Traceroute

Khi nim Traceroute l mt cng c chn on mng. N c s dng khm ph nhng bc nhy tip theo cng con ng t c im n. Traceroute hot ng nh th no? Trc ht, bn cn bit v ICMP, TTL ,UDP v cch lm vic ca cc routers(b nh tuyn)! Nhng kin thc c bn ICMP - Internet Control Message Protocol. ICMP c dng thng bo cc li xy ra trong qu trnh truyn i ca cc gi d liu trn mng. ICMP thuc tng vn huyn - Transpoort Layer! DNS SNMP RIP RADIUS Archie Traceroute tftp ICM P Ping

HTTP FTP Telnet Finger Tng ng dng SSH DNS POP3/IMAP SMTP Gopher BGP Time/NTP Whois TACACS+ SSL Tng vn chuyn TCP

UDP

OSPF

Tng Internet

IP Ethernet/802.3 Token Ring (802.5) SNAP/802.2 X.25 FDDI ISDN Frame Relay SMDS ATM Wireless (WAP, CDPD, 802.11) Fibre Channel DDS/DS0/T-carrier/Ecarrier SONET/SDH DWDM PPP HDLC SLIP/CSLIP xDSL Cable Modem (DOCSIS)

AR P

Tng vt l

Tt c cc ICMP messages u c chuyn i cng vi cc IP datagrams. Mi ICMP message c gi trong IP datagram s c dng nh sau: +---------------------+-------------------------+ | IP Header(20 bytes) | ICMP message (32 bytes) | +---------------------+-------------------------+ Sau y l cu trc ca mt IMCP message: ( 0 78 15 16 31

+-----------------+-----------------+-----------------+ | Type (0 or 8) | | | |

Code (0) | 16-bit Checksum | | sequence number | | |

+-----------------+-----------------+-----------------+ Indentifier +-----------------+-----------------+-----------------+ | Optional Data (ni dung ty thuc vo Type v Code) | +-----------------------------------------------------+ trng type c 15 gi tr khc nhau, ty thuc vo tng loi ICMP error message c th. V d type=3 ch nh cho thng bo li "Khng n c ch" - "Destination unreachable" error message!

trng code = sub-error dng xc nh chnh xc li xy ra. V d, type=3 v code=0 ngha l "Network Unreachable"(khng n c mng); nu type=3, code=1 ngha l "Host Unreachable"(khng n c host)...

TTL - Time to Live. TTL l mt trng 8 bit trong IP header(bn hy xem li cu trc ca IP
header!). TTL l thi gian gi d liu tn ti trn mng trc khi n b b qua. Ngi gi d liu i s xc nh mt gi tr TTL trc, thng l t 32 -> 64. Gi tr ny s c gim i mt khi mt khi c chuyn qua mt b nh tuyn trn mng. Khi gi tr ny bng 0, datagram ny s b b qua v giao thc ICMP s bo li v cho ngi gi. iu ny s trnh cho datagram ny i vo mt vng lp v tn qua cc b nh tuyn.

Mi b nh tuyn khi nhn c IP datagram s gim gi tr TTL ca datagram ny i mt. Hu ht cc b nh tuyn u khng gi li datagram ny trong thi gian qu 1 giy trc khi chuyn datagram ny i. Nn gi tr TTL c th coi bng hop (counter) = s b nh tuyn m datagram ny va vt qua. Khi b nh tuyn nhn c mt datagram c trng TTL bng 0 hoc 1, n s khng chuyn datagram ny i tip. Thay vo , n s b qua datagram ny v gi mt ICMP message "Time Exceeded"(qu thi gian) tr li cho ngi gi datagram ny! V ICMP message m b nh tuyn gi tr li cho ngi gi c a ch ngun - source address l a ch ip ca b nh tuyn ny nn ngi gi c th bit c a ch ip ca router ny!

UDP (User Datagram Protocol)

l mt trong nhng giao thc ct li ca giao thc TCP/IP. Dng UDP, chng trnh trn mng my tnh c th gi nhng d liu ngn c gi l datagram ti my khc. UDP khng cung cp s tin cy v th t truyn nhn m TCP lm; cc gi d liu c th n khng ng th t hoc b mt m khng c thng bo. Tuy nhin UDP nhanh v hiu qu hn i vi cc mc tiu nh kch thc nh v yu cu kht khe v thi gian. Do bn cht khng trng thi ca n nn n hu dng i vi vic tr li cc truy vn nh vi s lng ln ngi yu cu. Hot ng ca giao thc UDP Khi mt ng dng da trn giao thc UDP gi d liu ti mt host khc trn mng, UDPthm vo mt header c di 8 byte cha cc s hiu cng ngun v ch, cng vi tng chiu di d liu v thng tin checksum. IP thm vo header ca ring n vo u midatagram UDP to ln mt datagram IP

Cch lm vic ca traceroute!

Traceroute gi mt IP datagram c TTL =1 n h thng ch. Router u tin nhn c datagram ny s gim gi tr TTL i mt -> TTL =0 v router ny s b qua datagram ny (khng gi n i tip!) v gi mt ICMP error message vi a ch ip ngun l a ch ca n n my bn. Nh vy router c th xc nh a ch ip ca router th nht! (192.168.1.1) Sau , traceroute s gi mt datagram mi i vi gi tr TTL =2 (1+1=2) n h thng ch. Router u tin s gim gi tr ca TTL i mt -> TTL =1(2-1=1) v chuyn datagram ny sang router th 2. Router th 2 nhn c datagram c TTL =1 s gim TTL = 0. Rounter 2 nhn thy TTL=0 nn n s khng chuyn datagram ny i tip. Router 2 s gi tr li my bn mt ICMP error message vi a ch ip ngun l a ch ip ca n(router 2). Nh vy trnh traceroute trn my bn s bit c router th 2 m datagram i qua (118.70.0.245 ). Traceroute s tip tc gi mt datagram khc c TTL =3 (2+1=3) i v lp li qu trnh trn cho n khi datagram n c h thng ch google.com (74.125.71.94)! Nu by gi IP datagram n c ch, TTL =1. Host ch s b qua datagram ny v n cng s khng gi "Time Exceeded" ICMP error message. Nh vy th bn s khng th no bit c l mnh n ch cha?! Traceroute dng mt c ch khc nh sau: Traceroute gi UDP datagrams n host ch trn cc cng UDP c s hiu ln( >30000). S d n chn cc cng c gi tr ln v thng khng c ng dng no ang lng nghe cc cng ny. Khi host ch nhn c UDP datagram ny, n s gi tr li mt ICMP error message "Port Unreachable"(khng n c cng) cho traceroute. By gi th traceroute c th phn bit c s khc nhau gia ICMP error message "Time Exceeded" vi "Port Unreachable" bit c n c ch hay cha?!.

Trarceroute c th xc nh c thi gian m gi tin s i qua host2 # traceroute xyz.com traceroute to xyz.com (202.xx.12.34), 30 hops max, 40 byte packets 1 isp.net (202.xy.34.12) 20ms 10ms 10ms 2 xyz.com (202.xx.12.34) 130ms 130ms 130ms Xc nh c TTL < 30 ,vi kch thc datagram 40 bytes trong c (20-bytes IP Header + 8bytes UDP Header + 12-bytes user data). Trong trng hp router khng tr li sau 5 giy, traceroute s in ra mt du sao "*"(khng bit) v tip tc gi datagram khc n host ch!

Lm th no xc nh thnh cng Traceroute / tht bi?

Khi nhn c phn hi ICMP Time Exceeded hoc vi Unreachable Port, Traceroute l thnh cng v in a ch IP ca thit b p ng. Traceroute khng thnh cng nu n khng nhn c phn ng (***)