spacer.png, 0 kB
Members: 3248
News: 1346
Web Links: 2
We have 3 guests online

spacer.png, 0 kB
 spacer.png, 0 kB

Latest News

Popular

Home arrow General Articles arrow Foundations: What Are OSI Layers?
Foundations: What Are OSI Layers? Print E-mail

By Corey Nachreiner, Network Security Analyst, WatchGuard Technologies

Scenarios from the confusing life of a new network administrator:

  • Your company just hired six people. When you try to hook their computers to your small network, you find your switch has run out of connections. You jet to Fry's and ask a sales person if they stock switches. He replies, "Sure! Would you like a Layer 2 or Layer 3 switch?"
  • A friend and fellow IT expert visits your office to pick you up. He follows you into your LAN room and notices your ancient firewall (you haven't gotten around to installing your new Firebox X). He sighs and says, "I can't believe you still use that outdated Layer 3 and 4 firewall. How do you protect layers five through seven?"
  • You're having lunch at a burger joint that's popular with the local IT crowd. You overhear a veteran admin complain about her users, "Yeah, I followed up on Jerry's so-called network problem. It was a Layer 8 issue."

If all the "layer" talk in the scenarios above makes perfect sense to you, move on. There's nothing for you to see here. However, if you find yourself wondering why this security article reads like Cake Baking 101, read on to discover the OSI networking framework model and its seven layers.

The OSI what?

Networked devices use hundreds of officially specified protocols, technologies and media to communicate with one another. Adding to the confusion, manufacturers invent their own proprietary network protocols and technologies. With such a varied menagerie of network devices all communicating via different methods, how can they understand each other? Heck, when we talk about this stuff, how can we understand each other?

The solution is the Open System Interconnection (OSI) networking framework model, or simply the OSI model. The International Organization for Standardization (ISO) first introduced the OSI model in 1984 as a conceptual reference that breaks the process of sending computerized messages into seven simplified and sequential steps, called layers (or, sometimes, a protocol stack). Note that word conceptual.The layers are not physical or even "real" (except for Layer 1, as you'll see); they simply provide a way of thinking and talking about network communications.

Why should I care about the OSI model?

Honestly, you probably don't need to know everything about the OSI layers. Its creators developed it primarily to help network software and hardware manufacturers create compatible products. Unless you make network products, the OSI model's complete details will bore you.

However, network administrators and IT staff refer to the OSI model in conversations all the time. You should understand the gist of this layered model so that you can communicate with your IT colleagues. And, once you become familiar with the layers, they make it easier to reason through networking issues. When you're having network problems, if you can figure out what layer it occurs on, you've narrowed your troubleshooting tremendously.

That's because each layer represents one of the core steps in the process of sending a network message. These sequential layers work independently of one another. They don't have to know what the other layers do or how they do it. They only have to know how to accept data from the layer that comes before and how to forward data to the layer that comes after.

Baking OSI's Seven-Layered Networking Cake

The OSI model consolidates network communications into seven simplified layers. So what are the seven layers? Below, I list them in the order they occur as data gets processed from the sending side of a network communication.

The seven layers are:

  • Application
  • Presentation
  • Session
  • Transport
  • Network
  • Data link
  • Physical

Let's discuss amongst ourselves.

Application (Layer 7)

When a program needs to send a network communication, it first interacts with the application layer. In the OSI context, "application" doesn't mean Excel, Word, or their ilk. Instead, Layer 7 is the protocol a program like Outlook or Internet Explorer uses to send network communications (think SMTP and HTTP). For example, if you use a file transfer program to send a file to a coworker, the program interacts with the application layer and decides what protocol (such as FTP, TFTP or SMB) it will use to send your file.

Presentation (Layer 6)

The presentation layer transforms the data you send into a universally recognizable format. Different devices format data in different ways. If your computer tries to communicate with a different kind of computer, Layer 6 ensures that the other computer can understand the data you send. Layer 6 protocols include ASCII and MIDI. This layer also handles data encryption, when necessary.

Session (Layer 5)

If everyone talks at once, no one hears a thing. The session layer negotiates and maintains your connections to other devices. It makes sure that sending and receiving devices can communicate with each other without "talking" over one another. Layer 5 also handles dismantling the connection when your communication ends. Layer 5 protocols include NetBIOS and session establishment for TCP.

Transport (Layer 4)

The transport layer prepares your data for transmission across the network. Your computer communicates with the receiving computer to decide how to break up your data into separate pieces, how to make sure none of the fragments get lost, and how to verify all the fragments arrived. Layer 4 prepares data in this way using protocols such as TCP or UDP.

Network (Layer 3)

The network layer makes sure your data knows how to get from your network to the network you want to communicate with. In other words, Layer 3 handles Internet Protocol (IP) and routing. Any time an IP address shows up, think "Layer 3." Layer 3 protocols include ICMP, IPSec, ARP, and BGP.

Data Link (Layer 2)

This layer makes sure that your computer's abstract address (for example, its IP address) gets associated with your physical computer. It does so using protocols like MAC. Layer 2 protocols work within a network, but can't travel out to other networks. (Doing so would require routing, which happens at Layer 3.) Layer 2 specifications include Ethernet, Token Ring, and PPP.

Physical (Layer 1)

This is the layer that handles the actual electrical and physical transmission of your data over some sort of network medium. The physical transmission might travel over different types of wires (e.g., shielded, unshielded, twisted pair), through the air (wireless), or even via light (fiber optic). What voltage? How many pins in the cable? Following Layer 1 specifications ensures the data physically gets from one end to the other. Layer 1 specs you might've heard of include RS-232, DSL, and 10Base-T.

When your computer needs to send a network communication, it hands its message to the application layer. The application layer selects a protocol, then passes the data to the presentation layer, and so on. Your data works down through the rest of the OSI layers until it ends up on Layer 1, whereupon it travels over some medium as electronic bits of data. Eventually, the receiving network gets your message and processes it in the reverse order, starting from the physical layer and working the data back up to the application layer. You can find a great graphical analogy to this process on Wikipedia's OSI Model page. For fun, also check out Dick Lewis's humorous James Bond analogy for the OSI model.

How to speak "layer"

Braced by your whirlwind tour of the OSI stack, you can now understand my opening scenes. Revisiting the scenarios, you can probably guess that a Layer 2 (Data Link) switch only handles devices on the same local network, while a Layer 3 (Networking) switch can perform some basic routing to reach other networks. A Layer 3 (Networking) and 4 (Transport) firewall only monitors traffic at the IP address and IP protocol level, while more sophisticated firewalls, like WatchGuard's Firebox II, III and X models, can monitor traffic on Layer 7 (Application) using proxies and application gateways.

Layer 8 doesn't exist in the OSI model, but is a common IT joke. The only thing above Layer 7, the application layer, is the user. So if you have a Layer 8 problem, your "network problem" is the user's fault.

The OSI model provides a convenient way for you to communicate complicated network concepts quickly. Basic knowledge of the OSI model will prevent those pesky, network show-offs from stumping you with their "layer" talk ever again. And it just might help you grasp what the heck is happening on the network you inherited. Check the references below to fine-tune your personal internal Layer 8 communications! #

References:

Online:

Wikipedia OSI Model

Webopedia's OSI Definition

Fundamentals of The 7 Layer OSI Model, by Dick Lewis

Books:

CISSP for Dummies, by Lawrence Miller and Peter Gregory

All-In-One CISSP Certification Exam Guide 2nd Edition, by Shon Harris

Eric Cole's SANS Security Essentials class contains an outstanding explanation of the OSI model.

Related Items:
 
< Prev   Next >
[ Back ]
© 2008 DataStronghold.com
Joomla! is Free Software released under the GNU/GPL License.
 spacer.png, 0 kB
spacer.png, 0 kB
spacer.png, 0 kB
 spacer.png, 0 kB
ss_blog_claim=69052e837be509b449eef698573ca058