Stateless 1:N IVI and Stateless 1:N double IVI X. Li, C. Bao, H. Zhang November 12, 2009.

Slides:



Advertisements
Similar presentations
SIP, Firewalls and NATs Oh My!. SIP Summit SIP, Firewalls and NATs, Oh My! Getting SIP Through Firewalls Firewalls Typically.
Advertisements

IETF 80 th Problem Statement for Operational IPv6/IPv4 Co-existence 3/31/2011 Chongfeng Xie Qiong Sun
CST Computer Networks NAT CST 415 4/10/2017 CST Computer Networks.
Transitioning to IPv6 April 15,2005 Presented By: Richard Moore PBS Enterprise Technology.
Halifax, 31 Oct – 3 Nov 2011 ICT Accessibility For All 4over6 technology for IPv6 transition Yong CUI CCSA (Tsinghua University) Document No: GSC16-PLEN-71.
© 2006 Cisco Systems, Inc. All rights reserved.Cisco Public 1 Version 4.0 Implementing IP Addressing Services Accessing the WAN – Chapter 7.
© 2008 Cisco Systems, Inc. All rights reserved.Cisco ConfidentialPresentation_ID 1 W. Schulte Chapter 5: Network Address Translation for IPv4  Connecting.
© 2008 Cisco Systems, Inc. All rights reserved.Cisco ConfidentialPresentation_ID 1 Lecture15: Network Address Translation for IPv4 Connecting Networks.
© 2007 Cisco Systems, Inc. All rights reserved.Cisco Public 1 Addressing the Network – IPv4 Network Fundamentals – Chapter 6.
Lauri Virtanen Supervisor: Professor Raimo Kantola Instructor: Lic.Sc.(Tech.) Nicklas Beijar Faculty of Electronics, Communications and Automation Department.
Understanding Internet Protocol
STUN Date: Speaker: Hui-Hsiung Chung 1.
January 23-26, 2007 Ft. Lauderdale, Florida An introduction to SIP Simon Millard Professional Services Manager Aculab.
Operating Systems Concepts 1/e Ruth Watson Chapter 11 Chapter 11 Network Maintenance Ruth Watson.
Prepared By: Eng.Ola M. Abd El-Latif
1 Internet Networking Spring 2004 Tutorial 13 LSNAT - Load Sharing NAT (RFC 2391)
NAT (Network Address Translator) Atif Karamat In the name of God the most merciful and the most compassionate.
CSE5803 Advanced Internet Protocols and Applications (7) Introduction The IP addressing scheme discussed in Chapter 2 are classful and can be summarised.
Chapter 6 Network Address Translation (NAT). Network Address Translation  Modification of source or destination IP address  Needed by networks using.
CCNA Guide to Cisco Networking Fundamentals Fourth Edition Chapter 9 Network Services.
1 Spring Semester 2007, Dept. of Computer Science, Technion Internet Networking recitation #12 LSNAT - Load Sharing NAT (RFC 2391)
Lecture Week 7 Implementing IP Addressing Services.
IPv4/IPv6 Translation: Framework Li, Bao, and Baker.
IETF 79 th Considerations for Stateless Translation (IVI/dIVI) in Large SP draft-sunq-v6ops-ivi-sp-01 Qiong Sun( China Telecom) Heyu Wang( China Telecom)
IP/ICMP Translation Algorithm (IIT) Xing Li, Congxiao Bao, Fred Baker
1 IPv6 Address Management Rajiv Kumar. 2 Lecture Overview Introduction to IP Address Management Rationale for IPv6 IPv6 Addressing IPv6 Policies & Procedures.
CS 356 Systems Security Spring Dr. Indrajit Ray
Middleboxes & Network Appliances EE122 TAs Past and Present.
4: Addressing Working At A Small-to-Medium Business or ISP.
© 2007 Cisco Systems, Inc. All rights reserved.Cisco Public 1 Addressing the Network – IPv4 Network Fundamentals – Chapter 6.
/dev/urandom Barry Britt, Systems Support Group Department of Computer Science Iowa State University.
© 2008 Cisco Systems, Inc. All rights reserved.Cisco ConfidentialPresentation_ID 1 IPv6 Introduction to Networks & Routing and Switching Essentials.
Implementing ISA Server Publishing. Introduction What Are Web Publishing Rules? ISA Server uses Web publishing rules to make Web sites on protected networks.
Implementing IP Addressing Services Accessing the WAN – Chapter 7.
IPv4/IPv6 transition experience and the features of stateless translation (IVI) Xing Li Plenary: Life after IPv4 Exhaustion.
Module 3: Designing IP Addressing. Module Overview Designing an IPv4 Addressing Scheme Designing DHCP Implementation Designing DHCP Configuration Options.
© 2007 Cisco Systems, Inc. All rights reserved. 1 Network Addressing Networking for Home and Small Businesses – Chapter 5 Darren Shaver – Modified Fall.
Private Network Interconnection Chapter 20. Introduction Privacy in an internet is a major concern –Contents of datagrams that travel across the Internet.
Prefix-specific and bi-directional explicit Address Mapping (IVI) for IPv4/IPv6 Coexistence and Transition Xing Li, Maoke Chen, Congxiao Bao, Hong Zhang.
© 2006 Cisco Systems, Inc. All rights reserved.Cisco Public 1 Version 4.0 4: Addressing in an Enterprise Network Introducing Routing and Switching in the.
© 2006 Cisco Systems, Inc. All rights reserved. Cisco IOS Threat Defense Features.
© 2007 Cisco Systems, Inc. All rights reserved.Cisco Public ITE PC v4.0 Chapter 1 1 Planning the Addressing Structure Working at a Small-to-Medium Business.
Private Network Addresses IP addresses in a private network can be assigned arbitrarily. – Not registered and not guaranteed to be globally unique Generally,
IPv6/IPv4 XLATE Trial Service for sharing IPv4 address Japan Internet Exchange Co., Ltd. Masataka MAWATARI.
Simon Millard Professional Services Manager Aculab – booth 402 The State of SIP.
© 2006 Cisco Systems, Inc. All rights reserved.Cisco Public 1 Version 4.0 Implementing IP Addressing Services Accessing the WAN – Chapter 7.
Network Address Translation External/ Internal/. OVERLOADING In Overloading, each computer on the private network is translated to the same IP address;
© 2007 Cisco Systems, Inc. All rights reserved.Cisco Public 1 Version 4.0 Connecting to the Network Introduction to Networking Concepts.
© 2008 Cisco Systems, Inc. All rights reserved.Cisco ConfidentialPresentation_ID 1 Chapter 11: Network Address Translation for IPv4 Routing And Switching.
IPv4/IPv6 Coexistence Framework Prefixing/Encap/Translation (PET) draft-cui-softwire-pet-01 draft-cui-softwire-pet64-00 Yong Cui, Mingwei Xu, Shengling.
© 2004, Cisco Systems, Inc. All rights reserved. CSPFA 3.2—6-1 Lesson 6 Translations and Connections.
NAT/PAT by S K SATAPATHY
1 Objectives Identify the basic components of a network Describe the features of Internet Protocol version 4 (IPv4) and Internet Protocol version 6 (IPv6)
© 2001, Cisco Systems, Inc. CSPFA 2.0—5-1 Chapter 5 Cisco PIX Firewall Translations.
HIP-Based NAT Traversal in P2P-Environments
Planning the Addressing Structure
Understand IPv6 Part 2 LESSON 3.3_B Networking Fundamentals.
NAT : Network Address Translation
Instructor Materials Chapter 9: NAT for IPv4
Routing and Switching Essentials v6.0
Introducing To Networking
New Solutions For Scaling The Internet Address Space
Implementing IP Addressing Services
Instructor Materials Chapter 9: NAT for IPv4
CERNET2 IPv6-only Practice: Backbone, Servers, Clients and 4aaS
Implementing IP Addressing Services
Planning the Addressing Structure
Delivering the Data.
Chapter 11: Network Address Translation for IPv4
dIVI-pd: Dual-Stateless IPv4/IPv6 Translation with Prefix Delegation
Presentation transcript:

Stateless 1:N IVI and Stateless 1:N double IVI X. Li, C. Bao, H. Zhang November 12, 2009

2 Outline Introduction Stateless 1:N IVI –Design concept –Address mapping algorithm –Extended address format Stateless 1:N double IVI –Port mapping algorithm Comparisons Summary

3 Introduction Stateless 1:1 IVI –Cannot use IPv4 address effectively –Support both IPv6 initiated and IPv4 initiated communications Stateless 1:N IVI –Can share the IPv4 addresses among IPv6 hosts –Support both IPv6 initiated and IPv4 initiated communications Stateless 1:N dIVI –Can share the IPv4 addresses among IPv6 hosts –Support both IPv6 initiated and IPv4 initiated communications –Do not need ALG

4 Stateless 1:1 IVI The IPv4 Internet IVI An IPv6 network  2001:250:ffca:2672:0100::0 Algorithm Scenario 1 “an IPv6 network to the IPv4 Internet” Scenario 2 “the IPv4 Internet to an IPv6 network” Scenario 5 “an IPv6 network to an IPv4network” Scenario 6 “an IPv4 network to an IPv6 network”

5 Stateless 1:N IVI The port number multiplexing technique is used, similar to the ones used in NAT44 For example, –If the port multiplexing ratio is 256, each IPv6 host with IPv4-translatable address can use 256 concurrent port numbers when communicating with IPv4 Internet. Therefore, one /24 is equivalent to one /16. –There is no port number restriction (65,536) when these IPv6 hosts communicate with the IPv6 Internet.

6 i=2 i=1 2001:da8:ffca:266c:0500::4:0 2001:da8:ffca:266c:0500::4:1 2001:da8:ffca:266c:0500::4:2 2001:da8:ffca:266c:0500::4: i=0 i=3 IPv4 address IPv4-translatable IPv6 address port Design concept of stateless 1:N IVI Keep the basic features of the stateless translation (IVI) An IPv4 public address is shared by N IPv6 hosts (in this example N=4). The port number range for each IPv6 host is predefined. The port number range is encoded in the IPv6 address (IPv4- translatable address) and no signaling scheme is required.

7 Address-mapping algorithm For host K, the allowed port number (P) are –P=j*N + K (j=0, 1,..., N-1). For the destination port number (P), the packets will be sent to host –K=(P%N) (% is the Modulus Operator). For example: If N=256, then –Host K=5 is only allowed to use port numbers 5, 261, 517, 773,..., 65,285 as the source port –The packets with these port numbers as the destination port number will be send to host K=5. The IPv4 Internet 1:N XLATE An IPv6 network H0H0 H1H1 H2H2 HKHK

8 Extended address format (1) Use 16 bits to encode the port number range (Port Coding) Same as in the 1:1 IVI FFIPv4 AddressPort CodingAll 0LIR Same as in the 1:1 IVI FFIPv4 AddressAll 0LIR IPv4-converted address format Extended IPv4-translatable address format

9 Extended address format (2) Use 16 bits to encode the port number range –4 bits: multiplexing ratio –12 bits: the host index

10 The translator behavior From the IPv4 Internet to an IPv6 network –Src.a  map to IPv4-converted  Src.a6 –Src.p  unchanged  src.p –Dst.a  map to extended IPv4-translatale  Dst.a6 –Dst.p  unchanged  Dst.p From an IPv6 network to the IPv4 Internet –Src.a6  (check, map to IPv4 or drop)  Src.a –Src.p  (check, unchanged or drop)  Src.p –Dst.a6  (map to IPv4 or drop)  Dst.a –Dst.p  (unchanged or drop)  Dst.p

11 The IPv6 end system requirements –Client: the end system must generate the source port numbers in the range defined by the extended IPv4-translatable address format Option 1: Modify the IPv6 end system Option 2: Use gateway to map the port number range to the ones defined by extended IPv4- translatable address –Server: different well-known ports will be served by different IPv6 hosts The http redirection techniques can be used without providing the port information.

12 Remarks for stateless 1:N IVI , :252:ffca:2666:a00::100:0 2001:252:ffca:2666:a00::100:1 2001:252:ffca:2666:a00::100:2 2001:252:ffca:2666:a00::100:3 2001:252:ffca:2666:a00::100:ff XLATE

13 Stateless 1:N double IVI If we use a gateway to map the port number, then we can use the same gateway to translate the IPv6 packets to IPv4. 1:N XLATE –Same as stateless 1:N IVI 1:1 XLATE –For IPv4-translatable and IPv4-converted addresses 1:1 address translation (stateless) Port number mapping (maintain states close to the end system) –Otherwise IPv6 routing/IPv6 cut-through The IPv4 Internet 1:N XLATE An IPv6 network H0 DS 1:1 XLATE

14 Port number mapping algorithm The port number mapping device maintains a database of allowed port numbers defined by the extended IPv4-translatable address format. The end system randomly generated source port can be mapped to the allowed port based on the extended IPv4-translatable address format and the database. Different mapping rules may apply to –The Well Known Ports (0-1,023). –The Registered Ports (1,024-49,151). –The Dynamic and/or Private Ports (49,152-65,535).

15 Home gateway implementation The IPv4 Internet 1:N XLATE Hgw1 An IPv6 network Hgw2 HgwK Hgw0 H0 DS H1 DS H2 DS HK DS

16 End system implementation The IPv4 Internet 1:N XLATE An IPv6 network H0 H1 H2 HK hgw

17 Remarks for stateless 1:N dIVI , :252:ffca:2666:a00::100:0 2001:252:ffca:2666:a00::100:1 2001:252:ffca:2666:a00::100:2 2001:252:ffca:2666:a00::100:3 2001:252:ffca:2666:a00::100:ff XLATE1XLATE2

18 Prototype and testing environment 1:N XLATE The IPv4 Internet An IPv6 network IPv6 subnet HGW-0 H0H0 HGW-1 H1H1 C1C – [2001:da9:ff7d:222e:8900::] S :80 – [2001:da9:ffca:2669:100::]:80 [2001:da9:ff3a:c8c0:a00:1:100:0]:4096 – :4096 [2001:da9:ff3a:c8c0:a00:1:100:1]:4097 – :4097 Example 1 Example 2 The prototypes are running using Linux

19 Example 1 (client) An address-sharing end system Host0 ( ) in an IPv6 network behind home gateway initiates communication with Host S2 ( in the IPv4 Internet – On the end system Host0 – Src#p= :1881 (random port) – Dst#p= :80 (server port) – On an IPv6 network – Src#p= [2001:DA9:FF3A:C8C0:A00:0:100:0]:8192 (home gateway mapped port) – Src#p= [2001:252:ffca:2669:100::]:80 (server port) – On the IPv4 Internet – Src#p= :8192 (home gateway mapped port) – Dst#p= :80 (server port)

20 Example 2 (server) Host C1 ( ) in the IPv4 Internet initiates communication with address-sharing end system Host0 ( in an IPv6 network behind home gateway. –On the IPv4 Internet –Src#p= :1856 (random port) –Dst#p= :4096 (server port) –On an IPv6 network –Src#p= [2001:DA9:ff7d:222e:8900::]:1856 (random port) –Dst#p= [2001:DA9:FF3A:C8C0:A00:0:100:0]:4096 (server port) –On the address-sharing end system Host0 –Src#p= :1856 (random port) –Dst#p= :4096 (server port)

21 S S C C

22 Reload homepage for H0 and H1 H0 As an IPv4 client to connect to an IPv4 test server server :80 client 2001:da9:ff3a:c8c0:a00:: (256).0 server :80 client 2001:da9:ff3a:c8c0:a00:: (256).0 server :80 client 2001:da9:ff3a:c8c0:a00:: (256).0 As an IPv4 server to report your host information server :4096 client 2001:da9:ff7d:2235:4800:: server :4096 client 2001:da9:ff7d:2235:4800:: H1 As an IPv4 client to connect to an IPv4 test server server :80 client 2001:da9:ff3a:c8c0:a00:: (256).1 server :80 client 2001:da9:ff3a:c8c0:a00:: (256).1 server :80 client 2001:da9:ff3a:c8c0:a00:: (256).1 As an IPv4 server to report your host information server :4097 client 2001:da9:ff7d:2235:4800:: server :4097 client 2001:da9:ff7d:2235:4800::

23 Comparison (1) The IPv4 Internet IVI An IPv6 network The IPv4 Internet SL 1:N IVI An IPv6 network HGW  2001:250:ffca:2672:0100::0 Algorithm #P0  2001:da9:ff3a:c8c0:a00:0000:100:0#P #P1  2001:da9:ff3a:c8c0:a00:0000:100:1#P #P2  2001:da9:ff3a:c8c0:a00:0000:100:2#P2 Algorithm

24 Comparison (2) Stateless 1:1 IVI –server/client full-function (bi-direction initiated) –Restricted IPv6 addresses (few, 1:1 mapping) –Stateless and scalable –Need DNS64 and ALG Stateless 1:N IVI (dIVI) –Server/client limited function (bi-direction initiated) –Restricted IPv6 addresses (many, 1:N mapping) –Stateless and scalable –Do not need DNS64 and ALG (dIVI)

25 Summary (1) There is no change to the IP model –For the gateway implementation, there is no change to the end system and the applications. –It has less restriction compared with NAT44 and the NAT transversal techniques can be used NAT44: both address and port number are changed 1:N dIVI: only the port number is changed –The address and port routing is via IPv6 addresses and the operation complexity is less than what is done via RFC1918 addresses. –The core translator (1:N XLATE) is stateless –The home gateway maintains states for port number mapping only

26 Summary (2) This technique can help for the IPv4/IPv6 coexistence and encourage the transition –An IPv6 network can communicate with the IPv4 Internet with two directional initiation. The IPv4 addresses can be used by multiple IPv6 hosts, which partially solve the IPv4 address depletion problem. The total of N (N<65,536) concurrent sessions per IPv6 host can be used when communicating with the IPv4 Internet. – An IPv6 network can communicate with the IPv6 Internet with two directional initiation. The total of 65,536 concurrent sessions per IPv6 host can be used when communicating with the IPv6 Internet.

Feedback: Privacy Policy Feedback
Do Not Sell My Personal Information
About project: SlidePlayer Terms of Service

© 2024 SlidePlayer.com Inc. All rights reserved.