Solution Model of Source Address Tracing for CGN

Slides:

Advertisements

Similar presentations

Stateless IPv4-IPv6 Interconnection for DS-lite and A+P Flexible IPv6 Migration Scenarios in the Context of IPv4 Address Shortage I-D.boucadair-behave-ipv6-portrange.

Advertisements

IETF 80 th Problem Statement for Operational IPv6/IPv4 Co-existence 3/31/2011 Chongfeng Xie Qiong Sun

IPv6 Deployment CANTO Nate Davis, Chief Operating Officer 13 August 2014.

Deployment Considerations for Dual-stack Lite IETF 80 Prague Yiu Lee, Roberta Magione, Carl Williams, Christian Jacquenet Mohamed Boucadair.

Industrial Development, R&D Page 1 May 2011 Status of IPv6 Adoption in STC STC, R&D CITC IPv6 Workshop Dr.Furaih Alshaalan.

1 Migration paths to IPv6 Daniel Junqueira Sales Engineer – A10 Networks

IPv6 Transition Technologies Yasuo Kashimura Senior Manager, Japan, APAC IPCC Alcatel-lucent.

IP Transition Fix or a Band-Aid?

Attribution Growing Challenges For LEAs Unit Chief Donald Codling (Retired) Federal Bureau of Investigation (FBI) Cyber Division 3 October 2013 Unit Chief.

Mobily IPv6 Strategy & Experience Hany Almansour.

Some Observations on CGNs Geoff Huston Chief Scientist APNIC.

ISP SP Network Egress Points Ingress Point Protocol-Specific Egress Decision IP Header Payload Transit Header IP Header Payload IP Header Payload.

IETF 79 th Considerations for Stateless Translation (IVI/dIVI) in Large SP draft-sunq-v6ops-ivi-sp-01 Qiong Sun( China Telecom) Heyu Wang( China Telecom)

IETF 80 th 1 Analysis of Solution Candidates to Reveal the Origin IP Address in Shared Address Deployments draft-boucadair-intarea-nat-reveal-analysis-01.

Guoliang YANG Problem Statement of China Telecom.

IETF 85 th 1 Host Identification: Scenarios draft-boucadair-intarea-host-identifier-scenarios-01 IETF 85-Atlanta, November 2012 M. Boucadair, S. Durel,

1 464XLAT Combination of Stateful and Stateless Translation draft-ietf-v6ops-464xlat-01 IETF 83 v6ops WG Japan Internet Exchange Co.,Ltd.

Dean Cheng Jouni Korhonen Mehamed Boucadair

TURN-Lite: A Lightweight TURN Architecture and Specification (draft-wang-tram-turnlite-01)draft-wang-tram-turnlite-01 Aijun Wang (China Telecom) Bing Liu.

Draft-mickles-v6ops-isp-cases-01.txt September 19, 2002 Cleveland Mickles V6OPS ISP Breakout Session.

Jun Li DHCP Option for Access Network Information draft-lijun-dhc-clf-nass-option-01.

1 Requirements for IPv6 prefix delegation Shin Miyakawa, Ph.D NTT Communications / WIDE Project

1 UDP Encapsulation of 6RD IETF 78 Maastricht 2010 July 30.

ISP Edge NAT 10/8 “Home” Network Upstreams and Peers /32

Dean Cheng Jouni Korhonen Mehamed Boucadair

IPv6/IPv4 XLATE Trial Service for sharing IPv4 address Japan Internet Exchange Co., Ltd. Masataka MAWATARI.

1 Shared Transition Space Victor Kuarsingh & Stan Barber July 27, 2011.

CITA 310 Section 3 Additional Topics. Common IPv4 Classes ClassFirst numberSubnet maskNumber of networks Number of addresses Class A0 – ,777,216.

Security Threats and Security Requirements for the Access Node Control Protocol (ANCP) IETF 68 - ANCP WG March 18-23, 2007 draft-ietf-ancp-security-threats-00.txt.

1 Internet Area Open Meeting 72th IETF, Dublin, Ireland Jari Arkko and Mark Townsley.

IPv6 Transition Guide For A Large-scale Broadband Network Guo Liang Yang (Editor) Le Ming Hu Jin Yan Lin China Telecom Sept. 21 st, 2010 draft-yang-v4v6tran-ipv6-transition-guide-00.

Dean Cheng 81 st IETF Quebec City RADIUS Extensions for CGN Configurations draft-cheng-behave-cgn-cfg-radius-ext

Behcet Sarikaya Frank Xia July 2009 Dual-stack Lite Mobility Solutions IETF-75

IPv6 Deployment Survey Summary of the results from the global Regional Internet Registry (RIR) community during June 2013, and compared with those from.

IETF 72 - RD1 IPv4-IPv6 Interworking without using NATs in ISP infrastructures The Global Address Protocol (GAP) Rémi Després draft-despres-v6ops-apbp-01.

V6OPS WG IETF-72 IPv6 in Broadband Networks draft-kaippallimalil-v6ops-ipv6-bbnet Presented by: David Miles Kaippallimalil John Frank Xia July 2008.

PANA in DSL networks draft-morand-pana-panaoverdsl-00.txt Lionel Morand Roberta Maglione John Kaippallimalil Alper Yegin IETF-67, San Diego.

Draft-weil-shared- transition-space-request- 01 Jason Weil, Victor Kuarsingh, Chris Donley, Christopher Liljenstolpe, Marla Azinger.

Regional PDP Report Einar Bohlin, Policy Analyst.

1 Requirements of Carrier Grade NAT (CGN) draft-nishitani-cgn-00.txt draft-shirasaki-isp-shared-addr-00.txt NTT Communications Corporation Shin Miyakawa.

Deploying Dual-Stack Lite in IPv6 Network draft-boucadair-dslite-interco-v4v6-04 Mohamed Boucadair

IETF 80 th Lightweight Address Family Transition for IPv6 draft-sunq-v6ops-laft6-01 Chongfeng Xie( China Telecom ) Qiong Sun( China Telecom)

Attribute-Value Pairs For Provisioning Customer Equipment Supporting IPv4-Over-IPv6 Transitional Solutions Cathy Zhou; Tom Taylor; Qiong Sun draft-zhou-dime-4over6-provisioning-01.

شركت ارتباطات زيرساخت آبان 1393

Could SP-NAT Save the Internet?

IPv4 shortage and CERN 15 January 2013

The FUTURE OF the internet

Discussion on DHCPv6 Routing Configuration

IPV6 TECHNIQUES TO Re-IMAGINE RESEARCH AND EDUCATION NETWORKS

IPv6 for the Network Edge

Forensic Tracing in the Internet: An Update

IPv6 – THE WAY TO THE SECURE INTERNET

Best Current Practice Assignments based on requirements

Chongfeng. Xie(Presenter), Qiong Sun, Qi He, Cathy Zhou

NAT State Synchronization using SCSP draft-xu-behave-nat-state-sync-01

Configuring CPE for IPv6 Transition Mechanisms

TURN-Lite: A Lightweight TURN Architecture and Specification (draft-wang-tram-turnlite-03) Aijun Wang (China Telecom) Bing Liu (Speaker) (Huawei) IETF.

Running Multiple PLATs in 464XLAT

Fix Thunderbird Error 5.7.1 Call Toll-free

Mr C Johnston ICT Teacher

SIPNAT (source_IP NAT)

IPv6-only in an Enterprise Network

ARIN Scott Leibrand / David Huberman

CERNET2 IPv6-only Practice: Backbone, Servers, Clients and 4aaS

Use Cases of CASM (Coordinated Address Space Management) draft-xie-ps-centralized-address-management-02 draft-kumar-casm-problem-and-use-cases-00 Chongfeng.

Matías Heinrich VP Operations Latam October 2011

Chapter 11: Network Address Translation for IPv4

Updated Specification of the IPv4 ID

M. Boucadair, J. Touch, P. Levis and R. Penno

Multicast Support for Dual Stack Lite and 6RD

Presentation transcript:

Solution Model of Source Address Tracing for CGN draft-zhang-v6ops-cgn-source-trace-00 Dong Zhang zhangdong_rh@huaweisymantec IETF 80, Prague

Derivation of the problem Carrier-grade NAT (CGN) is the key function or device in the transition solutions, such as NAT444, DS-Lite and NAT64. The NAT attribute of CGN is sharing the IPv4 public addresses between different subscribers. draft-ietf-intarea-shared-addressing-issues

Why tracing the source address Requirement-a Application/service requirement ISP provides some special and exclusive applications/services. They only serve for the subscribers. When CGN is deployed, the server should be able to authenticate who is the right subscriber. (at this time, using the source address is infeasible) CPE-a 10.1.100.200 User-a 192.168.10.2 ISP CGN CPE-b 10.1.100.300 Internet User-b 192.168.20.2 Subscriber of X service Address pool 132.53.220.68 CPE-c 10.1.100.300 User-c 192.168.30.2 Server of X service

Why tracing the source address Requirement-b Policy and management requirement ISP may set the policy and management based on user. For instance, value-added services charge only the users who subscribe the services depending on DPI. But most of the DPI boxes working for value-added services can not support IPv6 well. Thus, it must be put outside CGN. User-a 2001:abcd:1234:1001::.2 ISP CGN/ NAT64 IPv4 Internet User-b 2001:abcd:1234:1002::.2 Subscriber of Y service Address pool 132.53.220.68 User-a 2001:abcd:1234:1003::.2 DPI device for Y service billing

Questions Is this issue useful and valuable to work on? Where should it go? v6ops Intarea Behave

Thank you!