book

TCP/IP Illustrated, Volume 1: The Protocols

Name: TCP/IP Illustrated, Volume 1: The Protocols
Author: W. Richard Stevens
ISBN: 9780201633467

by W. Richard Stevens

December 1993

Beginner

600 pages

16h 50m

English

Addison-Wesley Professional

Read now

Unlock full access

Copyright
Dedication
Preface
IntroductionOrganization of the BookReadersSystems Used for TestingTypographical ConventionsAcknowledgments
1. Introduction
1.1. Introduction1.2. Layering1.3. TCP/IP Layering1.4. Internet Addresses1.5. The Domain Name System1.6. Encapsulation1.7. Demultiplexing1.8. Client-Server Model1.9. Port NumbersReserved Ports1.10. Standardization Process1.11. RFCs1.12. Standard, Simple Services1.13. The Internet1.14. Implementations1.15. Application Programming Interfaces1.16. Test Network1.17. SummaryExercises
2. Link Layer
2.1. Introduction2.2. Ethernet and IEEE 802 Encapsulation2.3. Trailer Encapsulation2.4. SLIP: Serial Line IP2.5. Compressed SLIP2.6. PPP: Point-to-Point Protocol2.7. Loopback Interface2.8. MTU2.9. Path MTU2.10. Serial Line Throughput Calculations2.11. SummaryExercises
3. IP: Internet Protocol
3.1. Introduction3.2. IP Header3.3. IP RoutingExamples3.4. Subnet Addressing3.5. Subnet MaskExample3.6. Special Case IP Addresses3.7. A Subnet Example3.8. ifconfig Command3.9. netstat Command3.10. IP Futures3.11. SummaryExercises
4. ARP: Address Resolution Protocol
4.1. Introduction4.2. An Example4.3. ARP Cache4.4. ARP Packet Format4.5. ARP ExamplesNormal ExampleARP Request to a Nonexistent HostARP Cache Timeout4.6. Proxy ARP4.7. Gratuitous ARP4.8. arp Command4.9. SummaryExercises
5. RARP: Reverse Address Resolution Protocol
5.1. Introduction5.2. RARP Packet Format5.3. RARP Examples5.4. RARP Server DesignRARP Servers as User ProcessesMultiple RARP Servers per Network5.5. SummaryExercises
6. ICMP: Internet Control Message Protocol
6.1. Introduction6.2. ICMP Message Types6.3. ICMP Address Mask Request and Reply6.4. ICMP Timestamp Request and ReplyExamplesAlternatives6.5. ICMP Port Unreachable Errortcpdump Time Line6.6. 4.4BSD Processing of ICMP Messages6.7. SummaryExercises
7. Ping Program
7.1. Introduction7.2. Ping ProgramLAN OutputWAN OutputHardwired SLIP LinksDialup SLIP Links7.3. IP Record Route OptionNormal ExampleAbnormal Output7.4. IP Timestamp Option7.5. SummaryExercises
8. Traceroute Program
8.1. Introduction8.2. Traceroute Program Operation8.3. LAN Output8.4. WAN Output8.5. IP Source Routing Optiontraceroute Examples with Loose Source Routingtraceroute Examples with Strict Source Routingtraceroute Round Trips with Loose Source Routing8.6. SummaryExercises

9. IP Routing
9.1. Introduction9.2. Routing PrinciplesSimple Routing TableInitializing a Routing TableA More Complex Routing TableNo Route to Destination9.3. ICMP Host and Network Unreachable Errors9.4. To Forward or Not to Forward9.5. ICMP Redirect ErrorsAn ExampleMore Details9.6. ICMP Router Discovery MessagesRouter OperationHost OperationImplementation9.7. SummaryExercises
10. Dynamic Routing Protocols
10.1. Introduction10.2. Dynamic Routing10.3. Unix Routing Daemons10.4. RIP: Routing Information ProtocolMessage FormatNormal OperationMetricsProblemsExampleAnother Example10.5. RIP Version 210.6. OSPF: Open Shortest Path First10.7. BGP: Border Gateway Protocol10.8. CIDR: Classless Interdomain Routing10.9. SummaryExercises
11. UDP: User Datagram Protocol
11.1. Introduction11.2. UDP Header11.3. UDP Checksumtcpdump OutputSome Statistics11.4. A Simple Example11.5. IP Fragmentation11.6. ICMP Unreachable Error (Fragmentation Required)Example11.7. Determining the Path MTU Using TracerouteThe Worldwide Internet11.8. Path MTU Discovery with UDPExample11.9. Interaction Between UDP and ARP11.10. Maximum UDP Datagram SizeDatagram Truncation11.11. ICMP Source Quench Error11.12. UDP Server DesignClient IP Address and Port NumberDestination IP AddressUDP Input QueueRestricting Local IP AddressRestricting Foreign IP AddressMultiple Recipients per Port11.13. SummaryExercises
12. Broadcasting and Multicasting
12.1. Introduction12.2. BroadcastingLimited BroadcastNet-directed BroadcastSubnet-directed BroadcastAll-subnets-directed Broadcast12.3. Broadcasting Examples12.4. MulticastingMulticast Group AddressesConverting Multicast Group Addresses to Ethernet AddressesMulticasting on FDDI and Token Ring Networks12.5. SummaryExercises
13. IGMP: Internet Group Management Protocol
13.1. Introduction13.2. IGMP Message13.3. IGMP ProtocolJoining a Multicast GroupIGMP Reports and QueriesImplementation DetailsTime-to-Live FieldAll-Hosts Group13.4. An ExampleMulticast Router Example13.5. SummaryExercises
14. DNS: The Domain Name System
14.1. Introduction14.2. DNS Basics14.3. DNS Message FormatQuestion Portion of DNS Query MessageResource Record Portion of DNS Response Message14.4. A Simple Example14.5. Pointer QueriesExampleHostname Spoofing Check14.6. Resource Records14.7. Caching14.8. UDP or TCP14.9. Another Example14.10. SummaryExercises
15. TFTP: Trivial File Transfer Protocol
15.1. Introduction15.2. Protocol15.3. An Example15.4. Security15.5. SummaryExercises
16. BOOTP: Bootstrap Protocol
16.1. Introduction16.2. BOOTP Packet FormatPort Numbers16.3. An Example16.4. BOOTP Server Design16.5. BOOTP Through a Router16.6. Vendor-Specific Information16.7. SummaryExercises
17. TCP: Transmission Control Protocol
17.1. Introduction17.2. TCP Services17.3. TCP Header17.4. SummaryExercises
18. TCP Connection Establishment and Termination
18.1. Introduction18.2. Connection Establishment and Terminationtcpdump OutputTime LineConnection Establishment ProtocolConnection Termination ProtocolNormal tcpdump Output18.3. Timeout of Connection EstablishmentFirst Timeout PeriodType-of-Service Field18.4. Maximum Segment Size18.5. TCP Half-Close18.6. TCP State Transition Diagram2MSL Wait StateQuiet Time ConceptFIN_WAIT_2 State18.7. Reset SegmentsConnection Request to Nonexistent PortAborting a ConnectionDetecting Half-Open Connections18.8. Simultaneous OpenAn Example18.9. Simultaneous Close18.10. TCP Options18.11. TCP Server DesignTCP Server Port NumbersRestricting Local IP AddressRestricting Foreign IP AddressIncoming Connection Request Queue18.12. SummaryExercises
19. TCP Interactive Data Flow
19.1. Introduction19.2. Interactive Input19.3. Delayed Acknowledgments19.4. Nagle AlgorithmDisabling the Nagle AlgorithmAn Example19.5. Window Size Advertisements19.6. SummaryExercises
20. TCP Bulk Data Flow
20.1. Introdution20.2. Normal Data FlowFast Sender, Slow Receiver20.3. Sliding WindowsAn Example20.4. Window SizeAn Example20.5. PUSH FlagExamples20.6. Slow StartAn Example20.7. Bulk Data ThroughputBandwidth-Delay ProductCongestion20.8. Urgent ModeAn Example20.9. SummaryExercises
21. TCP Timeout and Retransmission
21.1. Introduction21.2. Simple Timeout and Retransmission Example21.3. Round-Trip Time MeasurementKarn's Algorithm21.4. An RTT ExampleRound-Trip Time MeasurementsRTT Estimator CalculationsSlow Start21.5. Congestion Example21.6. Congestion Avoidance Algorithm21.7. Fast Retransmit and Fast Recovery Algorithms21.8. Congestion Example (Continued)21.9. Per-Route Metrics21.10. ICMP ErrorsAn Example21.11. Repacketization21.12. SummaryExercises
22. TCP Persist Timer
22.1. Introduction22.2. An Example22.3. Silly Window SyndromeAn Example22.4. SummaryExercises
23. TCP Keepalive Timer
23.1. Introduction23.2. Description23.3. Keepalive ExamplesOther End CrashesOther End Crashes and RebootsOther End Is Unreachable23.4. SummaryExercises
24. TCP Futures and Performance
24.1. Introduction24.2. Path MTU DiscoveryAn ExampleBig Packets or Small Packets?24.3. Long Fat PipesGigabit Networks24.4. Window Scale OptionAn Example24.5. Timestamp Option24.6. PAWS: Protection Against Wrapped Sequence Numbers24.7. T/TCP: A TCP Extension for Transactions24.8. TCP Performance24.9. SummaryExercises
25. SNMP: Simple Network Management Protocol
25.1. Introduction25.2. Protocol25.3. Structure of Management Information25.4. Object Identifiers25.5. Introduction to the Management Information BaseCase Diagrams25.6. Instance IdentificationSimple VariablesTablesLexicographic Ordering25.7. Simple ExamplesSimple Variablesget-next OperatorTable Access25.8. Management Information Base (Continued)system Groupinterface Groupat Groupip Groupicmp Grouptcp Group25.9. Additional ExamplesInterface MTURouting Tables25.10. Traps25.11. ASN.1 and BER25.12. SNMP Version 225.13. SummaryExercises
26. Telnet and Rlogin: Remote Login
26.1. Introduction26.2. Rlogin ProtocolApplication StartupFlow ControlClient InterruptWindow Size ChangesServer to Client CommandsClient to Server CommandsClient Escapes26.3. Rlogin ExamplesInitial Client-Server ProtocolClient Interrupt Key26.4. Telnet ProtocolNVT ASCIITelnet CommandsOption NegotiationSuboption NegotiationHalf-Duplex, Character at a Time, Line at a Time, or Linemode?Synch SignalClient Escapes26.5. Telnet ExamplesCharacter-at-a-Time ModeLinemodeLine-at-a-Time Mode (Kludge Line Mode)Linemode: Client Interrupt Key26.6. SummaryExercises
27. FTP: File Transfer Protocol
27.1. Introduction27.2. FTP ProtocolData RepresentationFTP CommandsFTP RepliesConnection Management27.3. FTP ExamplesConnection Management: Ephemeral Data PortConnection Management: Default Data PortText File Transfer: NVT ASCII Representation or Image?Aborting A File Transfer: Telnet Synch SignalAnonymous FTPAnonymous FTP from an Unknown IP Address27.4. SummaryExercises
28. SMTP: Simple Mail Transfer Protocol
28.1. Introduction28.2. SMTP ProtocolSimple ExampleSMTP CommandsEnvelopes, Headers, and BodyRelay AgentsNVT ASCIIRetry Intervals28.3. SMTP ExamplesMX Records: Hosts Not Directly Connected to the InternetMX Records: Hosts That Are DownVRFY and EXPN Commands28.4. SMTP FuturesEnvelope Changes: Extended SMTPHeader Changes: Non-ASCII CharactersBody Changes: Multipurpose Internet Mail Extensions (MIME)28.5. SummaryExercises
29. NFS: Network File System
29.1. Introduction29.2. Sun Remote Procedure CallSun RPC29.3. XDR: External Data Representation29.4. Port Mapper29.5. NFS ProtocolFile HandlesMount ProtocolNFS ProceduresUDP or TCP?NFS Over TCP29.6. NFS ExamplesSimple Example: Reading a FileSimple Example: Creating a DirectoryStatelessnessExample: Server CrashIdempotent Procedures29.7. NFS Version 329.8. SummaryExercises
30. Other TCP/IP Applications
30.1. Introduction30.2. Finger Protocol30.3. Whois ProtocolWhite Pages30.4. Archie, WAIS, Gopher, Veronica, and WWWArchieWAIS: Wide Area Information ServersGopherVeronica: Very Easy Rodent-Oriented Netwide Index to Computerized ArchivesWWW: World Wide Web30.5. X Window SystemXscope ProgramLBX: Low Bandwidth X30.6. SummaryExercises
A. The tcpdump Program
A.1. BSD Packet FilterA.2. SunOS Network Interface TapA.3. SVR4 Data Link Provider InterfaceA.4. tcpdump OutputA.5. Security ConsiderationsA.6. Socket Debug Option
B. Computer Clocks
C. The sock Program
D. Solutions to Selected Exercises
Chapter 1Chapter 3Chapter 4Chapter 5Chapter 6Chapter 7Chapter 8Chapter 9Chapter 10Chapter 11Chapter 12Chapter 13Chapter 14Chapter 15Chapter 16Chapter 17Chapter 18Chapter 19Chapter 20Chapter 21Chapter 22Chapter 23Chapter 24Chapter 25Chapter 26Chapter 27Chapter 28Chapter 29Chapter 30
E. Configurable Options
E.1. BSD/386 Version 1.0IPFORWARDINGGATEWAYSUBNETSARELOCALIPSENDREDIRECTSDIRECTED_BROADCASTE.2. SunOS 4.1.3IPFORWARDINGSUBNETSARELOCALIPSENDREDIRECTSDIRECTED_BROADCASTE.3. System V Release 4IPFORWARDINGIPSENDREDIRECTSE.4. Solaris 2.2/dev/ipip_cksum_choiceip_debugip_def_ttlip_forward_directed_broadcastsip_forward_src_routedip_forwardingip_icmp_return_data_bytesip_ignore_delete_timeip_ill_statusip_ipif_statusip_ire_cleanup_intervalip_ire_flush_intervalip_ire_pathmtu_intervalip_ire_redirect_intervalip_ire_statusip_local_cksumip_mrtdebugip_path_mtu_discoveryip_respond_to_address_maskip_respond_to_echo_broadcastip_respond_to_timestampip_respond_to_timestamp_broadcastip_rput_pullupsip_send_redirectsip_send_source_quenchip_wroff_extra/dev/icmpicmp_bsd_compaticmp_def_ttlicmp_wroff_extra/dev/arparp_cache_reportarp_cleanup_intervalarp_debug/dev/udpudp_def_ttludp_do_checksumudp_largest_anon_portudp_smallest_anon_portudp_smallest_nonpriv_portudp_statusudp_trust_optlenudp_wroff_extra/dev/tcptcp_close_wait_intervaltcp_conn_grace_periodtcp_conn_req_maxtcp_cwnd_maxtcp_debugtcp_deferred_ack_intervaltcp_dupack_fast_retransmittcp_eager_listenerstcp_ignore_path_mtutcp_ip_abort_cintervaltcp_ip_abort_intervaltcp_ip_notify_cintervaltcp_ip_notify_intervaltcp_ip_ttltcp_keepalive_intervaltcp_largest_anon_porttcp_maxpsz_multipliertcp_mss_deftcp_mss_maxtcp_mss_mintcp_naglim_deftcp_old_urp_interpretationtcp_rcv_push_waittcp_rexmit_interval_initialtcp_rexmit_interval_maxtcp_rexmit_interval_mintcp_rwin_credit_pcttcp_smallest_anon_porttcp_smallest_nonpriv_porttcp_snd_lowat_fractiontcp_statustcp_sth_rcv_hiwattcp_sth_rcv_lowattcp_wroff_xtraE.5. AIX 3.2.2arpt_killcipforwardingipfragttlipsendredirectsloop_check_sumnonlocsrcroutesubnetsarelocaltcp_keepidletcp_keepintvltcp_recvspacetcp_sendspacetcp_ttludp_recvspaceudp_sendspaceudp_ttlE.6. 4.4BSDnet.inet.ip.forwardingnet.inet.ip.redirectnet.inet.ip.ttlnet.inet.icmp.maskreplnet.inet.udp.checksum
F. Source Code Availability
RFCs (Section 1.11)BSD Net/2 Source Code (Section 1.14)SLIP (Section 2.4)icmpaddrmask Program (Section 6.3)icmptime Program (Section 6.4)ping Program (Chapter 7)traceroute Program (Chapter 8)Router Discovery Daemon (Section 9.6)gated Daemon (Section 10.3)traceroute.pmtu Program (Section 11.7)IP Multicasting Software (Chapter 13)BIND Name Server (Chapter 14)host Program (Chapter 14)dig and doc Programs (Chapter 14)BOOTP Server (Chapter 16)TCP High-Speed Extensions (Chapter 24)ISODE SNMP Manager and Agent (Chapter 25)MIME Software and Examples (Section 28.4)Sun RPC (Section 29.2)Sun NFS (Chapter 29)tcpdump Program (Appendix A)BSD Packet Filter (Section A.1)sock Program (Appendix C)ttcp ProgramAuthor-Written Software
Bibliography

Content preview from TCP/IP Illustrated, Volume 1: The Protocols

Appendix A. The `tcpdump` Program

The tcpdump program was written by Van Jacobson, Craig Leres, and Steven McCanne, all of Lawrence Berkeley Laboratory, University of California, Berkeley. Version 2.2.1 (June 1992) is used in this text.

tcpdump operates by putting the network interface card into promiscuous mode so that every packet going across the wire is captured. Normally interface cards for media such as Ethernet only capture link level frames addressed to the particular interface or to the broadcast address (Section 2.2).

The underlying operating system must allow an interface to be put into promiscuous mode and let a user process capture the frames. tcpdump support is provided or can be added to the following Unix systems: 4.4BSD, BSD/386, ...

Become an O’Reilly member and get unlimited access to this title plus top books and audiobooks from O’Reilly and nearly 200 top publishers, thousands of courses curated by job role, 150+ live events each month,
and much more.

Read now

Unlock full access

More than 5,000 organizations count on O’Reilly

O’Reilly covers everything we've got, with content to help us build a world-class technology community, upgrade the capabilities and competencies of our teams, and improve overall team performance as well as their engagement.

Julian F.

Head of Cybersecurity

I wanted to learn C and C++, but it didn't click for me until I picked up an O'Reilly book. When I went on the O’Reilly platform, I was astonished to find all the books there, plus live events and sandboxes so you could play around with the technology.

Addison B.

Field Engineer

I’ve been on the O’Reilly platform for more than eight years. I use a couple of learning platforms, but I'm on O'Reilly more than anybody else. When you're there, you start learning. I'm never disappointed.

Amir M.

Data Platform Tech Lead

I'm always learning. So when I got on to O'Reilly, I was like a kid in a candy store. There are playlists. There are answers. There's on-demand training. It's worth its weight in gold, in terms of what it allows me to do.

Mark W.

Embedded Software Engineer

TCP/IP Illustrated, Volume 1: The Protocols, 2nd Edition

Publisher Resources

ISBN: 0201633469Purchase book

Cloud Computing

Data Engineering

Data Science

AI & ML

Programming Languages

Software Architecture

IT/Ops

Security

Design

Business

Soft Skills

TCP/IP Illustrated, Volume 1: The Protocols

by W. Richard Stevens

Appendix A. The `tcpdump` Program

Become an O’Reilly member and get unlimited access to this title plus top books and audiobooks from O’Reilly and nearly 200 top publishers, thousands of courses curated by job role, 150+ live events each month,
and much more.