Networking

Chapter 4
Network Layer: Data Plane
Chapter 4
Network Layer:
Data Plane

Computer Networking: A
Top-Down Approach
8th edition
Jim Kurose, Keith Ross
Pearson, 2020
 Network layer: our goals
▪understand principles ▪ instantiation, implementation
behind network layer in the Internet
services, focusing on data • IP protocol
plane: • NAT, middleboxes
• network layer service models
• forwarding versus routing
• how a router works
• addressing
• generalized forwarding
• Internet architecture
Network Layer: 4-3
 Network layer: “data plane” roadmap
▪ Network layer: overview
• data plane
• control plane
▪ What’s inside a router
• input ports, switching, output ports
• buffer management, scheduling
▪ IP: the Internet Protocol ▪ Generalized Forwarding, SDN
• datagram format
• Match+action
• addressing
• OpenFlow: match+action in action
• network address translation
• IPv6 ▪ Middleboxes
Network Layer: 4-4
 Network-layer services and protocols
▪ transport segment from sending mobile network

to receiving host national or global ISP

• sender: encapsulates segments into

datagrams, passes to link layer application

• receiver: delivers segments to transport

network

transport layer protocol link

physical
network

▪ network layer protocols in every

network
link link
physical physical

Internet device: hosts, routers

network

▪ routers: link network

physical link
physical network
datacenter
• examines header fields in all IP
link
physical network

datagrams passing through it

application
• moves datagrams from input ports to transport
network
enterprise
output ports to transfer datagrams network
link
physical

along end-end path

Network Layer: 4-5
 Two key network-layer functions
network-layer functions:
▪ forwarding: move packets from
a router’s input link to
appropriate router output link
▪ routing: determine route taken
by packets from source to
destination
• routing algorithms
analogy: taking a trip
▪ forwarding: process of getting
through single interchange
▪ routing: process of planning trip
from source to destination
forwarding
routing
Network Layer: 4-6
 Network layer: data plane,
control plane
Data plane: Control plane
▪ local, per-router function ▪ network-wide logic
▪ determines how datagram ▪ determines how datagram is
arriving on router input port routed among routers along end-
is forwarded to router end path from source host to
output port destination host
values in arriving ▪ two control-plane approaches:
packet header
• traditional routing algorithms:
0111 1 implemented in routers
• software-defined networking (SDN):
2
3

implemented in (remote) servers

Network Layer: 4-7

 Per-router control plane
Individual routing algorithm components in each and every
router interact in the control plane

Routing
Algorithm
control
plane

data
plane

values in arriving
packet header
0111 1
2
3

Network Layer: 4-8

 Software-Defined Networking (SDN)
control plane
Remote controller computes, installs forwarding tables in routers

Remote Controller

control
plane

data
plane

CA
CA CA CA CA
values in arriving
packet header

0111 1
2
3

Network Layer: 4-9

 Network service model
Q: What service model for “channel” transporting datagrams
from sender to receiver?
example services for example services for a flow of
individual datagrams: datagrams:
▪ guaranteed delivery ▪ in-order datagram delivery
▪ guaranteed delivery with ▪ guaranteed minimum bandwidth
less than 40 msec delay to flow
▪ restrictions on changes in inter-
packet spacing

Network Layer: 4-10

 Network-layer service model
Quality of Service (QoS) Guarantees ?
Network Service
Architecture Model Bandwidth Loss Order Timing

Internet best effort none no no no

ATM Constant Bit Rate Constant rate yes yes yes

Internet “best effort” service model
ATM
NoAvailable
guarantees Bit Rate
on: Guaranteed min no yes no

Internet i. successful
Intserv Guaranteeddatagram
yes delivery to
yesdestination
yes yes
ii. 1633
(RFC )
timing or order of delivery
Internet Diffserv (RFC 2475) available
iii. bandwidth to end-end
possible flow possibly
possibly no

Network Layer: 4-11

 Network-layer service model
Quality of Service (QoS) Guarantees ?
Network Service
Architecture Model Bandwidth Loss Order Timing

Internet best effort none no no no

ATM Constant Bit Rate Constant rate yes yes yes

ATM Available Bit Rate Guaranteed min no yes no

Internet Intserv Guaranteed yes yes yes yes

(RFC 1633)

Internet Diffserv (RFC 2475) possible possibly possibly no

Network Layer: 4-12

 Reflections on best-effort service:
▪ simplicity of mechanism has allowed Internet to be widely deployed
adopted
▪ sufficient provisioning of bandwidth allows performance of real-time
applications (e.g., interactive voice, video) to be “good enough” for
“most of the time”
▪ replicated, application-layer distributed services (datacenters, content
distribution networks) connecting close to clients’ networks, allow
services to be provided from multiple locations
▪ congestion control of “elastic” services helps

It’s hard to argue with success of best-effort service model

Network Layer: 4-13
 Network layer: “data plane” roadmap
▪ Network layer: overview
• data plane
• control plane
▪ What’s inside a router
• input ports, switching, output ports
• buffer management, scheduling
▪ IP: the Internet Protocol
• datagram format ▪ Generalized Forwarding, SDN
• addressing • Match+action
• network address translation • OpenFlow: match+action in action
• IPv6 ▪ Middleboxes
Network Layer: 4-14
 Router architecture overview
high-level view of generic router architecture:
routing, management
routing control plane (software)
processor operates in millisecond
time frame
forwarding data plane
(hardware) operates
in nanosecond
timeframe
high-speed
switching
fabric

router input ports router output ports

Network Layer: 4-15

 Input port functions
lookup,
link
layer forwarding
line switch
termination protocol fabric
(receive)
queueing

physical layer:
bit-level reception
decentralized switching:
link layer:
e.g., Ethernet ▪ using header field values, lookup output port using
forwarding table in input port memory (“match plus action”)
(chapter 6)
▪ goal: complete input port processing at ‘line speed’
▪ input port queuing: if datagrams arrive faster than forwarding
rate into switch fabric
Network Layer: 4-16
 Input port functions
lookup,
link
layer forwarding
line switch
termination protocol fabric
(receive)
queueing

physical layer:
bit-level reception
decentralized switching:
link layer:
e.g., Ethernet ▪ using header field values, lookup output port using
forwarding table in input port memory (“match plus action”)
(chapter 6)
▪ destination-based forwarding: forward based only on
destination IP address (traditional)
▪ generalized forwarding: forward based on any set of header
field values Network Layer: 4-17
 Destination-based forwarding

Q: but what happens if ranges don’t divide up so nicely?

Network Layer: 4-18
 Longest prefix matching
longest prefix match
when looking for forwarding table entry for given
destination address, use longest address prefix that
matches destination address.

Destination Address Range Link interface

11001000 00010111 00010*** ******** 0

11001000 00010111 00011000 ******** 1

11001000 00010111 00011*** ******** 2

otherwise 3

11001000 00010111 00010110 10100001 which interface?

examples:
11001000 00010111 00011000 10101010 which interface?
Network Layer: 4-19
 Longest prefix matching
longest prefix match
when looking for forwarding table entry for given
destination address, use longest address prefix that
matches destination address.

Destination Address Range Link interface

11001000 00010111 00010*** ******** 0

11001000 00010111 00011000 ******** 1

11001000 match!
00010111 00011*** ******** 2

otherwise 3

11001000 00010111 00010110 10100001 which interface?

examples:
11001000 00010111 00011000 10101010 which interface?
Network Layer: 4-20
 Longest prefix matching
longest prefix match
when looking for forwarding table entry for given
destination address, use longest address prefix that
matches destination address.

Destination Address Range Link interface

11001000 00010111 00010*** ******** 0

11001000 00010111 00011000 ******** 1

11001000 00010111 00011*** ******** 2

otherwise 3
match!
11001000 00010111 00010110 10100001 which interface?
examples:
11001000 00010111 00011000 10101010 which interface?
Network Layer: 4-21
 Longest prefix matching
longest prefix match
when looking for forwarding table entry for given
destination address, use longest address prefix that
matches destination address.

Destination Address Range Link interface

11001000 00010111 00010*** ******** 0

11001000 00010111 00011000 ******** 1

11001000 00010111 00011*** ******** 2

otherwise 3
match!
11001000 00010111 00010110 10100001 which interface?
examples:
11001000 00010111 00011000 10101010 which interface?
Network Layer: 4-22
 Longest prefix matching
▪ we’ll see why longest prefix matching is used shortly, when
we study addressing
▪ longest prefix matching: often performed using ternary
content addressable memories (TCAMs)
• content addressable: present address to TCAM: retrieve address in
one clock cycle, regardless of table size
• Cisco Catalyst: ~1M routing table entries in TCAM

Network Layer: 4-23

 Switching fabrics
▪ transfer packet from input link to appropriate output link
▪ switching rate: rate at which packets can be transfer from
inputs to outputs
• often measured as multiple of input/output line rate
• N inputs: switching rate N times line rate desirable

R (rate: NR, R
ideally)

...
...

N input ports high-speed N output ports

switching
fabric

R R

Network Layer: 4-24

 Switching fabrics
▪ transfer packet from input link to appropriate output link
▪ switching rate: rate at which packets can be transfer from
inputs to outputs
• often measured as multiple of input/output line rate
• N inputs: switching rate N times line rate desirable
▪ three major types of switching fabrics:

memory

memory bus interconnection

network
Network Layer: 4-25
 Switching via memory
first generation routers:
▪ traditional computers with switching under direct control of CPU
▪ packet copied to system’s memory
▪ speed limited by memory bandwidth (2 bus crossings per datagram)

input output
port memory port
(e.g., (e.g.,
Ethernet) Ethernet)

system bus

Network Layer: 4-26

 Switching via a bus
▪datagram from input port memory to output port memory
via a shared bus
▪bus contention: switching speed limited by bus bandwidth
▪32 Gbps bus, Cisco 5600: sufficient speed for access routers

Network Layer: 4-27

 Switching via interconnection
network
▪ Crossbar, Clos networks, other
interconnection nets initially
developed to connect processors in
multiprocessor
▪ multistage switch: nxn switch from 3x3 crossbar
multiple stages of smaller switches
▪ exploiting parallelism:
• fragment datagram into fixed length cells on
entry
• switch cells through the fabric, reassemble
datagram at exit 8x8 multistage switch
built from smaller-sized switches
Network Layer: 4-28
 Switching via interconnection
network
▪ scaling, using multiple switching “planes” in parallel:
▪ speedup, scaleup via parallelism

▪ Cisco CRS router:

fabric plane 0
▪ basic unit: 8 fabric plane 1

. . .. . .
fabric plane 2

. . .. . .
switching planes fabric plane 3

. . .. . .
fabric plane 4

. . .. . .
▪ each plane: 3-stage fabric plane 5

. . .. . .
fabric plane 6

. . .. . .
interconnection fabric plane 7
network

. . .. . .
. . .. . .
▪ up to 100’s Tbps
switching capacity

Network Layer: 4-29

 Input port queuing
▪ If switch fabric slower than input ports combined -> queueing may
occur at input queues
• queueing delay and loss due to input buffer overflow!
▪ Head-of-the-Line (HOL) blocking: queued datagram at front of queue
prevents others in queue from moving forward

switch switch
fabric fabric

output port contention: only one red one packet time later: green
datagram can be transferred. lower red packet experiences HOL blocking
packet is blocked
Network Layer: 4-30
 Output port queuing
datagram This is a really important slide
switch buffer link
layer line
fabric termination
protocol
(rate: NR) queueing (send) R

▪ Buffering required when datagrams

arrive from fabric faster than link Datagrams can be lost
transmission rate. Drop policy: which due to congestion, lack of
datagrams to drop if no free buffers?
buffers
▪ Scheduling discipline chooses Priority scheduling – who
among queued datagrams for gets best performance,
transmission network neutrality
Network Layer: 4-31
 Output port queuing

switch
switch
fabric
fabric

at t, packets more one packet time later

from input to output

▪ buffering when arrival rate via switch exceeds output line speed
▪ queueing (delay) and loss due to output port buffer overflow!

Network Layer: 4-32

 How much buffering?
▪ RFC 3439 rule of thumb: average buffering equal to “typical” RTT
(say 250 msec) times link capacity C
• e.g., C = 10 Gbps link: 2.5 Gbit buffer
▪ more recent recommendation: with N flows, buffering equal to
RTT . C
N
▪ but too much buffering can increase delays (particularly in home
routers)
• long RTTs: poor performance for realtime apps, sluggish TCP response
• recall delay-based congestion control: “keep bottleneck link just full
enough (busy) but no fuller”
Network Layer: 4-33
 Buffer Management
buffer management:
switch
datagram
buffer link
▪ drop: which packet to add,
fabric layer line R drop when buffers are full
protocol termination
queueing (send) • tail drop: drop arriving
scheduling packet
• priority: drop/remove on
priority basis

Abstraction: queue ▪ marking: which packets to

mark to signal congestion
R packet
departures
(ECN, RED)
packet
arrivals queue link
(waiting area) (server)

Network Layer: 4-34

 Packet Scheduling: FCFS
packet scheduling: deciding FCFS: packets transmitted in
which packet to send next on order of arrival to output
link port
• first come, first served
• priority ▪ also known as: First-in-first-
• round robin out (FIFO)
• weighted fair queueing ▪ real world examples?

Abstraction: queue
R packet
departures
packet
arrivals queue link
(waiting area) (server)

Network Layer: 4-35

 Scheduling policies: priority
Priority scheduling: high priority queue

▪ arriving traffic classified,

arrivals

queued by class classify link departures

• any header fields can be low priority queue

used for classification 2
▪ send packet from highest arrivals
1 3 4 5

priority queue that has packet

buffered packets in
service
1 3 2 4 5

• FCFS within priority class departures

1 3 2 4 5

Network Layer: 4-36

 Scheduling policies: round robin
Round Robin (RR) scheduling:
▪arriving traffic classified,
queued by class
• any header fields can be
used for classification
R
▪server cyclically, repeatedly
scans class queues, classify link departures
arrivals
sending one complete
packet from each class (if
available) in turn
Network Layer: 4-37
 Scheduling policies: weighted fair
queueing
Weighted Fair Queuing (WFQ):
▪ generalized Round Robin
▪ each class, i, has weight, wi, w1
and gets weighted amount
of service in each cycle: w2 R
wi
classify link departures
Sjwj arrivals w3

▪ minimum bandwidth
guarantee (per-traffic-class)
Network Layer: 4-38
 Sidebar: Network Neutrality
What is network neutrality?
▪ technical: how an ISP should share/allocation its resources
• packet scheduling, buffer management are the mechanisms
▪ social, economic principles
• protecting free speech
• encouraging innovation, competition
▪ enforced legal rules and policies

Different countries have different “takes” on network neutrality

Network Layer: 4-39
 Sidebar: Network Neutrality
2015 US FCC Order on Protecting and Promoting an Open Internet: three
“clear, bright line” rules:
▪no blocking … “shall not block lawful content, applications, services,
or non-harmful devices, subject to reasonable network management.”
▪no throttling … “shall not impair or degrade lawful Internet traffic
on the basis of Internet content, application, or service, or use of a
non-harmful device, subject to reasonable network management.”
▪no paid prioritization. … “shall not engage in paid prioritization”

Network Layer: 4-40

 ISP: telecommunications or information
service?
Is an ISP a “telecommunications service” or an “information
service” provider?
▪ the answer really matters from a regulatory standpoint!

US Telecommunication Act of 1934 and 1996:

• Title II: imposes “common carrier duties” on telecommunications
services: reasonable rates, non-discrimination and requires regulation
• Title I: applies to information services:
• no common carrier duties (not regulated)
• but grants FCC authority “… as may be necessary in the execution
of its functions”
4

Network Layer: 4-41

 Network layer: “data plane” roadmap
▪ Network layer: overview
• data plane
• control plane
▪ What’s inside a router
• input ports, switching, output ports
• buffer management, scheduling
▪ IP: the Internet Protocol ▪ Generalized Forwarding, SDN
• datagram format • match+action
• addressing • OpenFlow: match+action in action
• network address translation ▪ Middleboxes
• IPv6
Network Layer: 4-42
 Network Layer: Internet
host, router network layer functions:

transport layer: TCP, UDP

IP protocol
Path-selection • datagram format
algorithms: • addressing
network implemented in • packet handling conventions
• routing protocols forwarding
layer (OSPF, BGP) table ICMP protocol
• SDN controller • error reporting
• router “signaling”

link layer
physical layer

Network Layer: 4-43

 IP Datagram format
32 bits
IP protocol version number total datagram
ver head. type of length length (bytes)
header length(bytes) len service
fragment fragmentation/
“type” of service: 16-bit identifier flgs
▪ diffserv (0:5) offset reassembly
time to upper header
▪ ECN (6:7) header checksum
live layer checksum
TTL: remaining max hops source IP address 32-bit source IP address
(decremented at each router)
Maximum length: 64K bytes
destination IP address 32-bit destination IP address
upper layer protocol (e.g., TCP or UDP) Typically: 1500 bytes or less
options (if any) e.g., timestamp, record
overhead route taken
▪ 20 bytes of TCP payload data
▪ 20 bytes of IP (variable length,
▪ = 40 bytes + app typically a TCP
layer overhead for or UDP segment)
TCP+IP
Network Layer: 4-44
 IP addressing: introduction
223.1.1.1

▪ IP address: 32-bit identifier 223.1.2.1

associated with each host or 223.1.1.2
router interface 223.1.1.4 223.1.2.9

▪ interface: connection between 223.1.1.3

223.1.3.27

host/router and physical link 223.1.2.2

• router’s typically have multiple

interfaces 223.1.3.1 223.1.3.2

• host typically has one or two

interfaces (e.g., wired Ethernet,
wireless 802.11) dotted-decimal IP address notation:
223.1.1.1 = 11011111 00000001 00000001 00000001

223 1 1 1
Network Layer: 4-45
 IP addressing: introduction
223.1.1.1

▪ IP address: 32-bit identifier 223.1.2.1

associated with each host or 223.1.1.2
router interface 223.1.1.4 223.1.2.9

▪ interface: connection between 223.1.1.3

223.1.3.27

host/router and physical link 223.1.2.2

• router’s typically have multiple

interfaces 223.1.3.1 223.1.3.2

• host typically has one or two

interfaces (e.g., wired Ethernet,
wireless 802.11) dotted-decimal IP address notation:
223.1.1.1 = 11011111 00000001 00000001 00000001

223 1 1 1
Network Layer: 4-46
 IP addressing: introduction
223.1.1.1

Q: how are interfaces 223.1.2.1

actually connected? 223.1.1.2
223.1.1.4 223.1.2.9
A: we’ll learn about A: wired
that in chapters 6, 7 Ethernet interfaces
connected by 223.1.1.3
223.1.3.27
223.1.2.2
Ethernet switches

223.1.3.1 223.1.3.2
For now: don’t need to worry
about how one interface is
connected to another (with no
intervening router) A: wireless WiFi interfaces
connected by WiFi base station

Network Layer: 4-47

 Subnets
223.1.1.1

▪ What’s a subnet ? 223.1.2.1

• device interfaces that can 223.1.1.2

223.1.1.4 223.1.2.9
physically reach each other
without passing through an 223.1.1.3
223.1.3.27

intervening router 223.1.2.2

▪ IP addresses have structure:

• subnet part: devices in same subnet 223.1.3.1 223.1.3.2

have common high order bits

• host part: remaining low order bits network consisting of 3 subnets

Network Layer: 4-48

 subnet 223.1.1.0/24 Subnets
223.1.1.1 subnet 223.1.2.0/24

Recipe for defining subnets: 223.1.2.1

▪detach each interface from its 223.1.1.2

223.1.1.4 223.1.2.9

host or router, creating

“islands” of isolated networks 223.1.1.3
223.1.3.27
223.1.2.2

▪each isolated network is

subnet
called a subnet 223.1.3.0/24 223.1.3.1 223.1.3.2

subnet mask: /24

(high-order 24 bits: subnet part of IP address)

Network Layer: 4-49

 Subnets 223.1.1.2

subnet 223.1.1/24
223.1.1.1
▪ where are the 223.1.1.4

subnets? 223.1.1.3

▪ what are the 223.1.9.2 223.1.7.0

/24 subnet subnet 223.1.9/24
subnet 223.1.7/24

addresses?
223.1.9.1 223.1.7.1
223.1.8.1 223.1.8.0

subnet 223.1.2/24 223.1.2.6 subnet 223.1.8/24 223.1.3.27

subnet 223.1.3/24
223.1.2.1 223.1.2.2 223.1.3.1 223.1.3.2

Network Layer: 4-50

 IP addressing: CIDR
CIDR: Classless InterDomain Routing (pronounced “cider”)
• subnet portion of address of arbitrary length
• address format: a.b.c.d/x, where x is # bits in subnet portion
of address
subnet host
part part
11001000 00010111 00010000 00000000
200.23.16.0/23

Network Layer: 4-51

 IP addresses: how to get one?
That’s actually two questions:
1. Q: How does a host get IP address within its network (host part of
address)?
2. Q: How does a network get IP address for itself (network part of
address)

How does host get IP address?

▪ hard-coded by sysadmin in config file (e.g., /etc/rc.config in UNIX)
▪ DHCP: Dynamic Host Configuration Protocol: dynamically get address
from as server
• “plug-and-play”
Network Layer: 4-52
 DHCP: Dynamic Host Configuration
Protocol
goal: host dynamically obtains IP address from network server when it
“joins” network
▪ can renew its lease on address in use
▪ allows reuse of addresses (only hold address while connected/on)
▪ support for mobile users who join/leave network

DHCP overview:
▪ host broadcasts DHCP discover msg [optional]
▪ DHCP server responds with DHCP offer msg [optional]
▪ host requests IP address: DHCP request msg
▪ DHCP server sends address: DHCP ack msg
Network Layer: 4-53
 DHCP client-server scenario
Typically, DHCP server will be co-
DHCP server located in router, serving all subnets
223.1.1.1
223.1.2.1
to which router is attached

223.1.2.5
223.1.1.2
223.1.1.4 223.1.2.9

223.1.1.3
223.1.3.27 arriving DHCP client needs
223.1.2.2 address in this network

223.1.3.1 223.1.3.2

Network Layer: 4-54

 DHCP client-server scenario
DHCP server: 223.1.2.5 DHCP discover Arriving client
src : 0.0.0.0, 68
Broadcast: is there a
dest.: 255.255.255.255,67
DHCPyiaddr:
server 0.0.0.0
out there?
transaction ID: 654

DHCP offer
src: 223.1.2.5, 67
Broadcast: I’m a DHCP
dest: 255.255.255.255, 68
server!
yiaddrr:Here’s an IP
223.1.2.4
address youID:can
transaction 654 use
The two steps above can
lifetime: 3600 secs
DHCP request be skipped “if a client
src: 0.0.0.0, 68 remembers and wishes to
Broadcast: OK. I would
dest:: 255.255.255.255, 67 reuse a previously
yiaddrr: 223.1.2.4 allocated network address”
like totransaction
use this ID:IP655
address!
lifetime: 3600 secs
[RFC 2131]

DHCP ACK
src: 223.1.2.5, 67
Broadcast:
dest: OK. You’ve
255.255.255.255, 68
yiaddrr: 223.1.2.4
got that IPID:
transaction address!
655
lifetime: 3600 secs
Network Layer: 4-55
 DHCP: more than IP addresses
DHCP can return more than just allocated IP address on
subnet:
▪ address of first-hop router for client
▪ name and IP address of DNS sever
▪ network mask (indicating network versus host portion of address)

Network Layer: 4-56

 DHCP: example
DHCP DHCP ▪ Connecting laptop will use DHCP
DHCP UDP
DHCP IP
to get IP address, address of first-
DHCP Eth hop router, address of DNS server.
Phy
▪ DHCP REQUEST message encapsulated
DHCP

in UDP, encapsulated in IP, encapsulated

DHCP DHCP 168.1.1.1 in Ethernet
DHCP UDP
IP
▪ Ethernet frame broadcast (dest:
DHCP

DHCP Eth router with DHCP

Phy server built into FFFFFFFFFFFF) on LAN, received at router
router running DHCP server

▪ Ethernet demux’ed to IP demux’ed,

UDP demux’ed to DHCP
Network Layer: 4-57
 DHCP: example
DHCP DHCP ▪ DCP server formulates DHCP ACK
DHCP UDP containing client’s IP address, IP
DHCP IP address of first-hop router for client,
DHCP Eth
Phy name & IP address of DNS server

▪ encapsulated DHCP server reply

DHCP DHCP forwarded to client, demuxing up to
UDP
DHCP
DHCP IP
DHCP at client
DHCP Eth router with DHCP
DHCP
Phy server built into ▪ client now knows its IP address, name
router and IP address of DNS server, IP
address of its first-hop router

Network Layer: 4-58

 IP addresses: how to get one?
Q: how does network get subnet part of IP address?
A: gets allocated portion of its provider ISP’s address space
ISP's block 11001000 00010111 00010000 00000000 200.23.16.0/20

ISP can then allocate out its address space in 8 blocks:

Organization 0 11001000 00010111 00010000 00000000 200.23.16.0/23
Organization 1 11001000 00010111 00010010 00000000 200.23.18.0/23
Organization 2 11001000 00010111 00010100 00000000 200.23.20.0/23
... ….. …. ….
Organization 7 11001000 00010111 00011110 00000000 200.23.30.0/23

Network Layer: 4-59

 Hierarchical addressing: route
aggregation
hierarchical addressing allows efficient advertisement of
routing information:
Organization 0
200.23.16.0/23
Organization 1
“Send me anything
200.23.18.0/23 with addresses
Organization 2 beginning
200.23.20.0/23 . Fly-By-Night-ISP 200.23.16.0/20”
.
. . Internet
.
Organization 7 .
200.23.30.0/23
“Send me anything
ISPs-R-Us
with addresses
beginning
199.31.0.0/16”

Network Layer: 4-60

 Hierarchical addressing: more
specific routes
▪ Organization 1 moves from Fly-By-Night-ISP to ISPs-R-Us
▪ ISPs-R-Us now advertises a more specific route to Organization 1
Organization 0
200.23.16.0/23
Organization 1
“Send me anything
200.23.18.0/23 with addresses
Organization 2 beginning
200.23.20.0/23 . Fly-By-Night-ISP 200.23.16.0/20”
.
. . Internet
.
Organization 7 .
200.23.30.0/23
“Send me anything
ISPs-R-Us
with addresses
Organization 1 beginning
199.31.0.0/16”
200.23.18.0/23 “or 200.23.18.0/23”

Network Layer: 4-61

 Hierarchical addressing: more
specific routes
▪ Organization 1 moves from Fly-By-Night-ISP to ISPs-R-Us
▪ ISPs-R-Us now advertises a more specific route to Organization 1
Organization 0
200.23.16.0/23

“Send me anything
with addresses
Organization 2 beginning
200.23.20.0/23 . Fly-By-Night-ISP 200.23.16.0/20”
.
. . Internet
.
Organization 7 .
200.23.30.0/23
“Send me anything
ISPs-R-Us
with addresses
Organization 1 beginning
199.31.0.0/16”
200.23.18.0/23 “or 200.23.18.0/23”

Network Layer: 4-62

 IP addressing: last words ...
Q: how does an ISP get block of
addresses?
A: ICANN: Internet Corporation for
Assigned Names and Numbers
http://www.icann.org/
• allocates IP addresses, through 5
regional registries (RRs) (who may
then allocate to local registries)
• manages DNS root zone, including
delegation of individual TLD (.com,
.edu , …) management
Q: are there enough 32-bit IP
addresses?
▪ ICANN allocated last chunk of
IPv4 addresses to RRs in 2011
▪ NAT (next) helps IPv4 address
space exhaustion
▪ IPv6 has 128-bit address space
"Who the hell knew how much address
space we needed?" Vint Cerf (reflecting
on decision to make IPv4 address 32 bits
long)
Network Layer: 4-63
 Network layer: “data plane” roadmap
▪ Network layer: overview
• data plane
• control plane
▪ What’s inside a router
• input ports, switching, output ports
• buffer management, scheduling
▪ IP: the Internet Protocol ▪ Generalized Forwarding, SDN
• datagram format • match+action
• addressing • OpenFlow: match+action in action
• network address translation ▪ Middleboxes
• IPv6
Network Layer: 4-64
 NAT: network address translation
NAT: all devices in local network share just one IPv4 address as
far as outside world is concerned
rest of local network (e.g., home
Internet network) 10.0.0/24

10.0.0.1
138.76.29.7 10.0.0.4

10.0.0.2

10.0.0.3

all datagrams leaving local network have datagrams with source or destination in
same source NAT IP address: 138.76.29.7, this network have 10.0.0/24 address for
but different source port numbers source, destination (as usual)
Network Layer: 4-65
 NAT: network address translation
▪ all devices in local network have 32-bit addresses in a “private” IP
address space (10/8, 172.16/12, 192.168/16 prefixes) that can only
be used in local network
▪ advantages:
▪ just one IP address needed from provider ISP for all devices
▪ can change addresses of host in local network without notifying
outside world
▪ can change ISP without changing addresses of devices in local
network
▪ security: devices inside local net not directly addressable, visible
by outside world

Network Layer: 4-66

 NAT: network address translation
implementation: NAT router must (transparently):
▪ outgoing datagrams: replace (source IP address, port #) of every
outgoing datagram to (NAT IP address, new port #)
• remote clients/servers will respond using (NAT IP address, new port
#) as destination address
▪ remember (in NAT translation table) every (source IP address, port #)
to (NAT IP address, new port #) translation pair
▪ incoming datagrams: replace (NAT IP address, new port #) in
destination fields of every incoming datagram with corresponding
(source IP address, port #) stored in NAT table
Network Layer: 4-67
 NAT: network address translation
NAT translation table
2: NAT router changes 1: host 10.0.0.1 sends
WAN side addr LAN side addr datagram to
datagram source address
138.76.29.7, 5001 10.0.0.1, 3345 128.119.40.186, 80
from 10.0.0.1, 3345 to
138.76.29.7, 5001, …… ……
updates table
S: 10.0.0.1, 3345
D: 128.119.40.186, 80
10.0.0.1
1
S: 138.76.29.7, 5001
2 D: 128.119.40.186, 80 10.0.0.4
10.0.0.2
138.76.29.7 S: 128.119.40.186, 80
D: 10.0.0.1, 3345
4
S: 128.119.40.186, 80 10.0.0.3
D: 138.76.29.7, 5001 3
3: reply arrives, destination
address: 138.76.29.7, 5001

Network Layer: 4-68

 NAT: network address translation
▪ NAT has been controversial:
• routers “should” only process up to layer 3
• address “shortage” should be solved by IPv6
• violates end-to-end argument (port # manipulation by network-layer device)
• NAT traversal: what if client wants to connect to server behind NAT?
▪ but NAT is here to stay:
• extensively used in home and institutional nets, 4G/5G cellular nets

Network Layer: 4-69

 IPv6: motivation
▪ initial motivation: 32-bit IPv4 address space would be
completely allocated
▪ additional motivation:
• speed processing/forwarding: 40-byte fixed length header
• enable different network-layer treatment of “flows”

Network Layer: 4-70

 IPv6 datagram format
flow label: identify
priority: identify
32 bits datagrams in same
priority among ver pri flow label "flow.” (concept of
datagrams in flow
payload len next hdr hop limit “flow” not well defined).
source address
128-bit (128 bits)
IPv6 addresses destination address
(128 bits)

payload (data)

What’s missing (compared with IPv4):

▪ no checksum (to speed processing at routers)
▪ no fragmentation/reassembly
▪ no options (available as upper-layer, next-header protocol at router)
Network Layer: 4-71
 Transition from IPv4 to IPv6
▪ not all routers can be upgraded simultaneously
• no “flag days”
• how will network operate with mixed IPv4 and IPv6 routers?
▪ tunneling: IPv6 datagram carried as payload in IPv4 datagram among
IPv4 routers (“packet within a packet”)
• tunneling used extensively in other contexts (4G/5G)

IPv4 header fields IPv6 header fields

IPv4 payload
IPv4 source, dest addr IPv6 source dest addr
UDP/TCP payload

IPv6 datagram
IPv4 datagram
Network Layer: 4-72
 Tunneling and encapsulation
A B Ethernet connects two E F
Ethernet connecting IPv6 routers
two IPv6 routers: IPv6 IPv6 IPv6 IPv6

IPv6 datagram
Link-layer frame The usual: datagram as payload in link-layer frame

IPv4 network A B E F
connecting two
IPv6 routers IPv6 IPv6/v4 IPv6/v4 IPv6

IPv4 network

Network Layer: 4-73

 Tunneling and encapsulation
A B Ethernet connects two E F
Ethernet connecting IPv6 routers
two IPv6 routers: IPv6 IPv6 IPv6 IPv6

IPv6 datagram
Link-layer frame The usual: datagram as payload in link-layer frame

IPv4 tunnel A B IPv4 tunnel E F

connecting IPv6 routers
connecting two
IPv6 routers IPv6 IPv6/v4 IPv6/v4 IPv6

IPv6 datagram
IPv4 datagram tunneling: IPv6 datagram as payload in a IPv4 datagram
Network Layer: 4-74
 Tunneling
A B IPv4 tunnel E F
connecting IPv6 routers
logical view:
IPv6 IPv6/v4 IPv6/v4 IPv6

A B C D E F
physical view:
IPv6 IPv6/v4 IPv4 IPv4 IPv6/v4 IPv6

flow: X src:B src:B src:B flow: X

src: A dest: E dest: E src: A
dest: F
dest: E
dest: F
Flow: X Flow: X Flow: X
Src: A Src: A Src: A
Note source and data Dest: F Dest: F Dest: F data
destination
addresses! data data data

A-to-B: E-to-F:
B-to-C: B-to-C: B-to-C:
IPv6 IPv6
IPv6 inside IPv6 inside IPv6 inside
IPv4 IPv4 IPv4
Network Layer: 4-75
 IPv6: adoption
▪ Google1: ~ 30% of clients access services via IPv6
▪ NIST: 1/3 of all US government domains are IPv6 capable

https://www.google.com/intl
/en/ipv6/statistics.html
Network Layer: 4-76
 IPv6: adoption
▪ Google1: ~ 30% of clients access services via IPv6
▪ NIST: 1/3 of all US government domains are IPv6 capable
▪ Long (long!) time for deployment, use
• 25 years and counting!
• think of application-level changes in last 25 years: WWW, social
media, streaming media, gaming, telepresence, …
• Why?

1 https://www.google.com/intl/en/ipv6/statistics.html
Network Layer: 4-77
Additional Chapter 4 slides

Network Layer: 4-78

 IP fragmentation/reassembly
▪ network links have MTU (max.
transfer size) - largest possible
fragmentation:

…
link-level frame in: one large datagram
• different link types, different MTUs out: 3 smaller datagrams

▪ large IP datagram divided

(“fragmented”) within net
reassembly
• one datagram becomes several
datagrams
• “reassembled” only at destination

…
• IP header bits used to identify, order
related fragments

Network Layer: 4-79

 IP fragmentation/reassembly
example: length ID fragflag offset
=4000 =x =0 =0
▪ 4000 byte datagram
▪ MTU = 1500 bytes one large datagram becomes
several smaller datagrams

1480 bytes in length ID fragflag offset

data field =1500 =x =1 =0

offset = length ID fragflag offset

1480/8 =1500 =x =1 =185

length ID fragflag offset

=1040 =x =0 =370

Network Layer: 4-80

 DHCP: Wireshark output (home LAN)
Message type: Boot Request (1)
Hardware type: Ethernet Message type: Boot Reply (2)
Hardware address length: 6 Hardware type: Ethernet
Hops: 0 request Hardware address length: 6
Hops: 0
reply
Transaction ID: 0x6b3a11b7
Seconds elapsed: 0 Transaction ID: 0x6b3a11b7
Bootp flags: 0x0000 (Unicast) Seconds elapsed: 0
Client IP address: 0.0.0.0 (0.0.0.0) Bootp flags: 0x0000 (Unicast)
Your (client) IP address: 0.0.0.0 (0.0.0.0) Client IP address: 192.168.1.101 (192.168.1.101)
Next server IP address: 0.0.0.0 (0.0.0.0) Your (client) IP address: 0.0.0.0 (0.0.0.0)
Relay agent IP address: 0.0.0.0 (0.0.0.0) Next server IP address: 192.168.1.1 (192.168.1.1)
Client MAC address: Wistron_23:68:8a (00:16:d3:23:68:8a) Relay agent IP address: 0.0.0.0 (0.0.0.0)
Server host name not given Client MAC address: Wistron_23:68:8a (00:16:d3:23:68:8a)
Boot file name not given Server host name not given
Magic cookie: (OK) Boot file name not given
Option: (t=53,l=1) DHCP Message Type = DHCP Request Magic cookie: (OK)
Option: (61) Client identifier Option: (t=53,l=1) DHCP Message Type = DHCP ACK
Length: 7; Value: 010016D323688A; Option: (t=54,l=4) Server Identifier = 192.168.1.1
Hardware type: Ethernet Option: (t=1,l=4) Subnet Mask = 255.255.255.0
Client MAC address: Wistron_23:68:8a (00:16:d3:23:68:8a) Option: (t=3,l=4) Router = 192.168.1.1
Option: (t=50,l=4) Requested IP Address = 192.168.1.101 Option: (6) Domain Name Server
Option: (t=12,l=5) Host Name = "nomad" Length: 12; Value: 445747E2445749F244574092;
Option: (55) Parameter Request List IP Address: 68.87.71.226;
Length: 11; Value: 010F03062C2E2F1F21F92B IP Address: 68.87.73.242;
1 = Subnet Mask; 15 = Domain Name IP Address: 68.87.64.146
3 = Router; 6 = Domain Name Server Option: (t=15,l=20) Domain Name = "hsd1.ma.comcast.net."
44 = NetBIOS over TCP/IP Name Server
……
Network Layer: 4-81