NAT and NAT Traversal

Tags:

Preview:

Click to see full reader

DESCRIPTION

NAT and NAT Traversal. SEng490 Directed Study Haoran Song Supervised by Dr. Jianping Pan. Outline. Problems of NAT in the real world NAT Traversal in our research Conclusion. Firewalls and NAT. Four Types of NAT. Full Cone NAT IP Restricted NAT Port Restricted NAT Symmetric NAT - PowerPoint PPT Presentation

Citation preview

NAT and NAT Traversal

SEng490 Directed StudyHaoran Song

Supervised by Dr. Jianping Pan

Outline

• Problems of NAT in the real world

• NAT Traversal in our research

• Conclusion

Firewalls and NAT

Four Types of NAT

1. Full Cone NAT2. IP Restricted NAT3. Port Restricted NAT4. Symmetric NATThen let us see how these four NATs

work?

Full Cone: not very restricted

B

IP Restricted NAT Has restrictions on incoming IP

Port Restricted NAT Not only has restrictions on IP, but

also on Port

Symmetric NAT Very restricted. New mapping for

each different connection.

Problems caused by NAT So, When we do communication

with NAT, outside packets can not come in until inside packets go out first.

We need to find a way to overcome this problem and this technique is called NAT Traversal.

NAT Traversal Our plan1. We need to know what NAT we are

behind2. Do NAT traversal according to the

identified NAT Therefore, two main parts in our

research1. NAT Detection2. NAT Traversal

NAT Detection

We get the PolyNAT from Dr. Hoffman. It can emulates four different NATs.

Thanks to Dr. Hoffman and his students.

NAT Detection Flow

Example: Full Cone Detection

NAT Traversal NAT Traversal

cone IP restricted port restricted symmetric

cone

IP restricted

port restricted

symmetric

A B

?

?

Full Cone-Full Cone

Full Cone-Full Cone: Scenario

Full cone/restricted-restricted

Full cone/restricted-restricted Scenario

Full cone/IP restricted-symmetric

Full cone/IP restricted-symmetric Scenario

How does clients describe who they are

We build our own traversal commands We use XML to describe necessary

information and embed these descriptions in our traversal commands.

So, other clients get specified information about their peers by learning these XML contents.

An example of a traversal command

Conclusion We have implemented1. Full Cone – Full Cone2. Full/Restricted Cone – Restricted Cone3. Full/IP Restricted Cone – Symmetric The things we will do in the future1. Port Restricted Cone – Symmetric2. Symmetric – Symmetric

NAT and NAT Traversal Questions?

Recommended

Peer-to-Peer NAT Traversal for IPsecsecurity.hsr.ch/theses/DA_2006_IKEv2-P2P-NAT-T.pdf · 2006. 12. 15. · Diplomarbeit Informatik Peer-to-Peer NAT Traversal for IPsec Tobias Brunner
Documents
NAT Traversal in SIP - TKK · § NAT Traversal in SIP – SIP Response Routing – User Agent Reachability – ICE. 3 Outline § Introduction to NATs § NAT Behavior (actual and recommended)
Documents
TURN-Traversal Using Relays Around NAT
Documents
Mobile IP Support for RFC 3519 NAT Traversal
Documents
NAT TRAVERSAL SOLUTION - SysMaster · NAT TRAVERSAL SOLUTION H.323 NAT Technology problems Usage of private IP addresses and NAT firewall to prevent connections to be established
Documents
NAT Traversal in SIP - StarTrinitystartrinity.com/VoIP/Resources/sip26.pdf · NAT Traversal in SIP. NAT Traversal in SIP ... Network Address Translation (NAT) ... NAT, and the proxy
Documents
Practical Far-End NAT Traversal for VoIP Whitepaper PDF
Documents
NAT Traversal for VoIP and Internet communications using STUN, TURN and ICE
Documents
ANT : A System for Audio Signaling Based NAT Traversal
Documents
Developing an Enhanced NAT-Traversal Approach for ...Developing an Enhanced NAT-Traversal Approach for Collaborative Augmented Reality e-Maintenance Platforms Allal Tiberkak1, Abdelfetah
Documents
NAT Traversal and DHT for transmission of H264 stream … · LaBRI Laboratoire Bordelais de Recherche en Informatique University Bordeaux 1 Sciences and Technology NAT Traversal and
Documents
D. Wing Session Traversal Utilities for NAT (STUN) Session ... · Session Traversal Utilities for NAT (STUN) draft-ietf-tram-stunbis-11 Abstract Session Traversal Utilities for NAT
Documents
301005 Firewall NAT Traversal White Paper
Documents
Firewall and NAT Traversal for Peer-to-Peer Storage Nodes
Documents
NAT Traversal Techniques and UDP Keep-Alive Interval
Documents
Avaya Scopia Pathfinder Firewall Traversal - media.zones.com · Avaya Scopia® PathFinder Firewall Traversal is a combined firewall and NAT traversal solution enabling more secure
Documents
ICE, TURN and STUN for NAT Traversal - Stephen Strowes · 10/15/2008  · Stephen Strowes | Nokia © 2008 Company Confidential ICE, TURN and STUN for NAT Traversal Stephen Strowes,
Documents
NAT Traversal in SIP - manoftoday.wdfiles.commanoftoday.wdfiles.com/local--files/nat/SIPNATtraversal.pdfNAT Traversal in SIP Page 2 NAT Traversal in SIP Network Address Translation
Documents
SIP, NAT, Firewall SIP NAT Firewall How to Traversal NAT/Firewall for SIP
Documents
Legacy Network Address Translator Traversal Using the … 06-07... · Agenda Host Identity Protocol (HIP) Network Address Translation (NAT) Legacy NAT traversal using HIP Conclusions
Documents