Transcript Document

• ICMP
https://store.theartofservice.com/itil-2011-foundation-complete-certification-kit-fourth-edition-study-guide-ebook-and-online-course.html
ICMPv6 Packet format
1
The checksum field provides a minimal level
of integrity verification for the ICMP message.
https://store.theartofservice.com/itil-2011-foundation-complete-certification-kit-fourth-edition-study-guide-ebook-and-online-course.html
ICMPv6 Message processing
1
An ICMP error message must never be sent in
response to another ICMP error message.
https://store.theartofservice.com/itil-2011-foundation-complete-certification-kit-fourth-edition-study-guide-ebook-and-online-course.html
Ping (networking utility) ICMP packet
1
Checksum (16 bits), calculated with the
ICMP part of the packet (the IP header is
not used). It is the 16-bit one's
complement of the one's complement sum
of the ICMP message starting with the
Type field
https://store.theartofservice.com/itil-2011-foundation-complete-certification-kit-fourth-edition-study-guide-ebook-and-online-course.html
Ping (networking utility) ICMP packet
1
Header Data (32 bits) field, which in this
case (ICMP echo request and replies), will
be composed of identifier (16 bits) and
sequence number (16 bits).
https://store.theartofservice.com/itil-2011-foundation-complete-certification-kit-fourth-edition-study-guide-ebook-and-online-course.html
ICMPv6
1
Internet Control Message Protocol version
6 (ICMPv6) is the implementation of the
Internet Control Message Protocol (ICMP)
for Internet Protocol version 6 (IPv6)
defined in RFC 4443. ICMPv6 is an
integral part of IPv6 and performs error
reporting and diagnostic functions (e.g.,
ping), and has a framework for extensions
to implement future changes.
https://store.theartofservice.com/itil-2011-foundation-complete-certification-kit-fourth-edition-study-guide-ebook-and-online-course.html
ICMPv6
Several extensions have been published,
defining new ICMPv6 message types as well
as new options for existing ICMPv6 message
types. Neighbor Discovery Protocol (NDP) is
a node discovery protocol in IPv6 which
replaces and enhances functions of ARP.
Secure Neighbor Discovery Protocol (SEND)
is an extension of NDP with extra security.
Multicast Router Discovery (MRD) allows
discovery of multicast routers.
1
https://store.theartofservice.com/itil-2011-foundation-complete-certification-kit-fourth-edition-study-guide-ebook-and-online-course.html
ICMPv6 - Technical details
1
ICMPv6 messages may be classified into
two categories: error messages and
information messages. ICMPv6 messages
are transported by IPv6 packets in which
the IPv6 Next Header value for ICMPv6 is
set to 58.
https://store.theartofservice.com/itil-2011-foundation-complete-certification-kit-fourth-edition-study-guide-ebook-and-online-course.html
ICMPv6 - Types of ICMPv6 messages
1
139 ICMP Node Information Query 0
The Data field contains an IPv6
address which is the Subject of this
Query.
https://store.theartofservice.com/itil-2011-foundation-complete-certification-kit-fourth-edition-study-guide-ebook-and-online-course.html
ICMPv6 - Types of ICMPv6 messages
1
140 ICMP Node Information Response 0
A successful reply. The Reply Data field
may or may not be empty.
https://store.theartofservice.com/itil-2011-foundation-complete-certification-kit-fourth-edition-study-guide-ebook-and-online-course.html
ICMPv6 - Types of ICMPv6 messages
Note that the table above is not
comprehensive. The current complete list
of assigned ICMPv6 types can be found at
this link: IANA: ICMPv6 Parameters.
1
https://store.theartofservice.com/itil-2011-foundation-complete-certification-kit-fourth-edition-study-guide-ebook-and-online-course.html
ICMPv6 - Message checksum
1
Note that this differs from the way it is
calculated for IPv4 in ICMP, but is
similar to the calculation done in TCP.
https://store.theartofservice.com/itil-2011-foundation-complete-certification-kit-fourth-edition-study-guide-ebook-and-online-course.html
ICMPv6 - Message checksum
1
ICMPv6 pseudoheader
https://store.theartofservice.com/itil-2011-foundation-complete-certification-kit-fourth-edition-study-guide-ebook-and-online-course.html
ICMP Echo Request
Ping operates by sending Internet
Control Message Protocol (ICMP)
echo request packet (information
technology)|packets to the target host
and waiting for an ICMP response
1
https://store.theartofservice.com/itil-2011-foundation-complete-certification-kit-fourth-edition-study-guide-ebook-and-online-course.html
ICMP Echo Request
1
Ping may be abused as a simple form
of denial-of-service attack in the form
of a ping flood, in which the attacker
overwhelms the victim with ICMP
echo request packets.
https://store.theartofservice.com/itil-2011-foundation-complete-certification-kit-fourth-edition-study-guide-ebook-and-online-course.html
ICMP Echo Request - History
The ping utility was authored by Mike
Muuss in December 1983 as a tool to
troubleshoot problems in an IP network.
He was inspired by a remark by
David_L._Mills|David Mills on using ICMP
echo packets for IP network diagnosis
and
measurements.[http://ftp.arl.army.mil/~mik
e/ping.html The Story of the PING
Program], Mike Muuss Mike named it after
the sound that sonar makes, since its
methodology is similar to sonar's echo
location.
1
https://store.theartofservice.com/itil-2011-foundation-complete-certification-kit-fourth-edition-study-guide-ebook-and-online-course.html
ICMP Echo Request - ICMP packet
** Checksum (16 bits), calculated
with the ICMP part of the packet (the
IP header is not used). It is the 16-bit
one's complement of the one's
complement sum of the ICMP
message starting with the Type field
1
https://store.theartofservice.com/itil-2011-foundation-complete-certification-kit-fourth-edition-study-guide-ebook-and-online-course.html
ICMP Echo Request - ICMP packet
1
** Header Data (32 bits) field, which in this
case (ICMP echo request and replies), will
be composed of identifier (16 bits) and
sequence number (16 bits).
https://store.theartofservice.com/itil-2011-foundation-complete-certification-kit-fourth-edition-study-guide-ebook-and-online-course.html
ICMP Echo Request - Echo request
1
The echo request (ping) is an Internet
Control Message Protocol|ICMP
message whose data is expected to be
received back in an echo reply (pong).
The host must respond to all echo
requests with an echo reply
containing the exact data received in
the request message.
https://store.theartofservice.com/itil-2011-foundation-complete-certification-kit-fourth-edition-study-guide-ebook-and-online-course.html
ICMP Echo Request - Echo reply
The echo reply (pong) is an ICMP
message generated in response to an
echo request, and is mandatory for all
hosts and Router (computing)|routers.
1
https://store.theartofservice.com/itil-2011-foundation-complete-certification-kit-fourth-edition-study-guide-ebook-and-online-course.html
ICMP Echo Request - Other replies
In case of error, destination host or
intermediate router will send back an
ICMP error message, i.e. host
unreachable or TTL exceeded in transit.
In addition these messages include the
first 8 bytes of original message (in this
case header of ICMP echo request,
including quench value), so ping utility
can match it to originating query.
1
https://store.theartofservice.com/itil-2011-foundation-complete-certification-kit-fourth-edition-study-guide-ebook-and-online-course.html
ICMP Echo Request - Other types of pinging
In various network multi-player games, a
ping (video gaming)|video game ping
performs a similar function as the ping
program for Internet traffic. The game server
measures the time required for a game
packet to reach a client and a response to be
received. This round-trip time is usually
reported as the player's ping. It is an
effective measurement of the player's latency
(engineering)|latency, with lower ping times
being desirable. This style of ping typically
does not use ICMP packets.
1
https://store.theartofservice.com/itil-2011-foundation-complete-certification-kit-fourth-edition-study-guide-ebook-and-online-course.html
IPv6 transition mechanisms - Stateless IP/ICMP Translation
The prefix was chosen to yield a zerovalued checksum to avoid changes to the
transport protocol header checksum.RFC
2765 - Stateless IP/ICMP Translation
Algorithm (SIIT), E
1
https://store.theartofservice.com/itil-2011-foundation-complete-certification-kit-fourth-edition-study-guide-ebook-and-online-course.html
IPv6 transition mechanisms - Stateless IP/ICMP Translation
The specification is a product of the
NGTRANS IETF working group, and was
initially drafted in February 2000 as RFC
2765 by E. Nordmark of Sun Microsystems.
RFC 2765 was obsoleted by RFC 6145 in
2011.RFC 6145 IP/ICMP Translation
Algorithm The address format part of RFC
2765 is defined in RFC 6052.RFC 6052 IPv6 Addressing of IPv4/IPv6 Translators The
framework of IPv4/IPv6 translation is defined
in RFC 6144.RFC 6144 - Framework for
IPv4/IPv6 Translation
1
https://store.theartofservice.com/itil-2011-foundation-complete-certification-kit-fourth-edition-study-guide-ebook-and-online-course.html
ICMPv6
'Internet Control Message Protocol
version 6' ('ICMPv6') is the implementation
of the Internet Control Message Protocol
(ICMP) for Internet Protocol version 6
(IPv6) defined in RFC 4443.RFC 4443,
Internet Control Message Protocol
(ICMPv6) for the Internet Protocol Version
6 (IPv6) Specification ICMPv6 is an
integral part of IPv6 and performs error
reporting and diagnostic functions (e.g.,
Ping (networking utility)|ping), and has a
framework for extensions to implement
future changes.
1
https://store.theartofservice.com/itil-2011-foundation-complete-certification-kit-fourth-edition-study-guide-ebook-and-online-course.html
SoftEther VPN - VPN over ICMP, and VPN over DNS
1
A few very-restricted networks only
permit to pass Internet Control
Message Protocol|ICMP or DNS
packets. On such a network, TCP or
UDP are filtered. Only ICMP and DNS
are permitted. In order to make it
possible to establish SoftEther VPN
client-server session via such a veryrestricted network, SoftEther VPN has
the VPN over ICMP and the VPN over
https://store.theartofservice.com/itil-2011-foundation-complete-certification-kit-fourth-edition-study-guide-ebook-and-online-course.html
SoftEther VPN - VPN over ICMP, and VPN over DNS
1
Some public Wi-Fi can
pass only ICMP or
DNS packets
https://store.theartofservice.com/itil-2011-foundation-complete-certification-kit-fourth-edition-study-guide-ebook-and-online-course.html
Ping command - ICMP packet
** Payload for the different kind of
answers; can be an arbitrary length,
left to implementation detail.
However, the packet including IP and
ICMP headers must be less than the
maximum transmission unit of the
network or risk being IP
fragmentation|fragmented.
1
https://store.theartofservice.com/itil-2011-foundation-complete-certification-kit-fourth-edition-study-guide-ebook-and-online-course.html
For More Information, Visit:
• https://store.theartofservice.co
m/itil-2011-foundationcomplete-certification-kitfourth-edition-study-guideebook-and-online-course.html
The Art of Service
https://store.theartofservice.com