Running Noob

Do Something Meaningful

0%

计网网络层L5

发表于 更新于 分类于
本文字数: 4.9k 阅读时长 ≈ 4 分钟
  • 网际控制报文协议ICMP

★4.8 网际控制报文协议ICMP

  • 网际控制报文协议 ICMP(Internet Control Message Protocol),是为了更有效地转发 IP 数据报和提高交付成功的机会。

    ![](../../../../../Running Noob/计算机/Typora笔记/笔记-git仓库/Computer_Network_micro-classroom/img/计网微课堂/计网微课堂C4-107.jpg)

ICMP差错报告报文

终点不可达

![](../../../../../Running Noob/计算机/Typora笔记/笔记-git仓库/Computer_Network_micro-classroom/img/计网微课堂/计网微课堂C4-108.jpg)

源点抑制

![](../../../../../Running Noob/计算机/Typora笔记/笔记-git仓库/Computer_Network_micro-classroom/img/计网微课堂/计网微课堂C4-109.jpg)

![](../../../../../Running Noob/计算机/Typora笔记/笔记-git仓库/Computer_Network_micro-classroom/img/计网微课堂/计网微课堂C4-110.jpg)

★时间超过

![](../../../../../Running Noob/计算机/Typora笔记/笔记-git仓库/Computer_Network_micro-classroom/img/计网微课堂/计网微课堂C4-111.jpg)

另外,当终点在预先规定的时间内不能收到一个数据报的全部数据报片时,就把已收到的数据报片都丢弃,也会向源点发送时间超过报文。

参数问题

![](../../../../../Running Noob/计算机/Typora笔记/笔记-git仓库/Computer_Network_micro-classroom/img/计网微课堂/计网微课堂C4-112.jpg)

改变路由(重定向)

![](../../../../../Running Noob/计算机/Typora笔记/笔记-git仓库/Computer_Network_micro-classroom/img/计网微课堂/计网微课堂C4-113.jpg)

不发送ICMP差错报告报文的情况

![](../../../../../Running Noob/计算机/Typora笔记/笔记-git仓库/Computer_Network_micro-classroom/img/计网微课堂/计网微课堂C4-114.jpg)

ICMP询问报文

★回送请求和回答报文
时间戳请求和回答报文

![](../../../../../Running Noob/计算机/Typora笔记/笔记-git仓库/Computer_Network_micro-classroom/img/计网微课堂/计网微课堂C4-115.jpg)

ICMP协议典型应用

分组网间探测PING

  • 分组网间探测 PING(Packet InterNet Groper),用来测试主机和路由器之间的连通性。

    ![](../../../../../Running Noob/计算机/Typora笔记/笔记-git仓库/Computer_Network_micro-classroom/img/计网微课堂/计网微课堂C4-116.jpg)

★跟踪路由

  • 跟踪路由 traceroute,用来测试 IP 数据报从源主机到达目的主机要经过哪些路由器。

    ![](../../../../../Running Noob/计算机/Typora笔记/笔记-git仓库/Computer_Network_micro-classroom/img/计网微课堂/计网微课堂C4-117.jpg)

    ![](../../../../../Running Noob/计算机/Typora笔记/笔记-git仓库/Computer_Network_micro-classroom/img/计网微课堂/计网微课堂C4-118.jpg)

    跟踪路由实现原理

    第一次发送设置 TTL = 1

    ![](../../../../../Running Noob/计算机/Typora笔记/笔记-git仓库/Computer_Network_micro-classroom/img/计网微课堂/计网微课堂C4-119.jpg)

    第二次发送设置 TTL = 2

    ![](../../../../../Running Noob/计算机/Typora笔记/笔记-git仓库/Computer_Network_micro-classroom/img/计网微课堂/计网微课堂C4-120.jpg)

    第三次发送设置 TTL = 3

    ![](../../../../../Running Noob/计算机/Typora笔记/笔记-git仓库/Computer_Network_micro-classroom/img/计网微课堂/计网微课堂C4-121.jpg)

★4.9 虚拟专用网VPN与网络地址转换NAT

虚拟专用网VPN

  • 虚拟专用网 VPN(Virtual Private Network),是利用公用的因特网作为本机构各专用网之间的通信载体的网络。

    ![](../../../../../Running Noob/计算机/Typora笔记/笔记-git仓库/Computer_Network_micro-classroom/img/计网微课堂/计网微课堂C4-122.jpg)

    下图是部门 A 的一台主机向部门 B 的一台主机发送内部 IP 数据报的过程:

    ![](../../../../../Running Noob/计算机/Typora笔记/笔记-git仓库/Computer_Network_micro-classroom/img/计网微课堂/计网微课堂C4-123.jpg)

    注意:私有地址只能用于一个机构的内部通信,而不能用于和因特网上的主机通信,即私有地址只能用作本地地址而不能用作全球地址。在因特网中的所有路由器,对目的地址是私有地址的 IP 数据报一律不进行转发

    ![](../../../../../Running Noob/计算机/Typora笔记/笔记-git仓库/Computer_Network_micro-classroom/img/计网微课堂/计网微课堂C4-124.jpg)

★网络地址转换NAT

  • 网络地址转换 NAT(Network Address Translation),NAT 能使大量使用内部专用地址的专用网络用户共享少量外部全球地址来访问因特网上的主机和资源

    ![](../../../../../Running Noob/计算机/Typora笔记/笔记-git仓库/Computer_Network_micro-classroom/img/计网微课堂/计网微课堂C4-125.jpg)

  • 网络地址转换的过程如下图所示:

    ![](../../../../../Running Noob/计算机/Typora笔记/笔记-git仓库/Computer_Network_micro-classroom/img/计网微课堂/计网微课堂C4-126.jpg)

    ![](../../../../../Running Noob/计算机/Typora笔记/笔记-git仓库/Computer_Network_micro-classroom/img/计网微课堂/计网微课堂C4-127.jpg)

    ![](../../../../../Running Noob/计算机/Typora笔记/笔记-git仓库/Computer_Network_micro-classroom/img/计网微课堂/计网微课堂C4-128.jpg)

    该转换方法存在一个问题:如果 NAT 路由器具有 N 个全球 IP 地址,那么至多只能有 N 个内网主机能够同时和因特网上的主机通信。可以加上端口号来解决该问题:

    ![](../../../../../Running Noob/计算机/Typora笔记/笔记-git仓库/Computer_Network_micro-classroom/img/计网微课堂/计网微课堂C4-129.jpg)

  • 另外需要注意的问题:外网主机并不能首先向专用网内的主机发起通信,因为 NAPT 路由器不能知道接收到的 IP 数据报的目的主机的具体地址,即在 NAPT 转换表中找不到对应的纪录

---------------The End---------------