IP Address - rAVe Publications
Download
Report
Transcript IP Address - rAVe Publications
COLLABORATE® Video Conferencing
Networking Basics
©2012 ClearOne Communications. Confidential and proprietary.
IP Addressing
+ IP addressing
+ Networking Ports
+ Network Address Translation
+ Firewalls
©2012 ClearOne Communications. Confidential and proprietary.
IP Addressing
+ “Internet Protocol address is a numerical label assigned to each device
participating in a computer network that uses the Internet Protocol for
communication” (Wikipedia, May 25th, 2011).
–
Every device on network must have unique address
–
IP Address
–
Subnet Mask
–
Default Gateway
•
An address of a router to get to another network
– Only if needing access to other network
©2012 ClearOne Communications. Confidential and proprietary.
IP Addressing
+ How Many Addresses are there?
> IP Version 4
- 232
• 4,294,967,296
> IP Version 6
– ~ 3.4×1038 IPV6 addresses
• 340,282,366,920,938,463,463,374,607,431,768,211,456
©2012 ClearOne Communications. Confidential and proprietary.
IP Addressing
340,282,366,920,938,463,463,374,607,431,768,211,456
340- undecillion
282- decillion
366- nonillion
920- octillion
938- septillion
463- sextillion
463- quintillion
374- quadrillion
607- trillion
431- billion
768- million
211- thousand
456
©2012 ClearOne Communications. Confidential and proprietary.
IP Addressing
+ Public and Private IP addresses
+ Public addresses are routable via the Internet
– Assigned to Regional Internet Registries by Internet Assigned
Numbers Authority (IANA)
©2012 ClearOne Communications. Confidential and proprietary.
IP Addressing
+ Private IP Addresses are not routable via the Internet
– Used in Closed networks
–
LANs, WANs, CANs, MANs
– 10.0.0.0 – 10.255.255.254
– 172.16.0.0 – 172.31.255.255
– 192.168.0.0 – 192.168.255.255
– 169.254.1.0 – 169.254.254.255 – link-local address (APIPA)
– 127.0.0.0 – 127.255.255.255 – localhost
– 100.64.0.0 – 100.127.255.255 - Carrier Grade NAT (RFC6598)
©2012 ClearOne Communications. Confidential and proprietary.
IP Addressing
IP Addressing
255.0.0.0 -- class A (16, 777,216)
255.255.0.0 -- class B (65,536)
255.255.255.0 -- class C (256)
©2012 ClearOne Communications. Confidential and proprietary.
IP Address Example
32 bits in length
•
Network
4 octets, 8 bits in length
each.
IP Address
Subnet mask
Subnet Mask
Address
Range
©2012 ClearOne Communications. Confidential and proprietary.
-
Host
IP Address Example
©2012 ClearOne Communications. Confidential and proprietary.
IP Address Example
©2012 ClearOne Communications. Confidential and proprietary.
IP Address Example
©2012 ClearOne Communications. Confidential and proprietary.
IP Address
192.168.23.45 - Host
255.255.255.0 - Subnet
192.168.23.1 – Default Gateway
MAIN Street
CENTER Street
©2012 ClearOne Communications. Confidential and proprietary.
IP Address
192.168.23.45 - Host
255.255.255.0 - Subnet
192.168.23.1 – Default Gateway
192.168.24.47
©2012 ClearOne Communications. Confidential and proprietary.
IP Address “AND”ing
+ ANDing
– The process used by a source device to find out if the destination
device is on the same network or on a different network
– 1 AND 1 = 1
– 1 AND 0 = 0
– 0 AND 0 = 0
– 0 AND 1 = 0
©2012 ClearOne Communications. Confidential and proprietary.
IP Address “AND”ing
My IP Address: 192.168.23.45
11000000. 10101000. 00010111.00101101
My Subnet Mask: 255.255.255.0
11111111. 11111111. 11111111. 00000000
“AND”ing equals 192.168.23.0
11000000. 10101000. 00010111.00000000
Network
Dest. IP Address: 192.168.24.47
Network
Network
Host
11000000. 10101000. 00011000.00101111
Dest. Subnet Mask: 255.255.255.0 11111111. 11111111. 11111111. 00000000
“AND”ing equals 192.168.24.0
11000000. 10101000. 00011000. 00000000
Network
©2012 ClearOne Communications. Confidential and proprietary.
Network
Network
Host
IP Address “AND”ing
My IP Address: 192.168.23.45
11000000. 10101000. 00010111.00101101
My Subnet Mask: 255.255.255.0
11111111. 11111111. 11111111. 00000000
“AND”ing equals 192.168.23.0
11000000. 10101000. 00010111.00000000
Network
Network
Network
Host
Dest. IP Address: 192.168.24.47
11000000. 10101000. 00011000.00101111
Dest. Subnet Mask: 255.255.255.0
11111111. 11111111. 11111111. 00000000
“AND”ing equals 192.168.24.0
11000000. 10101000. 00011000. 00000000
Network
©2012 ClearOne Communications. Confidential and proprietary.
Network
Network
Host
IP Address Routing
192.168.23.45 - Host
255.255.255.0 – Subnet
192.168.23.1 – Default Gateway
Checking
Routing
Table
192.168.24.47
Router is my
“Post Office”
©2012 ClearOne Communications. Confidential and proprietary.
Assigning IP Address’
+ DHCP
+ Static
+ Link-Local (APIPA)
©2012 ClearOne Communications. Confidential and proprietary.
DHCP-Dynamic Host Configuration Protocol
+
+
+
+
Easy way to assign IP addresses to hosts
Helps prevent duplicate IP addresses
Most home routers have server built in
Can configure router to specify which addresses to assign
–
Configure Lease time
•
How long a client can keep IP address before renewing
•
IP address can change!!!
DHCP Server
DHCP Client
Where is my Server?
I am here! Use 192.168.23.45
I want to use 192.168.23.45
ACK! You are using 192.168.23.45
©2012 ClearOne Communications. Confidential and proprietary.
Static IP Addressing
+ More difficult to Maintain
+ User error can cause
–
–
Duplicate IP’s
Incorrect input
+ Much longer to set up
–
Must set IP address on all devices, not server centric
+ Why use Static IP’s?
–
Video Conferencing Units
– NetPoint
– Cameras
– Media Servers
– Virtual controls
– Third Party controls using IP
– Gateway Routers need to be static
No DHCP server available
©2012 ClearOne Communications. Confidential and proprietary.
Automatic Private IP Addressing (APIPA)
+ Link-Local Address
+ 169.254.1.0 – 169.254.254.255
– 169.254.0.0 /24 and 169.254.255.0 /24 are reserved
+
+
+
+
No DHCP server available
Primary configuration method fails
Not Routable!
DHCP server lease will override this address configuration
©2012 ClearOne Communications. Confidential and proprietary.
IP Addressing
+ IP addressing
+ Networking Ports
+ Network Address Translation
+ Firewalls
©2012 ClearOne Communications. Confidential and proprietary.
Network Ports
+ “…an application-specific or process-specific software construct
serving as a communications endpoint in a computer's host
operating system. A port is associated with an IP address of the host,
as well as the type of protocol used for communication” (Wikipedia,
January 31, 2013).
+ Multiplexing
– “Door” to different applications running on a computer
©2012 ClearOne Communications. Confidential and proprietary.
Network Ports
+ Network Ports
– Specific to an application serving as a communication point in a
computer’s operating system
– 16 bits in length
– 1 – 65535
– UDP or TCP ports
– Well Known Ports
•
1 – 1023
– 23 = Telnet
– 25 = SMTP
– 80 = HTTP
– 389 = LDAP
10.0.0.4:1720
IP Address
©2012 ClearOne Communications. Confidential and proprietary.
Port
IP Address Routing
192.168.23.45 - Host
255.255.255.0 – Subnet
192.168.23.1 – Default Gateway
Checking
Routing
Table
192.168.24.47
Router is my
“Post Office”
©2012 ClearOne Communications. Confidential and proprietary.
Network Ports
192.168.24.47
Jane Doe
192.168.24.47
©2012 ClearOne Communications. Confidential and proprietary.
Network Ports
Jane Doe
192.168.24.47
Apartment 1720
©2012 ClearOne Communications. Confidential and proprietary.
192.168.24.47
Network Port examples
Network Port
©2012 ClearOne Communications. Confidential and proprietary.
Network Port example
EMai
l
Web
Telnet
VC
©2012 ClearOne Communications. Confidential and proprietary.
Network Ports
Sent from my Computer
Source Port
Destination Port
©2012 ClearOne Communications. Confidential and proprietary.
Sent from Yahoo Server
IP Addressing
+ IP addressing
+ Networking Ports
+ Network Address Translation
+ Firewalls
©2012 ClearOne Communications. Confidential and proprietary.
Network Address Translation
+ How does my computer with a private IP, communicate on the Internet?
–
IPv4 provides ~4.3 billion addresses
Many are reserved
–
Every device on Internet requires unique address
+ Network Address Translation
NAT (RFC3022)
•
–
–
–
Allows router to act as agent between private and public network
Changes IP information in transit
Allows Enterprise to use one set of IP Addresses internally and another
externally
“Hides” internal IP addresses from outside world
©2012 ClearOne Communications. Confidential and proprietary.
Network Address Translation
192.168.23.45
A 192.168.23.45
216.51.70.10
B 192.168.23.46
216.51.70.11
C 192.168.23.47
216.51.70.12
Private IP
Internet
Public IP
A
192.168.23.46
B
216.51.70.11
192.168.23.47
C
+ Static NAT
>
Mapping Private IP addresses to Public IP addresses
on a one-to-one basis
> Address
mapping
not change
©2012 ClearOne
Communications.
Confidential anddoes
proprietary.
Network Address Translation
192.168.23.45
A 192.168.23.45
216.51.70.20
B 192.168.23.46
216.51.70.67
C 192.168.23.47
216.51.70.29
Private IP
These address’ can
change
Internet
Public IP
A
192.168.23.46
B
192.168.23.47
C
+ Dynamic NAT
> Maps internal IPs to a Pool of External IPs
> Many-to-Many
> Address
mapping
change
©2012 ClearOne
Communications.
Confidential andCAN
proprietary.
216.51.70.67
Network Address Translation
A
192.168.23.45
216.51.70.20
100
B
192.168.23.46
216.51.70.20
200
C
192.168.23.47
216.51.70.20
300
Public IP
Port
192.168.23.45
Private IP
A
192.168.23.46
B
192.168.23.47
C
+ Overloading
> Maps many internal IPs to a single external IP
> Many-to-One
> Port
Address
Translation
©2012 ClearOne
Communications.
Confidential
and proprietary.
216.51.70.67:200
Internet
IP Addressing
+ IP addressing
+ Networking Ports
+ Network Address Translation
+ Firewalls
©2012 ClearOne Communications. Confidential and proprietary.
Firewalls
+ Firewalls
–
–
–
Software based
Hardware based
Protects private network
+ Packet Filters
–
–
Based on IP addresses, Protocols, Port Numbers
Stateful or Stateless
+ Application-Layer
–
–
Examines process of data packets
Application Layer Filters
+ Proxies
+ Network Address Translation
©2012 ClearOne Communications. Confidential and proprietary.
Firewall Traversal
Enterprise LAN
WAN/Internet
DMZ
©2012 ClearOne Communications. Confidential and proprietary.
Internal
Network
Firewall Traversal
A
192.168.23.45 Outbound to
216.51.70.10 from port 1720
B
192.168.23.46 Outbound to
216.51.70.11 from port 34562
192.168.23.45
Internet
A
216.51.70.10
192.168.23.46
216.51.70.11
192.168.23.46:21
192.168.23.46:34562
Denied
B
Denied
216.51.70.12
192.168.23.47
C
©2012 ClearOne Communications. Confidential and proprietary.
H.323 and Ports
+
Collaborate Video Conferencing Ports
–
–
–
–
–
–
–
–
–
–
–
–
–
–
–
–
389 Static TCP LDAP
1718 Static UDP Gatekeeper discovery
1719 Static UDP Gatekeeper ,RAS (Registration Admission & Status )
1720 Static TCP Q.931 (Call Setup)
1731 Static TCP Audio control
5004-6004 Dynamic TCP H.245 (Call Parameters)
(5004-5035) Dynamic TCP/UDP H235/RTP
5004-6004 Dynamic UDP (RTP) Video Data Streams, (RTP) Audio Data Streams, (RTCP)
Control Information
3000 Static TCP Collaborate VCB for 1 service
3001 Static TCP Collaborate VCB for 2 services
22136 Static TCP ClearOne Collaborate Central - Remote ClearOne Endpoint Admin
26505 Static TCP ClearOne Collaborate Central - Remote Console Login
Ports to open when using SIP:
5060 TCP and UDP
5004 UDP
10000 UDP (SIP gate service - usually 3478/9)
16348-32768 UDP (RTP, RTCP multimedia streaming)
©2012 ClearOne Communications. Confidential and proprietary.
No Firewall Traversal
VCB
©2012 ClearOne Communications. Confidential and proprietary.
Firewall traversal without NetPoint
VCB
Open Ports:
1718 – 1719 UDP
1720, 1731 TCP
18100 – 18999 UDP/TCP*
389 TCP
©2012 ClearOne Communications. Confidential and proprietary.
80 TCP
26505, 22136 TCP
Firewall Traversal with NetPoint
VCB
Server
Open Ports:
15100 TCP
15101 - 102
UDP
©2012 ClearOne Communications. Confidential and proprietary.
389 TCP
IP Addressing
+ IP addressing
+ Networking Ports
+ Network Address Translation
+ Firewalls
©2012 ClearOne Communications. Confidential and proprietary.
Streaming Your Video Conference
Multicast and Unicast
©2012 ClearOne Communications. Confidential and proprietary.
Video Conference Streaming
+ Streaming your Video Conference
> Cost effective way to get your message to the masses
+ Multicast Streaming
–
–
–
–
One to many stream
Saves bandwidth
Not enabled over Internet
Requires multicast viewer
+ Unicast Streaming
–
–
–
–
Many – to – Many
Uses more bandwidth
Can be used over Internet
Requires Windows media player or other compatible viewer
©2012 ClearOne Communications. Confidential and proprietary.
Multicast Streaming
Multicast
Stream
Source
S
W
I
T
C
H
One-to-Many
©2012 ClearOne Communications. Confidential and proprietary.
I want this service
Multicast Streaming
Multicast
Stream
Source
S
W
I
T
C
H
One-to-Many
1024 Kbps
©2012 ClearOne Communications. Confidential and proprietary.
Unicast Streaming
Unicast Stream 1
Unicast Stream 2
Unicast Stream 3
Source
S
W
I
T
C
H
Many-to-Many
©2012 ClearOne Communications. Confidential and proprietary.
Unicast Stream 2
Unicast Streaming
Unicast Stream 1
Unicast Stream 2
Unicast Stream 3
Source
S
W
I
T
C
H
Unicast Stream 2
1024 Kbps X 3
1024 Kbps
©2012 ClearOne Communications. Confidential and proprietary.
Collaborate Streaming
+ Collaborate Room
– Multicast capable
•
# of viewers is dependent on network
– Unicast capable
•
Up to 20 Sstreams
+ Collaborate VCB
– Multicast capable
•
# of viewers is dependent on network
– Unicast Capable
•
Up to 50 Streams
+ Collaborate Desktop
– Multicast capable
•
# of viewers is dependent on network
– Unicast capable
•
Up to 20 Streams
©2012 ClearOne Communications. Confidential and proprietary.
Multicast and Unicast Streaming
LAN
Internet
Multicast
Streams
SWITCH
Source
©2012 ClearOne Communications. Confidential and proprietary.
Multicast and Unicast Streaming
LAN
Internet
Unicast
Streams
Multicast
Streams
SWITCH
Source
©2012 ClearOne Communications. Confidential and proprietary.
Multicast and Unicast Streaming
LAN
Internet
Unicast
Streams
SWITCH
Source
©2012 ClearOne Communications. Confidential and proprietary.
Thank You For Your Time
www.clearone.com
©2012 ClearOne Communications. Confidential and proprietary.