COS 420 Day 18. Agenda Assignment 4 Posted Chap 16-20 Due April 6 Group project program requirements Submitted but Needs lots of work Individual Project.

Slides:



Advertisements
Similar presentations
1 Network Address Translation (NAT) Relates to Lab 7. Module about private networks and NAT.
Advertisements

CST Computer Networks NAT CST 415 4/10/2017 CST Computer Networks.
Internetworking II: MPLS, Security, and Traffic Engineering
Transitioning to IPv6 April 15,2005 Presented By: Richard Moore PBS Enterprise Technology.
PRIVATE NETWORK INTERCONNECTION (NAT AND VPN) & IPv6
Guide to Network Defense and Countermeasures Second Edition
Setting Up a Virtual Private Network Chapter 9. Learning Objectives Understand the components and essential operations of virtual private networks (VPNs)
SCSC 455 Computer Security Virtual Private Network (VPN)
© 2007 Cisco Systems, Inc. All rights reserved.Cisco Public 1 Version 4.0 Communicating over the Network Network Fundamentals – Chapter 2.
© 2007 Pearson Education Inc., Upper Saddle River, NJ. All rights reserved.1 Computer Networks and Internets with Internet Applications, 4e By Douglas.
COS 420 Day 15. Agenda Assignment 3 Due Assignment 4 Posted Chap Due April 6 Individual Project Presentations Due IEPREP - Jeff MANETS - Donnie.
K. Salah 1 Chapter 31 Security in the Internet. K. Salah 2 Figure 31.5 Position of TLS Transport Layer Security (TLS) was designed to provide security.
1 Comnet 2010 Communication Networks Recitation 7 Lookups & NAT.
1 Network Address Translation (NAT) Relates to Lab 7. Module about private networks and NAT.
Chapter 14 TCP/IP and Routing Part #1 Unix System Administration.
COS 420 Day 14. Agenda Assignment 3 Posted Covers chapters Due March 23 Assignment 4 Posted Chap Due April 6 Individual Project Papers due.
COS 420 DAY 25. Agenda Assignment 5 posted Chap Due May 4 Final exam will be take home and handed out May 4 and Due May 10 Latest version of Protocol.
COS 420 Day 17. Agenda Assignment 4 Posted Chap Due April 6 Group project program requirements due Individual Project Graded 2 A’s and 1 B Today.
COS 420 Day 20. Agenda Group Project Discussion Protocol Definition Due April 12 Paperwork Due April 29 Assignment 3 Due Assignment 4 is posted Last Assignment.
Subnetting.
TCP/IP Protocol Suite 1 Chapter 26 Upon completion you will be able to: Virtual Private Networks and Network Address Translation Understand the difference.
COS 420 DAY 24. Agenda Assignment 5 posted Chap Due May 4 Final exam will be take home and handed out May 4 and Due May 10 Student evaluations Latest.
K. Salah1 Security Protocols in the Internet IPSec.
COS 420 DAY 22. Agenda Assignment 4 Corrected 2 B’s Assignment 5 posted Chap Due May 4 Final exam will be take home and handed out May 4 and Due.
COS 420 Day 16. Agenda Assignment 3 Corrected Poor results 1 C and 2 Ds Spring Break?? Assignment 4 Posted Chap Due April 6 Individual Project Presentations.
What Is TCP/IP? The large collection of networking protocols and services called TCP/IP denotes far more than the combination of the two key protocols.
Network Address Translation, Remote Access and Virtual Private Networks BSAD 146 Dave Novak Sources: Network+ Guide to Networks, Dean 2013.
1 © J. Liebeherr, All rights reserved Virtual Private Networks.
Chapter 26 Client Server Interaction Communication across a computer network requires a pair of application programs to cooperate. One application on one.
Networking Components Chad Benedict – LTEC
Microsoft Windows Server 2003 TCP/IP Protocols and Services Technical Reference Slide: 1 Lesson 23 Virtual Private Networks (VPNs)
1 L2TP OVERVIEW 18-May Agenda VPN Tunneling PPTP L2F LT2P.
Support Protocols and Technologies. Topics Filling in the gaps we need to make for IP forwarding work in practice – Getting IP addresses (DHCP) – Mapping.
CHAPTER 2 PCs on the Internet Suraya Alias. The TCP/IP Suite of Protocols Internet applications – client/server applications The client requested data.
© MMII JW RyderCS 428 Computer Networking1 Private Network Interconnection  VPN - Virtual Private Networks  NAT - Network Address Translation  Describe.
Page 1 NAT & VPN Lecture 8 Hassan Shuja 05/02/2006.
Chapter 13 – Network Security
Remote Access Chapter 4. Learning Objectives Understand implications of IEEE 802.1x and how it is used Understand VPN technology and its uses for securing.
CS 540 Computer Networks II Sandy Wang
Networks – Network Architecture Network architecture is specification of design principles (including data formats and procedures) for creating a network.
Chapter 4, slide: 1 Chapter 4: Network Layer r Introduction r IP: Internet Protocol  IPv4 addressing  NAT  IPv6 r Routing algorithms  Link state 
Private Network Interconnection Chapter 20. Introduction Privacy in an internet is a major concern –Contents of datagrams that travel across the Internet.
1 Chapter 7: NAT in Internet and Intranet Designs Designs That Include NAT Essential NAT Design Concepts Data Protection in NAT Designs NAT Design Optimization.
TCP/IP Protocols Contains Five Layers
1 Chapter Overview Password Protection Security Models Firewalls Security Protocols.
Private Network Addresses IP addresses in a private network can be assigned arbitrarily. – Not registered and not guaranteed to be globally unique Generally,
Network Address Translation Current problems with IP addresses:  Address depletion  Scaling in routing Solutions:  IPv6  CIDR  NAT.
Internet Protocol: Routing IP Datagrams Chapter 8.
COS 420 Day 15. Agenda Finish Individualized Project Presentations on Thrusday Have Grading sheets to me by Friday Group Project Discussion Goals & Timelines.
Chapter 40 Network Security (Access Control, Encryption, Firewalls)
1 Network Address Translation. 2 Network Address Translation (NAT) Extension of original addressing scheme Motivated by exhaustion of IP address space.
K. Salah1 Security Protocols in the Internet IPSec.
Virtual Private Network (VPN) 1. A corporation with multiple geographic sites can use one of two approaches to building a corporate intranet. – Private.
Virtual Private Network Technology Nikki London COSC 352 March 2, 2010.
Network Address Translation (NAT)
Network Address Translation
Network Address Translation (NAT)
Introducing To Networking
NET323 D: Network Protocols
Transport Protocols Relates to Lab 5. An overview of the transport protocols of the TCP/IP protocol suite. Also, a short discussion of UDP.
Transport Protocols Relates to Lab 5. An overview of the transport protocols of the TCP/IP protocol suite. Also, a short discussion of UDP.
NET323 D: Network Protocols
Virtual Private Networks and Network Address Translation
Virtual Private Networks and Network Address Translation
CS4470 Computer Networking Protocols
COMPUTER NETWORKS CS610 Lecture-38 Hammad Khalid Khan.
Cengage Learning: Computer Networking from LANs to WANs
COMPUTER NETWORKS CS610 Lecture-37 Hammad Khalid Khan.
Network Address Translation (NAT)
16EC Computer networks unit II Mr.M.Jagadesh
Presentation transcript:

COS 420 Day 18

Agenda Assignment 4 Posted Chap Due April 6 Group project program requirements Submitted but Needs lots of work Individual Project Graded 2 A’s and 1 B Today we will discuss Private Network Interconnection (NAT AND VPN)

Project 2 Grading Meeting Timelines 10% Deliverables Program requirements Due March 30 15% Needs to be redone Protocol Definition Due April 13 15% Working Network Application Due May 4 25% Final Paper Due May 1 25% User Manual Protocol Program requirements Technical Specifications Presentation Due May 4 10%

PRIVATE NETWORK INTERCONNECTION (NAT AND VPN) PART XIX

Definitions An internet is private to one group (sometimes called isolated) if none of the facilities or traffic is accessible to other groups Typical implementation involves using leased lines to interconnect routers at various sites of the group The global Internet is public because facilities are shared among all subscribers

Hybrid Architecture Permits some traffic to go over private connections Allows contact with global Internet

Example Of Hybrid Architecture

The Cost Of Private And Public Networks Private network extremely expensive Public Internet access inexpensive Goal: combine safety of private network with low cost of global Internet

Question How can an organization that uses the global Internet to connect its sites keep its data private? Answer: Virtual Private Network (VPN)

Virtual Private Network Connect all sites to global Internet Protect data as it passes from one site to another Encryption IP-in-IP tunneling

Illustration Of Encapsulation Used With VPN

The Point A Virtual Private Network sends data across the Internet, but encrypts inter- site transmissions to guarantee privacy.

Example Of VPN Addressing And Routing

Example VPN With Private Addresses Advantage: only one globally valid IP address needed per site (10/8 prefix) (172.16/12 prefix) ( /16 prefix)

General Access With Private Addresses Question: how can a site provide multiple computers at the site access to Internet services without assigning each computer a globally-valid IP address? Two answers Application gateway (one needed for each service) Network Address Translation (NAT)

Extension to IP addressing IP-level access to the Internet through a single IP address Transparent to both ends Implementation Typically software Usually installed in IP router Special-purpose hardware for highest speed

Network Address Translation (NAT) Pioneered in Unix program slirp Also known as Masquerade (Linux) Internet Connection Sharing (Microsoft) Inexpensive implementations available for home use

NAT Details Organization Obtains one globally valid address per Internet connection Assigns nonroutable addresses internally (net 10) Runs NAT software in router connecting to Internet NAT Replaces source address in outgoing datagram Replaces destination address in incoming datagram Also handles higher layer protocols (e.g., pseudo header For TCP or UDP)

NAT Translation Table NAT uses translation table Entry in table specifies local (private) endpoint and global destination. Typical paradigm Entry in table created as side-effect of datagram leaving site Entry in table used to reverse address mapping for incoming datagram

Example NAT Translation Table Variant of NAT that uses protocol port numbers is known as Network Address and Port Translation (NAPT) Cisco calls it PAT

Use Of NAT By An ISP

Higher Layer Protocols And NAT NAT must Change IP headers Possibly change TCP or UDP source ports Recompute TCP or UDP checksums Translate ICMP messages Translate port numbers in an FTP session

Applications And NAT NAT affects ICMP, TCP, UDP, and other higher-layer protocols; except for a few standard applications like FTP, an application protocol that passes IP addresses or protocol port numbers as data will not operate correctly across NAT.

Summary Virtual Private Networks (VPNs) combine the advantages of low cost Internet connections with the safety of private networks VPNs use encryption and tunneling Network Address Translation allows a site to multiplex communication with multiple computers through a single, globally valid IP address. NAT uses a table to translate addresses in outgoing and incoming datagrams

Feedback: Privacy Policy Feedback
Do Not Sell My Personal Information
About project: SlidePlayer Terms of Service

© 2024 SlidePlayer.com Inc. All rights reserved.