24
NAT and NAT Traversal SEng490 Directed Study Haoran Song Supervised by Dr. Jianping Pan

NAT and NAT Traversal

  • Upload
    nizana

  • View
    150

  • Download
    0

Tags:

Embed Size (px)

DESCRIPTION

NAT and NAT Traversal. SEng490 Directed Study Haoran Song Supervised by Dr. Jianping Pan. Outline. Problems of NAT in the real world NAT Traversal in our research Conclusion. Firewalls and NAT. Four Types of NAT. Full Cone NAT IP Restricted NAT Port Restricted NAT Symmetric NAT - PowerPoint PPT Presentation

Citation preview

Page 1: NAT and NAT Traversal

NAT and NAT Traversal

SEng490 Directed StudyHaoran Song

Supervised by Dr. Jianping Pan

Page 2: NAT and NAT Traversal

Outline

• Problems of NAT in the real world

• NAT Traversal in our research

• Conclusion

Page 3: NAT and NAT Traversal

Firewalls and NAT

Page 4: NAT and NAT Traversal

Four Types of NAT

1. Full Cone NAT2. IP Restricted NAT3. Port Restricted NAT4. Symmetric NATThen let us see how these four NATs

work?

Page 5: NAT and NAT Traversal

Full Cone: not very restricted

B

Page 6: NAT and NAT Traversal

IP Restricted NAT Has restrictions on incoming IP

Page 7: NAT and NAT Traversal

Port Restricted NAT Not only has restrictions on IP, but

also on Port

Page 8: NAT and NAT Traversal

Symmetric NAT Very restricted. New mapping for

each different connection.

Page 9: NAT and NAT Traversal

Problems caused by NAT So, When we do communication

with NAT, outside packets can not come in until inside packets go out first.

We need to find a way to overcome this problem and this technique is called NAT Traversal.

Page 10: NAT and NAT Traversal

NAT Traversal Our plan1. We need to know what NAT we are

behind2. Do NAT traversal according to the

identified NAT Therefore, two main parts in our

research1. NAT Detection2. NAT Traversal

Page 11: NAT and NAT Traversal

NAT Detection

We get the PolyNAT from Dr. Hoffman. It can emulates four different NATs.

Thanks to Dr. Hoffman and his students.

Page 12: NAT and NAT Traversal

NAT Detection Flow

Page 13: NAT and NAT Traversal

Example: Full Cone Detection

Page 14: NAT and NAT Traversal

NAT Traversal NAT Traversal

cone IP restricted port restricted symmetric

cone

IP restricted

port restricted

symmetric

A B

?

?

Page 15: NAT and NAT Traversal

Full Cone-Full Cone

Page 16: NAT and NAT Traversal

Full Cone-Full Cone: Scenario

Page 17: NAT and NAT Traversal

Full cone/restricted-restricted

Page 18: NAT and NAT Traversal

Full cone/restricted-restricted Scenario

Page 19: NAT and NAT Traversal

Full cone/IP restricted-symmetric

Page 20: NAT and NAT Traversal

Full cone/IP restricted-symmetric Scenario

Page 21: NAT and NAT Traversal

How does clients describe who they are

We build our own traversal commands We use XML to describe necessary

information and embed these descriptions in our traversal commands.

So, other clients get specified information about their peers by learning these XML contents.

Page 22: NAT and NAT Traversal

An example of a traversal command

Page 23: NAT and NAT Traversal

Conclusion We have implemented1. Full Cone – Full Cone2. Full/Restricted Cone – Restricted Cone3. Full/IP Restricted Cone – Symmetric The things we will do in the future1. Port Restricted Cone – Symmetric2. Symmetric – Symmetric

Page 24: NAT and NAT Traversal

NAT and NAT Traversal Questions?


NAT Traversal for VoIP and Internet communications using STUN, TURN and ICE

NAT Traversal for VoIP and Internet communications using STUN, TURN and ICE

Documents
Bridging the gap. NAT traversal and peer communications

Bridging the gap. NAT traversal and peer communications

Documents
NAT and Firewall traversal

NAT and Firewall traversal

Documents
Firewalls and NAT - inet.tu-berlin.de€¦ · NAT traversal: Relay NAT Main Internet Local network NAT Local network 10.0.0.12 192.168.2.99 Relay S host A host B 1 2 . 32 NAT traversal:

Firewalls and NAT - inet.tu-berlin.de€¦ · NAT traversal: Relay NAT Main Internet Local network NAT Local network 10.0.0.12 192.168.2.99 Relay S host A host B 1 2 . 32 NAT traversal:

Documents
Demystifying SIP NAT Traversal - Evariste Sys · Demystifying SIP NAT Traversal Alex Balashov Evariste Systems LLC (678) 954-0670 far-end 28 July

Demystifying SIP NAT Traversal - Evariste Sys · Demystifying SIP NAT Traversal Alex Balashov Evariste Systems LLC (678) 954-0670 far-end 28 July

Documents
Mobile IP Traversal Of NAT Devices By, Vivek Nemarugommula

Mobile IP Traversal Of NAT Devices By, Vivek Nemarugommula

Documents
NAT and Firewall Traversal with STUN / TURN / ICE - Viag©nie

NAT and Firewall Traversal with STUN / TURN / ICE - Viag©nie

Documents
RFC 8656: Traversal Using Relays around NAT …RFC 8656 Traversal Using Relays around NAT (TURN): Relay Extensions to Session Traversal Utilities for NAT (STUN) Abstract If a host

RFC 8656: Traversal Using Relays around NAT …RFC 8656 Traversal Using Relays around NAT (TURN): Relay Extensions to Session Traversal Utilities for NAT (STUN) Abstract If a host

Documents
Configuring the SonicWALL TZ215 Router - Welcome … the SonicWALL TZ215 Router for NAT Traversal Chapter 1 About Using NAT Traversal with Wave CHAPTER CONTENTS Overview NAT traversal

Configuring the SonicWALL TZ215 Router - Welcome … the SonicWALL TZ215 Router for NAT Traversal Chapter 1 About Using NAT Traversal with Wave CHAPTER CONTENTS Overview NAT traversal

Documents
NAT Traversal and DHT for transmission of H264 stream … · LaBRI Laboratoire Bordelais de Recherche en Informatique University Bordeaux 1 Sciences and Technology NAT Traversal and

NAT Traversal and DHT for transmission of H264 stream … · LaBRI Laboratoire Bordelais de Recherche en Informatique University Bordeaux 1 Sciences and Technology NAT Traversal and

Documents
PPSP NAT traversal

PPSP NAT traversal

Documents
Avaya Scopia Pathfinder Firewall Traversal - media.zones.com · Avaya Scopia® PathFinder Firewall Traversal is a combined firewall and NAT traversal solution enabling more secure

Avaya Scopia Pathfinder Firewall Traversal - media.zones.com · Avaya Scopia® PathFinder Firewall Traversal is a combined firewall and NAT traversal solution enabling more secure

Documents
NAT Traversal in SIP - TKK · § NAT Traversal in SIP – SIP Response Routing – User Agent Reachability – ICE. 3 Outline § Introduction to NATs § NAT Behavior (actual and recommended)

NAT Traversal in SIP - TKK · § NAT Traversal in SIP – SIP Response Routing – User Agent Reachability – ICE. 3 Outline § Introduction to NATs § NAT Behavior (actual and recommended)

Documents
NAT Traversal Speaker: Chin-Chang Chang Date:2007.4.9

NAT Traversal Speaker: Chin-Chang Chang Date:2007.4.9

Documents
NAT TRAVERSAL SOLUTION - SysMaster · NAT TRAVERSAL SOLUTION H.323 NAT Technology problems Usage of private IP addresses and NAT firewall to prevent connections to be established

NAT TRAVERSAL SOLUTION - SysMaster · NAT TRAVERSAL SOLUTION H.323 NAT Technology problems Usage of private IP addresses and NAT firewall to prevent connections to be established

Documents
DHT-based NAT Traversal · NAT devices around and NAT traversal will still be required. Several methods exist for traversing NAT devices, includ-ing Session Traversal Utilities for

DHT-based NAT Traversal · NAT devices around and NAT traversal will still be required. Several methods exist for traversing NAT devices, includ-ing Session Traversal Utilities for

Documents
NAT Traversal

NAT Traversal

Documents
Legacy Network Address Translator Traversal Using the … 06-07... · Agenda Host Identity Protocol (HIP) Network Address Translation (NAT) Legacy NAT traversal using HIP Conclusions

Legacy Network Address Translator Traversal Using the … 06-07... · Agenda Host Identity Protocol (HIP) Network Address Translation (NAT) Legacy NAT traversal using HIP Conclusions

Documents
NAT and Firewall Traversal with STUN / TURN / ICE

NAT and Firewall Traversal with STUN / TURN / ICE

Documents
Practical Far-End NAT Traversal for VoIP Whitepaper PDF

Practical Far-End NAT Traversal for VoIP Whitepaper PDF

Documents
Peer-to-Peer NAT Traversal for IPsecsecurity.hsr.ch/theses/DA_2006_IKEv2-P2P-NAT-T.pdf · 2006. 12. 15. · Diplomarbeit Informatik Peer-to-Peer NAT Traversal for IPsec Tobias Brunner

Peer-to-Peer NAT Traversal for IPsecsecurity.hsr.ch/theses/DA_2006_IKEv2-P2P-NAT-T.pdf · 2006. 12. 15. · Diplomarbeit Informatik Peer-to-Peer NAT Traversal for IPsec Tobias Brunner

Documents
NAT Traversal in SIP - manoftoday.wdfiles.commanoftoday.wdfiles.com/local--files/nat/SIPNATtraversal.pdfNAT Traversal in SIP Page 2 NAT Traversal in SIP Network Address Translation

NAT Traversal in SIP - manoftoday.wdfiles.commanoftoday.wdfiles.com/local--files/nat/SIPNATtraversal.pdfNAT Traversal in SIP Page 2 NAT Traversal in SIP Network Address Translation

Documents
NAT Traversal in SIP - StarTrinitystartrinity.com/VoIP/Resources/sip26.pdf · NAT Traversal in SIP. NAT Traversal in SIP ... Network Address Translation (NAT) ... NAT, and the proxy

NAT Traversal in SIP - StarTrinitystartrinity.com/VoIP/Resources/sip26.pdf · NAT Traversal in SIP. NAT Traversal in SIP ... Network Address Translation (NAT) ... NAT, and the proxy

Documents
NAT Traversal for Pure P2P e-Learning System

NAT Traversal for Pure P2P e-Learning System

Documents
Can A context-aware NAT traversal schemetommyho/publication/CAN.pdf · NAT NAT traversal STUN TURN abstract Network Address Translation (NAT) is a technique commonly used to share

Can A context-aware NAT traversal schemetommyho/publication/CAN.pdf · NAT NAT traversal STUN TURN abstract Network Address Translation (NAT) is a technique commonly used to share

Documents
Mobile IP Traversal Of NAT Devices

Mobile IP Traversal Of NAT Devices

Documents
ANT : A System for Audio Signaling Based NAT Traversal

ANT : A System for Audio Signaling Based NAT Traversal

Documents
301005 Firewall NAT Traversal White Paper

301005 Firewall NAT Traversal White Paper

Documents
TURN-Traversal Using Relays Around NAT

TURN-Traversal Using Relays Around NAT

Documents
NAT TRAVERSAL THROUGH TUNNELING by Arun Madhavan · NAT Traversal by Tunneling (NATTT) provides a NAT traversal solution that is generic, (supporting all applications and transport

NAT TRAVERSAL THROUGH TUNNELING by Arun Madhavan · NAT Traversal by Tunneling (NATTT) provides a NAT traversal solution that is generic, (supporting all applications and transport

Documents