Networking - HackMD

# Networking #### The topics to be prepared for the technical phone interview. ## Difference between Router & Switch #### Switch: #####   1. Typically belongs to L2. #####   2. An LAN consist of switches. #####   3. Just forwards packets according MAC address. #### Router: #####   1. Typically belongs to L3. #####   2. Focus on Routing amongs networks. #####   3. Separate the broadcast domain. #####   4. Transmit packets according IP address. #####   5. Discard broadcast packets. ## What is a Broadcast Domain? #####   The zone that the broadcast packets could reach is a broadcast domain. #####   Typically, The devices connected by the same switch belong to the same broadcast domain. #####   The different broadcast domains could be separated by the different ports of the router. ## DHCP DORA process #### DHCP: #####   IP address could be divided into Public and Private IP address. #####   In LAN, we usually use private IP addresses due to the space of IP addresses of IPv4 is not enough. #####   And that private IP address is provided by DHCP. #### DORA: #### ・Discover ![](https://i.imgur.com/Rb04SpE.png) #####     1. Client discover DHCP server. #####     2. Discover message always broadcast at the network and data link layer. #### ・Offer ![](https://i.imgur.com/QtiESpj.png) #####     1. Broadcast at Network Layer, Unicast at Data Link Layer. #####     2. The client didn’t get an IP address yet from DHCP Server. #### ・Request ![](https://i.imgur.com/JkBl0de.png) #####     1. Broadcast at Network Layer, Unicast at Data Link Layer. (same as DHCP Offer) #####     2. The client might have received Offer from more than one DHCP server in their domain. #####     3. So that broadcast is because to notify another server to release these IP they assigned. #### ・Acknowledge ![](https://i.imgur.com/Sbn5Seg.png) #####     1. Broadcast at Network Layer, Unicast at Data Link Layer. (same as DHCP Offer) #####     2. After this message, the DHCP client will get an IP address. ## DNS – detailed explanation. TCP/UDP and why? ![](https://i.imgur.com/mAdCpSA.png) ####   1. Resolve domain name to IP address ####   2. Typically has ***MASTER*** and ***SLAVE*** dns server. ####   3. SLAVE DNS server has to copy the contents from MASTER DNS server when it was lunched, it's called zone transfer and use TCP. Because the contents size are always larger than a single request. ####   4. Others situations used UDP so that can avoid 3-way handshake or other overhead. ## Subnetting ####   To avoid the unnecessary packets that exist within a LAN. ## MSS/MTU #### MTU (Maxitum Transmission Unit) #####   1. It's called MTU that the limited frame size among routers. Because the size of the frame is not unlimited when transmission. #####   2. If there is a packet size larger than MTU, then it needs to be segmented. #### MSS (Maxitum Segment Size) #####   1. The max packet's payload size that could be transmitted. #####   2. The final MSS between sender & receiver = min{ MTU of both side } - 40 #####   *//40 = IP header + TCP header* ## Complete flow when you trigger amazon.com #### same as question: DNS – detailed explanation. ## OSI model with complete details and protocols on each layer. ####   Application: DHCP, HTTP, FTP, SSH ####   Presentation: Encryptions and Compression (ex. JPEG or PNG) ####   Session: Socket ####   Transport: TCP, UDP, SCTP ####   Network: ICMP, IP, IPSec ####   Data Link: ARP, PPP, PPPoE ####   Physical: Fiber, Wireless ## TCP and SSL handshake ####   TCP: Three-way handshake ####   SSL: Establish after TCP handshake. ![](https://i.imgur.com/74ZUsZZ.png) ####   1. Authentication: 1~5 //step 4 is optional ####   2. Key Exchange: Typically uses Diffie-Hellman algorithm ####   3. Encrypted Data Transfer (Record): Provide confidentiality & integrity ## Difference between TCP/UDP, examples ![](https://i.imgur.com/M5Kx3SB.png) ######   *ref: https://www.guru99.com/tcp-vs-udp-understanding-the-difference.html* ![](https://i.imgur.com/6kmAD2i.png) ######   *ref: https://www.homenethowto.com/ports-and-nat/udp-and-tcp-two-ways-of-sending-traffic/* ## Flow/Error control #### **Flow control** #####   Flow control tells the sender how much data should be sent to the receiver so that it is not lost. ##### **・Stop and Wait Protocol** ##### **・Sliding Window Protocol** #### **Error control** ##### ・**Error Detection** #####     1. CRC (Circular Redundancy Check) #####     2. Parity Check #####     3. Checksum ##### ・**Retransmission** #####     1. Stop-&-Wait #####     2. Go-back N #####     3. Selective Repeat ## What is a firewall, why do you need it? #### What is: #####   It can be software, hardware or both, and it at the middle between Intranet and Internet that can control and check the network event.   It can isolate the network and makes some access control to handle the network events. #### Why do I need: #####   Because with a firewall you can completely prevent unauthorised access to your computers and network. Without it, your network is open to threats. ## OSI Model #####   The OSI Model (Open Systems Interconnection Model) is a conceptual framework used to describe the functions of a networking system.   The OSI model characterizes computing functions into a universal set of rules and requirements in order to support interoperability between different products and software. ## What is HTTP Cookie? #####   HTTP is a stateless protocol which means every request is Independent for server, so we can introduce COOKIE in order to remember the client's information. #####   **Cookie** and **Session** is stored at client side and server side respectively. #####   **Session** stores some sensitive data i.e. Login information, information about cart... #####   **Cookie** stores the session ID so that when a client sends a request with a Cookie, the server can find the corresponding client's information based on the session ID. ## Difference HTTP keepalive and TCP Keepalive? #####   HTTP Keep-alive timeout is mostly controlled by the server. Example, Server says, if you don't send me a request, after 15 seconds of idleness, I will close the connection.   When server closes the connection, the TCP idle timeout is irrelevant, because connection is explicitly being closed.   So in effect, http keep-alive timeout overrides the TCP one. If conneciton is closed for any reason, then client must initiate a new connection to send a new request.   The TCP idle timeout is only in effect if the connection is idle (no data transmitted) and the connection was not closed for any other reason (such as http keep-alive timeout). You can think of it as the default timeout when nothing else closes the connection. ######   *ref:https://devcentral.f5.com/s/question/0D51T00006j2lGH/tcp-keepalive-v-http-keepalive* ## How HTTP cached work? ######   *ref:https://devcenter.heroku.com/articles/increasing-application-performance-with-http-cache-headers#implementation*