.
Classful and Classless Addressing : IPv4 addressing can follow classful or classless schemes, impacting address assignment strategies.
Subnetting : Subnetting involves dividing an IP network into sub-networks for better resource management and security.
Subnet Mask : A subnet mask is used in conjunction with an IP address to define the network and host portions.

Classful addressing

IP addressing supports five different address classes : A, B, C, D and E. Only classes A, B and C are available for commercial use.

Subnetting

Subnetting is a process of dividing an IP network into smaller networks. Each of these subnets has its own specific address.

Subnetting works by dividing an IP address into two parts: the network address and the host address. The network address identifies the network itself, while the host address identifies a specific device (or “host”) within that network.

Subnetting further divides the host portion of the IP address into smaller units, which can then be assigned to various devices within the network. This is done using a technique called the subnet mask.

The subnet mask is a 32-bit number that separates the network address from the host address. In the subnet mask, bits that correspond to the network address are set to 1, and bits that correspond to the host address are set to 0.

A subnet adderss is created by borrowing bits from the host field and designating them as subnet field.

Advantages : It improves the security and the maintenance and administration is easy.

Limitations : Identification of station is difficult and not possible to directed broadcast from outside network.

Subnet Mask

Subnet masking is the process of using a subnet mask to divide a large network into smaller networks, called subnets. The subnet mask is a 32-bit number that is used to identify the network and host portions of an IP address.

The subnet mask is a bitmask that is used to extract the network and host portions of an IP address. The first n bits of the subnet mask are set to 1, where n is the number of bits used for the network portion of the address. The remaining bits are set to 0.

For example, a subnet mask of 255.255.255.0 has 24 bits set to 1, which means that the first 24 bits of the IP address are used for the network portion and the last 8 bits are used for the host portion.

The subnet mask is used by routers to determine which network a packet belongs to. When a router receives a packet, it compares the destination IP address of the packet to the subnet masks of all of the networks that it is connected to. If the destination IP address matches the subnet mask of one of the networks, the router forwards the packet to that network. If the destination IP address does not match any of the subnet masks, the router drops the packet.

Subnet masking is a fundamental concept in IP networking. It is used to improve the efficiency of IP addressing, to improve network security, and to make it easier to manage networks.

Limitations of IPv4

Getting scarce
Security related issues
There is a need for simpler configuration
Quality of Service
Flat routing infrastructure
Prioritized delivery
Mobility

Classless Addressing

To overcome the problem of address depletion and give more organization acccess to internet, classless addressing was designed and implemented.

When an entity, small or large, needs to be connevted to Internet, it is granted a block or range of addresses. The size of the block (the number of addresses) varies based on the nature and size of the entity. For e.g. a household may be given only 2 addresses, a large organization may be given thousands of addresses.

To simplify the handling of addresses, the Internet authorities impose three restrictions on classless address block :

The addresses in a block must be contiguous, one after the other.
The number of addresses in a block must be a power of 2.
The first address mst be evenly divisible by the number of address.

IPv6 Addressing

IPv6 addresses aim to overcome the limitations of IPv4.

IPV6 is also known as IPng (Internetworking Protocol, next generation).

Key features include :

128-bit Address : IPv6 employs a 128-bit address format, vastly expanding the available address space.
Hexadecimal Representation : IPv6 addresses are often represented in hexadecimal format for conciseness.
Packet Format : IPv6 uses a 128-bit header format, which is similar to IPv4's 32-bit header format.

Routing Algorithms

Routing algorithms are essential for determining the most efficient paths for data transmission.

A routing alogrithm should possess some desirable properties like correctness, simplicity, robustness, stability, fairness and optimality.

Types of Routing Algorithm

On the basis of working

Non-Adaptive/Static Routing Algorithms : The route from source to destination is calculated in advance and is downloaded to the routers, when the network is initialized.
Adaptive/Dynamic Routing Algorithms : The adaptive algorithms continuously update their information about the network and base their routing decisions on the current state of the network.

On the basis of transmission technique

Unicast Routing Algorithms : The packets are routed to a single destination which means the communication is one to one.
Multicast Routing Algorithms : The packets are routed to multiple destinations which means the communication is one to many.

Optimality Principle

Static Routing

In static routing, predetermined paths are configured manually. While simple, it lacks adaptability to dynamic network changes.

Shortest Path Routing : The shortest path routing algorithm is the most simple and widely used routing algorithm. It is based on the idea that the shortest path between two nodes is the fastest path.
Flooding : Flooding is a routing technique where a router sends a copy of a received packet to all of its neighbors except the source.
Flow-Based Routing : This routing approach considers the characteristics of data flows, allowing for more intelligent routing decisions.

Dynamic Routing

Dynamic routing employs algorithms that adjust to changing network conditions, optimizing data flow dynamically.

Distance Vector : This algorithm calculates the distance or cost to reach each destination and makes routing decisions accordingly. In this method, routers tells the their neighbours what they know about the internet means they share their information about internet to their neighbours periodically or on triggering. RIP is the exact implementation of this method.
Split Horizon : In this strategy, instead of flooding the table through each interface, each node sends only part of its table through each interface. It corrects the Tow node loop instability problem in distance vector.
Link State : Link-state routing algorithms build a comprehensive map of the network and use this information to determine optimal routes. In this method, routers share information about their neighbours to all the routers by broadcasting the message. OSPF is the exact implementation of this method.

Criteria	Distance Vector Routing	Link State Routing
Information Exchange	Periodic sharing of routing tables with neighbors.	Sharing information about neighbors with all routers by broadcasting.
Routing Decision	Based on the accumulated distance or cost to reach each destination.	Builds a comprehensive map of the network and determines optimal routes based on this information.
Message Overhead	Higher due to periodic updates and sharing with neighbors.	Lower due to broadcasting messages only when there are changes in the network.
Network Map	Routers have a limited view of the network.	Each router has a complete map of the network.

IGMP

IGMP is a group management protocol that mainly manages the group membership in a multicast network.

The multicast routers which are used to route packets to all the members of a particular group use the information from IFMP to determine which hosts are having membership of which group.

A multicast router generally receives thousands of multicast packets that have to be transimitted to various groups. If a router has no knowledge about the group membership, it will broadcast packet and this will increase the load on the network.

In order to save the network from such a problem, a list of groups is maintained when members of the group are present in netwrok. Thus, IGMP helps the multicast router to create and update this list.

This protocol uses three different messages : query message, membership report and leave report.

RPF

RPF is a process for Distance Vector Multicast Routing Protocol (DVMRP) algorithms.

In this strategy, the router only forwards those packets that have traveled the shortest path from source to destination. To achieve this, the router pretends that it has a packet to send to the source. In this way, the shortest path to the sender is computed. If the same router is followed by the received packet then it will be forwarded to the next router, otherwise it will be discarded.

RPB

RPB is a process for Link State Multicast Routing Protocol (LSMRP) algorithms.

RPF guarantees that each network receives a copy of the multicast packet without the formation of loops. However, RPF does not guarantee that each network receives only one copy , a network may receive two or more copies. The reason is that RPF is not based on the destination address (a group address) , and forwarding is based on the source address.

To solve this problem, RPB is used in which one parent router is defined for each network. The network could accept the mulitcast packets from this parent router only. This router sends packets to those ports for which it is designated as parent. RPB further guarantees that the packet reaches every network and that every network receives only one copy.

The designated parent router can be a router with the shortest path to the source. Because routers periodically send updating packets to each other (in RIP), they can easily determine which router in the neighborhood has the shortest path to the source (when interpreting the source as the destination). If more than one router qualifies, then the router with the smallest IP address is selected.

RPM

RPM is a process for RIP algorithms.

RPB does not multicast the packet, it broadcasts it. This is not efficient.

To increase the efficiency, the multicast packet must reach only those networks that have active members for that particular group. This is called reverse path multicasting (RPM). To convert the broadcasting to multicasting , the protocol uses two procedures, pruning and grafting. This is a type of multicasting technique

Pruning : A router can send a prune message to its upstream router whenever it finds that its network is not interested in a multicast packet. In this way a router prunes (cuts) its network from multicasting.
If a router receives prune message from all the downstram routers, it in turn, sends a prune message to its upstream router.
Grafting : A router can also send a graft message to its upstream router if it finds that its network is again interested in receiving the multicast packet.

Broadcasting and Types

Broadcasting plays a vital role in network communication. Different types of broadcasting include:

Unicast : Communication from one source to one destination.
Broadcast : Communication from one source to all destinations in the network.
- Limited Broadcast : Transmitting data from one source host to all other hosts residing in the same network is called as limited broadcast. Limited Broadcast Address for any network is All 32 bits set to 1.
- Direct Broadcast : Transmitting data from one source host to all other hosts residing in some other network is called as direct broadcast.Direct Broadcast Address for any network is the IP Address where, Network ID is the IP Address of the network where all the destination hosts are present and Host ID bits are all set to 1.
Multicast : Communication from one source to multiple specific destinations.

Congestion

Congestion is a situation in which the performance of network is degraded due to the presence of too many packates in the subnet or when the load on the network is greater than the capacity of the network.

Congestion Control

Congestion control mechanisms are divided into two categories:

Open Loop Congestion Control

In this method, policies are used to prevent the congestion before it happens.

Various methods are :

Retransmission Policy : Retransmitting packets when they fail to reach their intended recipient(s).
Window Policy : Adjusting the size of the window based on the number of packets that can be sent in a given time.
Acknowledgment Policy : It may slow down the sender if every packet is not acknowledge.
Discarding Policy : Discarding packets that are not required/less sensitive.
Admission Policy : It may slow down the sender if the network is overloaded.

Closed Loop Congestion Control

Closed loop congestion control mechanisms try to remove the congestion after it happens.

Various methods are :

Backpressure Policy : It is a node-to-node congestion control that starts with a node and propagates, in the opposite direction of data flow. This technique can be applied only to virtual circuit networks.
Choke Packet Policy : In this method of congestion control congested router or node sends a special type of packet called Choke packet to the source to inform it about the congestion.
Implicit signaling : There is no communication between the congested node or nodes and the source.
Explicit signaling : The congested node explicitly sneds a signal to the source or destination to inform about the congestion.

Congestion Control Algorithms

Leaky Bucket Algorithm

The leaky bucket algorithm is a congestion control algorithm used in computer networks. It is designed to control the rate at which data is transmitted from a source to a destination. The algorithm works by imagining a leaky bucket that can hold a certain amount of data. As data is added to the bucket, it leaks out at a constant rate. If the bucket overflows, the excess data is discarded. This helps regulate the flow of data and prevent congestion in the network.

Implementation : Each host is connected to the netwrok by an interface containing a leaky bucket which is implemented by using a queue that holds the packet. If the queue is full and a new packet arrives, it is discarded. The algorithm uses a clock tick to remove packets from the queue. If the traffic consists of fixed-size packets, a fixed number of packets are removed at each tick. If the packet sizes vary, a fixed number of bytes are removed at each tick. This helps regulate the flow of data and prevent network congestion.

Token Bucket Algorithm

The token bucket algorithm is another congestion control algorithm used in computer networks. It is designed to control the rate at which data is transmitted by using tokens. The algorithm works by imagining a bucket that holds tokens. Each token represents a fixed amount of data. As data is transmitted, tokens are consumed from the bucket. If the bucket is empty, no more data can be transmitted until new tokens are added. This helps regulate the flow of data and prevent congestion in the network.

Implementation : The token bucket is implemented by using a counter that keeps track of the available tokens. When data needs to be transmitted, the algorithm checks if there are enough tokens in the bucket. If there are, the tokens are consumed and the data is transmitted. If there are not enough tokens, the data transmission is delayed until new tokens are added to the bucket. This helps regulate the data transmission rate and prevent network congestion.

Connecting Devices

Various connecting devices play distinct roles in network architecture:

Passive Hub : A device that connects multiple devices but does not amplify or regenerate signals.
Repeater : Amplifies and retransmits signals, extending the network's reach.
Bridge : Connects two network segments and operates at the data link layer.
Router : Facilitates communication between different networks by forwarding data packets.
Gateways : Act as interfaces between different networks, translating protocols if needed.

Firewalls

To prevent confidential information from leaking out and to prevent the entry of virus and other pests, firewalls are used. Firewalls are designed to filter teh packets before passing the traffic outside and all incoming packets destined for a specific host or a server.

It consists two components : Two routers (packet filters) and application gateway.

Types of Firewalls

Packet-filter Firewall

A packet-filter firewall is a firewall that filters packets based on the destination IP address. It is used to forward or block packets on the basis of nmber of factors such as source and destination IP address, port number, type of protocol.

It maintainsa filtering table that decides which packets are to be forwared or discarded. It filters at network or transport layer.

Proxy Firewall

Proxy firewall operates at application layer. It is used when we want to filter a message on the basis of information contained in message itself.