Presentation is loading. Please wait.

Presentation is loading. Please wait.

1 NAT Network Address Translation Motivation for NAT To solve the insufficient problem of IP addresses IPv6 –All software and hardware need to be updated.

Published bySibyl Green Modified over 8 years ago

Similar presentations

Presentation on theme: "1 NAT Network Address Translation Motivation for NAT To solve the insufficient problem of IP addresses IPv6 –All software and hardware need to be updated."— Presentation transcript:

1

2 1 NAT Network Address Translation

3 Motivation for NAT To solve the insufficient problem of IP addresses IPv6 –All software and hardware need to be updated –High cost Virtual IP Gateway –Used on IPv4 –Let more hosts connect to Internet

4 NAT Example 10.0.0.1 10.0.0.2 10.0.0.3 10.0.0.4 138.76.29.7 local network (e.g., home network) 10.0.0/24 Internet Datagrams with source or destination in this network have 10.0.0.0/24 address for source, destination (as usual) All datagrams leaving local network have same single source NAT IP address: 138.76.29.7, different source port numbers NAT gateway

5 Private IP Addresses The following addresses are reserved for the private network –Class A : 10.0.0.* –Class B : 172.16.*.* to 172.31.*.* –Class C : 192.168.0.* to 192.168.255.* 10.0.0.1 10.0.0.2 10.0.0.3 10.0.0.4 Closed local network 10.0.0/24

6 Connection with Socket Pairs IP address + Port number = Socket address Socket pairs define a unique Internet connection. –(172.16.12.2,3044) and (092.168.16.2,80) is a socket pair. telnet server telnet client Destination: 092.168.16.2 Port Number: 80 Source: 172.16.12.2 Port Number: 3044 Source: 172.16.12.2 Port Number: 5001 Web page 1 Web page 2

7 Implementation (1/3) Outgoing datagrams –Replace (source IP address, port no.1) of every outgoing datagram to (NAT IP address, port no.2) 10.0.0.1 10.0.0.4 138.76.29.7 Internt NAT gateway 128.119.40.186:80  138.76.29.7:5001 128.119.40.186:8  10.0.0.1:3345 Web server PC in LAN 128.119.40.186 d:128.119.40.186:80  s: 10.0.0.1:3345 original socket pair d:128.119.40.186:80  s: 138.76.29.7:5001 new socket pair

8 Implementation (2/3) Create NAT translation table –Every (source IP address, port no.1) to (NAT IP address, port no.2) translation pair NAT translation table WAN side addr LAN side addr 138.76.29.7, 5001 10.0.0.1, 3345 …… 10.0.0.1 10.0.0.4 138.76.29.7 Internt NAT gateway 128.119.40.186:80  138.76.29.7:5001 128.119.40.186:80  10.0.0.1:3345 Web server PC in LAN 128.119.40.186

9 Implementation (3/3) Incoming datagrams –Replace (NAT IP address, port no.2) in the destination field with corresponding (source IP address, port no.1) stored in NAT translation table 10.0.0.1 10.0.0.4 138.76.29.7 Internt NAT gateway 128.119.40.186:80  138.76.29.7:5001 Web server PC in LAN 128.119.40.186 s:128.119.40.186:80  d:138.76.29.7:5001 original socket pair s:128.119.40.186:80  d:10.0.0.4:3345 new socket pair 128.119.40.186:80  10.0.0.1:3345

10 NAT Translation Table 10.0.0.1 10.0.0.2 10.0.0.3 S: 10.0.0.1, 3345 D: 128.119.40.186, 80 1 10.0.0.4 138.76.29.7 1: host 10.0.0.1 sends datagram to 128.119.40.186, 80 NAT translation table WAN side addr LAN side addr 138.76.29.7:5001 10.0.0.1:3345 …… S: 128.119.40.186, 80 D: 10.0.0.1, 3345 4 S: 138.76.29.7, 5001 D: 128.119.40.186, 80 2 2: NAT router changes datagram source addr from 10.0.0.1, 3345 to 138.76.29.7, 5001, updates table S: 128.119.40.186, 80 D: 138.76.29.7, 5001 3 3: Reply arrives dest. address: 138.76.29.7, 5001 4: NAT router changes datagram dest addr from 138.76.29.7, 5001 to 10.0.0.1, 3345

11 Advantages of NAT (1/2) Local network uses just one IP address as far as outside world is concerned –16-bit port-number field; 60,000 simultaneous connections with a single LAN-side address! Range of addresses not needed from ISP: just one IP address for all devices Can change addresses of devices in local network without notifying outside world

12 Advantages of NAT (2/2) Can change ISP without changing addresses of devices in local network Devices inside local net not explicitly addressable, visible by outside world (a security plus).

13 Controversial Issues NAT is controversial: –Cost and performance –Outside client cannot create a connection to the host in local network NAT traversal problem –Violates end-to-end argument NAT possibility must be taken into account by application designers, eg, P2P applications –Address shortage should instead be solved by IPv6 IPv6

14 Problems of IPv6 IPv6 and IPv4 are not compatible. All software at many layers need to be modified for IPv6 (ex: TCPv6, UDPv6, etc.) All hardware such as gateways and routers must be updated. The IPv6 header which is larger than IPv4 header will increase the traffic overhead 。

15 NAT Traversal Problem (1/3) Client want to connect to server with address 10.0.0.1 Solution 1: statically configure NAT to forward incoming connection requests at given port to server –e.g., (138.76.29.7, port 5001) always forwarded to 10.0.0.1 port 80 10.0.0.1 10.0.0.4 NAT gateway 138.76.29.7 Client ? server

16 NAT Traversal Problem (2/3) Solution 2: Universal Plug and Play (UPnP) Internet Gateway Device (IGD) Protocol.  Learn public IP address (138.76.29.7) + port mappings (with lease times)  Automate static NAT port map configuration 10.0.0.1 10.0.0.4 NAT gateway 138.76.29.7 IGD 138.76.29.7:5001  10.0.0.1:3345

17 NAT Traversal Problem (3/3) Solution 3: relaying (used in Skype)Skype –NATed server establishes connection from peer 1 to relay –Peer 2 connects to relay –Relay bridges packets between to connections 10.0.0.1 NAT gateway 138.76.29.7 peer 2 1. connection to relay initiated by NATted host 2. connection to relay initiated by client 3. relaying established peer1 NAT gateway

18 Making A Call on Skype Skype Client (SC) registers with Super Node (SN) –List of SNs SC contacts SN with callee ID –SN contacts other SNs to find callee SC directly contacts callee, overTCP Skype login server

19 Summary By using Network Address Translation (NAT), we manage networks in a simple way: –Security, insufficient IP address, cost … NAT traversal is a big problem Homework: To find and explain the method for NAT Traversal

Download ppt "1 NAT Network Address Translation Motivation for NAT To solve the insufficient problem of IP addresses IPv6 –All software and hardware need to be updated."

Similar presentations

Firewalls and Network Address Translation (NAT) Chapter 7.

Firewalls and Network Address Translation (NAT) Chapter 7.
CPSC 441 - Network Layer4-1 IP addresses: how to get one? Q: How does a host get IP address? r hard-coded by system admin in a file m Windows: control-panel->network->configuration-

CPSC Network Layer4-1 IP addresses: how to get one? Q: How does a host get IP address? r hard-coded by system admin in a file m Windows: control-panel->network->configuration-
CS 457 – Lecture 16 Global Internet - BGP Spring 2012.

CS 457 – Lecture 16 Global Internet - BGP Spring 2012.
CS 4700 / CS 5700 Network Fundamentals Lecture 15: NAT (You Better Forward Those Ports) Revised 3/9/2013.

CS 4700 / CS 5700 Network Fundamentals Lecture 15: NAT (You Better Forward Those Ports) Revised 3/9/2013.
An Analysis of the Skype Peer-to-Peer Internet Telephony Protocol Salman Baset and Henning Schuzrinne INFOCOMM 2006 Presenter - Bob Kinicki Presenter -

An Analysis of the Skype Peer-to-Peer Internet Telephony Protocol Salman Baset and Henning Schuzrinne INFOCOMM 2006 Presenter - Bob Kinicki Presenter -
Announcement r Recitation tomorrow on Project 2 r Midterm Survey at the end of this class.

Announcement r Recitation tomorrow on Project 2 r Midterm Survey at the end of this class.
Week 5: Internet Protocol Continue to discuss Ethernet and ARP –MTU –Ethernet and ARP packet format IP: Internet Protocol –Datagram format –IPv4 addressing.

Week 5: Internet Protocol Continue to discuss Ethernet and ARP –MTU –Ethernet and ARP packet format IP: Internet Protocol –Datagram format –IPv4 addressing.
Network Layer 4-1 4.1 introduction 4.2 virtual circuit and datagram networks 4.3 what’s inside a router 4.4 IP: Internet Protocol  datagram format  IPv4.

Network Layer introduction 4.2 virtual circuit and datagram networks 4.3 what’s inside a router 4.4 IP: Internet Protocol  datagram format  IPv4.
IP Address 1. 2 Network layer r Network layer protocols in every host, router r Router examines IP address field in all IP datagrams passing through it.

IP Address 1. 2 Network layer r Network layer protocols in every host, router r Router examines IP address field in all IP datagrams passing through it.
What we will cover… Home Networking: Network Address Translation (NAT) Mobile Routing.

What we will cover… Home Networking: Network Address Translation (NAT) Mobile Routing.
Chapter 5 The Network Layer.

Chapter 5 The Network Layer.
1 Network Address Translation (NAT) Relates to Lab 7. Module about private networks and NAT.

1 Network Address Translation (NAT) Relates to Lab 7. Module about private networks and NAT.
NAT: Network Address Translation 10.0.0.1 10.0.0.2 10.0.0.3 10.0.0.4 138.76.29.7 local network (e.g., home network) 10.0.0/24 rest of Internet Datagrams.

NAT: Network Address Translation local network (e.g., home network) /24 rest of Internet Datagrams.
Announcement r Project 3 out, due 3/10 r Homework 3 out last week m Due next Mon. 3/1.

Announcement r Project 3 out, due 3/10 r Homework 3 out last week m Due next Mon. 3/1.
Network Layer4-1 IP: Internet Protocol r Datagram format r IPv4 addressing r DHCP: Dynamic Host Configuration Protocol r NAT: Network Address Translation.

Network Layer4-1 IP: Internet Protocol r Datagram format r IPv4 addressing r DHCP: Dynamic Host Configuration Protocol r NAT: Network Address Translation.
IP Address 1. 2 Network layer r Network layer protocols in every host, router r Router examines IP address field in all IP datagrams passing through it.

IP Address 1. 2 Network layer r Network layer protocols in every host, router r Router examines IP address field in all IP datagrams passing through it.
Network Layer4-1 Data Communication and Networks Lecture 6 Networks: Part 1 Circuit Switching, Packet Switching, The Network Layer October 13, 2005.

Network Layer4-1 Data Communication and Networks Lecture 6 Networks: Part 1 Circuit Switching, Packet Switching, The Network Layer October 13, 2005.
Network Layer4-1 Chapter 4 Network Layer A note on the use of these ppt slides: We’re making these slides freely available to all (faculty, students, readers).

Network Layer4-1 Chapter 4 Network Layer A note on the use of these ppt slides: We’re making these slides freely available to all (faculty, students, readers).
Network Layer4-1 2010 session 1 TELE3118: Network Technologies Week 4: Network Layer Basics, Addressing Some slides have been taken from: r Computer Networking:

Network Layer session 1 TELE3118: Network Technologies Week 4: Network Layer Basics, Addressing Some slides have been taken from: r Computer Networking:
12 – NAT, ICMP, IPv6 Network Layer4-1. Network Layer4-2 Chapter 4 Network Layer Computer Networking: A Top Down Approach Featuring the Internet, 3 rd.

12 – NAT, ICMP, IPv6 Network Layer4-1. Network Layer4-2 Chapter 4 Network Layer Computer Networking: A Top Down Approach Featuring the Internet, 3 rd.

Similar presentations

Ads by Google