Get AI summaries of any video or article — Sign up free
REAL LIFE example!! (TCP/IP and OSI layers) // FREE CCNA // EP 4 thumbnail

REAL LIFE example!! (TCP/IP and OSI layers) // FREE CCNA // EP 4

NetworkChuck·
5 min read

Based on NetworkChuck's video on YouTube. If you like this content, support the original creators by watching, liking and subscribing to their content.

TL;DR

HTTPS web access maps to TCP port 443 at the transport layer, with TCP chosen for connection-oriented reliable delivery.

Briefing

A packet’s journey from a web browser to a web server becomes clear when each protocol layer adds its own “envelope,” then strips those envelopes back off at the destination. Using a Packet Tracer simulation, the walkthrough follows “Johnny” requesting a secure website (HTTPS) to order coffee, showing how application data turns into a TCP segment, then into an IP packet, then into a MAC-addressed Ethernet frame—crossing switches and routers until the server finally hands the request to the application.

The process starts at the application layer (OSI layer 7), where the browser generates an HTTP request wrapped for HTTPS. The key detail is that the browser’s job is to produce the web request; the networking stack’s job is to move it reliably across the network. Next comes the transport layer (OSI layer 4), where the data is prepared for delivery using TCP or UDP. Here, the destination port is 443, the standard port for HTTPS. The transport layer adds a TCP header, turning the application data into a “segment.” That encapsulation step matters because it creates the metadata needed for delivery and reassembly.

At the network layer (OSI layer 3), the segment is encapsulated again with IP addressing. The header includes a source IP (Johnny’s) and a destination IP (the server’s). Once the router receives this layer-3 information, it can consult its routing table to decide where the packet should go next. But routers can’t rely on IP alone when forwarding across local links; they must translate to link-layer addressing.

That translation happens at the data link layer (OSI layer 2), where MAC addresses and switching come into play. The frame includes a source MAC (the sender) and a destination MAC (the next hop). When Johnny’s frame reaches a switch, the switch reads only the MAC destination, checks its CAM table, and forwards the frame out the correct port toward the router. The router then de-encapsulates to inspect the IP header, looks up the destination network, and re-encapsulates the packet into a new Ethernet frame with updated MAC addresses. The next switch repeats the same MAC-based forwarding logic until the frame reaches the server.

When the server receives the Ethernet frame, it reverses the process: it verifies the frame is addressed to its MAC, checks the IP header, confirms the transport protocol and port (TCP/443), and finally passes the payload up to the application layer where HTTPS/browser processing can occur. The cycle then repeats in the opposite direction as the server responds.

The session ends with two CCNA/CCNP-style quiz questions: one asks which functions belong to the OSI application layer (including items that are sometimes associated with presentation/session in the OSI model), and the other asks which protocol relies on a three-way handshake for connection-oriented reliable transfer—TCP, not UDP. The takeaway is that end-to-end web access is really a chain of encapsulation and de-encapsulation across layers, with TCP/443 and IP addressing doing the heavy lifting for reliability and routing.

Cornell Notes

The walkthrough follows an HTTPS request from a client to a server by mapping each step to OSI layers while using the TCP/IP model in practice. The browser creates an application-layer request (HTTP over HTTPS), then the transport layer adds TCP details and port 443, producing a segment. The network layer adds IP addresses to form a packet, and the data link layer adds MAC addresses to form a frame for Ethernet switching. Switches forward frames using MAC addresses and CAM tables, while routers inspect IP headers to choose routes and then rebuild Ethernet frames with new MAC addresses. The server reverses the process—MAC, IP, TCP/443—before delivering the payload to the application layer.

Why does HTTPS traffic show up on destination port 443 in the transport layer?

HTTPS is associated with TCP port 443. In the simulation, the transport header includes destination port 443, which signals that the payload should be handled as secure web traffic. The transport layer also selects TCP (not UDP) for this flow, aligning with the need for reliable, connection-oriented delivery.

What changes when a packet moves from a switch to a router?

A switch forwards based on layer-2 MAC addresses only: it reads the destination MAC in the Ethernet frame and consults its CAM table to pick the outgoing port. A router, by contrast, inspects the layer-3 IP header (source/destination IP) to determine the next hop using its routing table. After choosing a route, the router re-encapsulates the data into a new layer-2 frame with updated source/destination MAC addresses.

How does encapsulation create the “envelopes” needed for delivery across multiple networks?

Encapsulation happens at each layer as data moves downward. Application data is wrapped with an application protocol context (HTTP request under HTTPS). The transport layer adds a TCP header, turning the payload into a segment. The network layer adds an IP header, turning it into a packet. The data link layer adds a MAC-based Ethernet header (and trailer), turning it into a frame. Each hop device opens only the layer it understands (switch: layer 2; router: layer 3; server: all layers in reverse).

What does a switch do with the frame it receives, and what does it ignore?

The switch opens the Ethernet frame just enough to read layer-2 information—especially the destination MAC address. It ignores higher-layer contents (IP, TCP, HTTP) because it can’t route based on them. Using the CAM table, it forwards the frame out the port associated with that destination MAC (e.g., toward the router).

Which protocol provides connection-oriented reliable delivery using a three-way handshake?

TCP. The quiz at the end contrasts TCP with UDP: UDP is faster but not reliable in the same connection-oriented way. TCP uses a three-way handshake to establish a connection before reliable data transfer, which is why it fits the “connection-oriented reliable data transfer” description.

How does the server know what to do once the frame arrives?

The server first checks the Ethernet frame’s destination MAC to confirm it’s addressed to it. It then de-encapsulates to the IP layer to verify the destination IP. Next it processes the transport layer, recognizing TCP and port 443. Finally, the application layer handles the HTTPS/browser-related request payload (the HTTP request carried inside the secure session).

Review Questions

  1. In the encapsulation chain, what metadata is added at layers 4, 3, and 2, and how does each layer’s metadata get used by the next hop device?
  2. When a router forwards traffic, which header does it inspect to choose a route, and which header does it rebuild before sending to the next switch?
  3. Why does a switch rely on MAC addresses (CAM table) instead of IP addresses when forwarding frames?

Key Points

  1. 1

    HTTPS web access maps to TCP port 443 at the transport layer, with TCP chosen for connection-oriented reliable delivery.

  2. 2

    Each OSI layer adds its own header as data moves downward, turning application data into a segment, then a packet, then a frame.

  3. 3

    Switches forward frames using layer-2 MAC addresses and CAM table lookups, without interpreting IP or TCP contents.

  4. 4

    Routers inspect layer-3 IP headers to select the next hop, then re-encapsulate the traffic into new Ethernet frames with updated MAC addresses.

  5. 5

    The destination server reverses the process in order: verify MAC, process IP, process TCP/443, then deliver the payload to the application layer.

  6. 6

    End-to-end communication is a repeated encapsulation/de-encapsulation cycle across multiple devices (client → switch → router → switch → server).

Highlights

A single HTTPS request becomes multiple nested “envelopes”: TCP segment → IP packet → Ethernet frame.
Switches only understand layer 2, so they forward strictly by destination MAC using the CAM table.
Routers bridge layer 3 and layer 2 by inspecting IP headers and then rebuilding Ethernet frames with new MAC addresses.
TCP’s three-way handshake is tied to connection-oriented reliable delivery, unlike UDP.
Port 443 is the transport-layer anchor for HTTPS traffic in the example.

Topics

  • OSI Layers
  • TCP/IP Encapsulation
  • HTTPS Port 443
  • Switch CAM Table
  • Router Re-encapsulation

Mentioned

  • TCP
  • UDP
  • OSI
  • IP
  • HTTP
  • HTTPS
  • CCNA
  • CCNP
  • CAM

Get summaries like this for any content

Videos, articles, research papers — all summarized by AI and searchable in one place.

Start building your library