The discussion in this section is limited to IPv4 networks. For information about IPv6 protocol, the successor to IPv4, refer to Section 14.2, IPv6—The Next Generation Internet.
Every computer on the Internet has a unique 32-bit address. These 32 bits (or 4 bytes) are normally written as illustrated in the second row in Example 14-1.
Example 14-1 Writing IP Addresses
IP Address (binary): 11000000 10101000 00000000 00010100 IP Address (decimal): 192. 168. 0. 20
In decimal form, the four bytes are written in the decimal number system, separated by periods. The IP address is assigned to a host or a network interface. It cannot be used anywhere else in the world. There are exceptions to this rule, but these are not relevant in the following passages.
The points in IP addresses indicate the hierarchical system. Until the 1990s, IP addresses were strictly categorized in classes. However, this system has proven too inflexible and was discontinued. Now, classless routing (CIDR, classless interdomain routing) is used.
Netmasks are used to define the address range of a subnetwork. If two
hosts are in the same subnetwork, they can reach each other directly, if
they are not in the same subnetwork, they need the address of a gateway
that handles all the traffic between the subnetwork and the rest of the
world. To check if two IP addresses are in the same subnet, simply
AND
both addresses with the netmask. If the result is
identical, both IP addresses are in the same local network. If there are
differences, the remote IP address, and thus the remote interface, can
only be reached over a gateway.
To understand how the netmask works, look at Example 14-2. The netmask consists of 32 bits that identify how much of an IP address belongs to the network. All those bits that are 1 mark the corresponding bit in the IP address as belonging to the network. All bits that are 0 mark bits inside the subnetwork. This means that the more bits are 1, the smaller the subnetwork is. Because the netmask always consists of several successive 1 bits, it is also possible to just count the number of bits in the netmask. In Example 14-2 the first net with 24 bits could also be written as 192.168.0.0/24.
Example 14-2 Linking IP Addresses to the Netmask
IP address (192.168.0.20): 11000000 10101000 00000000 00010100 Netmask (255.255.255.0): 11111111 11111111 11111111 00000000 --------------------------------------------------------------- Result of the link: 11000000 10101000 00000000 00000000 In the decimal system: 192. 168. 0. 0 IP address (213.95.15.200): 11010101 10111111 00001111 11001000 Netmask (255.255.255.0): 11111111 11111111 11111111 00000000 --------------------------------------------------------------- Result of the link: 11010101 10111111 00001111 00000000 In the decimal system: 213. 95. 15. 0
To give another example: all machines connected with the same ethernet cable are usually located in the same subnetwork and are directly accessible. Even when the subnet is physically divided by switches or bridges, these hosts can still be reached directly.
IP addresses outside the local subnet can only be reached if a gateway is configured for the target network. In the most common case, there is only one gateway that handles all traffic that is external. However, it is also possible to configure several gateways for different subnets.
If a gateway has been configured, all external IP packets are sent to the appropriate gateway. This gateway then attempts to forward the packets in the same manner—from host to host—until it reaches the destination host or the packet's TTL (time to live) expires.
Table 14-2 Specific Addresses
Address Type |
Description |
---|---|
Base Network Address |
This is the netmask AND any address in the network, as shown in Example 14-2 under Result. This address cannot be assigned to any hosts. |
Broadcast Address |
This basically says, |
Local Host |
The address 127.0.0.1 is
assigned to the |
Because IP addresses must be unique all over the world, you cannot just select random addresses. There are three address domains to use if you want to set up a private IP-based network. These cannot get any connection from the rest of the Internet, because they cannot be transmitted over the Internet. These address domains are specified in RFC 1597 and listed in Table 14-3.
Table 14-3 Private IP Address Domains
Network/Netmask |
Domain |
---|---|
10.0.0.0/255.0.0.0 |
10.x.x.x |
172.16.0.0/255.240.0.0 |
172.16.x.x – 172.31.x.x |
192.168.0.0/255.255.0.0 |
192.168.x.x |