Presentation is loading. Please wait.

Presentation is loading. Please wait.

COS 420 Day 18. Agenda Assignment 4 Posted Chap 16-20 Due April 6 Group project program requirements Submitted but Needs lots of work Individual Project.

Published by Modified over 8 years ago

Similar presentations

Presentation on theme: "COS 420 Day 18. Agenda Assignment 4 Posted Chap 16-20 Due April 6 Group project program requirements Submitted but Needs lots of work Individual Project."— Presentation transcript:

1 COS 420 Day 18

2 Agenda Assignment 4 Posted Chap 16-20 Due April 6 Group project program requirements Submitted but Needs lots of work Individual Project Graded 2 A’s and 1 B Today we will discuss Private Network Interconnection (NAT AND VPN)

3 Project 2 Grading Meeting Timelines 10% Deliverables Program requirements Due March 30 15% Needs to be redone Protocol Definition Due April 13 15% Working Network Application Due May 4 25% Final Paper Due May 1 25% User Manual Protocol Program requirements Technical Specifications Presentation Due May 4 10%

4 PRIVATE NETWORK INTERCONNECTION (NAT AND VPN) PART XIX

5 Definitions An internet is private to one group (sometimes called isolated) if none of the facilities or traffic is accessible to other groups Typical implementation involves using leased lines to interconnect routers at various sites of the group The global Internet is public because facilities are shared among all subscribers

6 Hybrid Architecture Permits some traffic to go over private connections Allows contact with global Internet

7 Example Of Hybrid Architecture

8 The Cost Of Private And Public Networks Private network extremely expensive Public Internet access inexpensive Goal: combine safety of private network with low cost of global Internet

9 Question How can an organization that uses the global Internet to connect its sites keep its data private? Answer: Virtual Private Network (VPN)

10 Virtual Private Network Connect all sites to global Internet Protect data as it passes from one site to another Encryption IP-in-IP tunneling

11 Illustration Of Encapsulation Used With VPN

12 The Point A Virtual Private Network sends data across the Internet, but encrypts inter- site transmissions to guarantee privacy.

13 Example Of VPN Addressing And Routing

14 Example VPN With Private Addresses Advantage: only one globally valid IP address needed per site 10.0.0.0 - 10.255.255.255 (10/8 prefix) 172.16.0.0 - 172.31.255.255 (172.16/12 prefix) 192.168.0.0 - 192.168.255.255 (192.168/16 prefix)

15 General Access With Private Addresses Question: how can a site provide multiple computers at the site access to Internet services without assigning each computer a globally-valid IP address? Two answers Application gateway (one needed for each service) Network Address Translation (NAT)

16 Extension to IP addressing IP-level access to the Internet through a single IP address Transparent to both ends Implementation Typically software Usually installed in IP router Special-purpose hardware for highest speed

17 Network Address Translation (NAT) Pioneered in Unix program slirp Also known as Masquerade (Linux) Internet Connection Sharing (Microsoft) Inexpensive implementations available for home use

18 NAT Details Organization Obtains one globally valid address per Internet connection Assigns nonroutable addresses internally (net 10) Runs NAT software in router connecting to Internet NAT Replaces source address in outgoing datagram Replaces destination address in incoming datagram Also handles higher layer protocols (e.g., pseudo header For TCP or UDP)

19 NAT Translation Table NAT uses translation table Entry in table specifies local (private) endpoint and global destination. Typical paradigm Entry in table created as side-effect of datagram leaving site Entry in table used to reverse address mapping for incoming datagram

20 Example NAT Translation Table Variant of NAT that uses protocol port numbers is known as Network Address and Port Translation (NAPT) Cisco calls it PAT

21 Use Of NAT By An ISP

22 Higher Layer Protocols And NAT NAT must Change IP headers Possibly change TCP or UDP source ports Recompute TCP or UDP checksums Translate ICMP messages Translate port numbers in an FTP session

23 Applications And NAT NAT affects ICMP, TCP, UDP, and other higher-layer protocols; except for a few standard applications like FTP, an application protocol that passes IP addresses or protocol port numbers as data will not operate correctly across NAT.

24 Summary Virtual Private Networks (VPNs) combine the advantages of low cost Internet connections with the safety of private networks VPNs use encryption and tunneling Network Address Translation allows a site to multiplex communication with multiple computers through a single, globally valid IP address. NAT uses a table to translate addresses in outgoing and incoming datagrams

Download ppt "COS 420 Day 18. Agenda Assignment 4 Posted Chap 16-20 Due April 6 Group project program requirements Submitted but Needs lots of work Individual Project."

Similar presentations

1 Network Address Translation (NAT) Relates to Lab 7. Module about private networks and NAT.

1 Network Address Translation (NAT) Relates to Lab 7. Module about private networks and NAT.
CST 415 - Computer Networks NAT CST 415 4/10/2017 CST 415 - Computer Networks.

CST Computer Networks NAT CST 415 4/10/2017 CST Computer Networks.
Internetworking II: MPLS, Security, and Traffic Engineering

Internetworking II: MPLS, Security, and Traffic Engineering
Transitioning to IPv6 April 15,2005 Presented By: Richard Moore PBS Enterprise Technology.

Transitioning to IPv6 April 15,2005 Presented By: Richard Moore PBS Enterprise Technology.
PRIVATE NETWORK INTERCONNECTION (NAT AND VPN) & IPv6

PRIVATE NETWORK INTERCONNECTION (NAT AND VPN) & IPv6
Guide to Network Defense and Countermeasures Second Edition

Guide to Network Defense and Countermeasures Second Edition
Setting Up a Virtual Private Network Chapter 9. Learning Objectives Understand the components and essential operations of virtual private networks (VPNs)

Setting Up a Virtual Private Network Chapter 9. Learning Objectives Understand the components and essential operations of virtual private networks (VPNs)
SCSC 455 Computer Security Virtual Private Network (VPN)

SCSC 455 Computer Security Virtual Private Network (VPN)
© 2007 Cisco Systems, Inc. All rights reserved.Cisco Public 1 Version 4.0 Communicating over the Network Network Fundamentals – Chapter 2.

© 2007 Cisco Systems, Inc. All rights reserved.Cisco Public 1 Version 4.0 Communicating over the Network Network Fundamentals – Chapter 2.
© 2007 Pearson Education Inc., Upper Saddle River, NJ. All rights reserved.1 Computer Networks and Internets with Internet Applications, 4e By Douglas.

© 2007 Pearson Education Inc., Upper Saddle River, NJ. All rights reserved.1 Computer Networks and Internets with Internet Applications, 4e By Douglas.
COS 420 Day 15. Agenda Assignment 3 Due Assignment 4 Posted Chap 16-20 Due April 6 Individual Project Presentations Due IEPREP - Jeff MANETS - Donnie.

COS 420 Day 15. Agenda Assignment 3 Due Assignment 4 Posted Chap Due April 6 Individual Project Presentations Due IEPREP - Jeff MANETS - Donnie.
K. Salah 1 Chapter 31 Security in the Internet. K. Salah 2 Figure 31.5 Position of TLS Transport Layer Security (TLS) was designed to provide security.

K. Salah 1 Chapter 31 Security in the Internet. K. Salah 2 Figure 31.5 Position of TLS Transport Layer Security (TLS) was designed to provide security.
1 Comnet 2010 Communication Networks Recitation 7 Lookups & NAT.

1 Comnet 2010 Communication Networks Recitation 7 Lookups & NAT.
1 Network Address Translation (NAT) Relates to Lab 7. Module about private networks and NAT.

1 Network Address Translation (NAT) Relates to Lab 7. Module about private networks and NAT.
Chapter 14 TCP/IP and Routing Part #1 Unix System Administration.

Chapter 14 TCP/IP and Routing Part #1 Unix System Administration.
COS 420 Day 14. Agenda Assignment 3 Posted Covers chapters 11-15 Due March 23 Assignment 4 Posted Chap 16-20 Due April 6 Individual Project Papers due.

COS 420 Day 14. Agenda Assignment 3 Posted Covers chapters Due March 23 Assignment 4 Posted Chap Due April 6 Individual Project Papers due.
COS 420 DAY 25. Agenda Assignment 5 posted Chap 22-26 Due May 4 Final exam will be take home and handed out May 4 and Due May 10 Latest version of Protocol.

COS 420 DAY 25. Agenda Assignment 5 posted Chap Due May 4 Final exam will be take home and handed out May 4 and Due May 10 Latest version of Protocol.
COS 420 Day 17. Agenda Assignment 4 Posted Chap 16-20 Due April 6 Group project program requirements due Individual Project Graded 2 A’s and 1 B Today.

COS 420 Day 17. Agenda Assignment 4 Posted Chap Due April 6 Group project program requirements due Individual Project Graded 2 A’s and 1 B Today.
COS 420 Day 20. Agenda Group Project Discussion Protocol Definition Due April 12 Paperwork Due April 29 Assignment 3 Due Assignment 4 is posted Last Assignment.

COS 420 Day 20. Agenda Group Project Discussion Protocol Definition Due April 12 Paperwork Due April 29 Assignment 3 Due Assignment 4 is posted Last Assignment.
Subnetting.

Subnetting.

Similar presentations

Ads by Google