Mint: A Cost-effective Network-address Translation Architecture with Multiple Inexpensive NAT Servers Chun-Chao Yeh and Chun-Wei Chiu Department of Computer.

Slides:

Advertisements

Similar presentations

TCP/IP MODEL Maninder Kaur

Advertisements

Transitioning to IPv6 April 15,2005 Presented By: Richard Moore PBS Enterprise Technology.

IPv6 – IPv4 Network Address, Port & Protocol Translation & Multithreaded DNS Gateway Navpreet Singh, Abhinav Singh, Udit Gupta, Vinay Bajpai, Toshu Malhotra.

IPv6-The Next Generation Protocol RAMYA MEKALA UIN:

Lauri Virtanen Supervisor: Professor Raimo Kantola Instructor: Lic.Sc.(Tech.) Nicklas Beijar Faculty of Electronics, Communications and Automation Department.

IST 201 Chapter 9. TCP/IP Model Application Transport Internet Network Access.

© 2007 Cisco Systems, Inc. All rights reserved. Valašské Meziříčí Connecting to the Network.

5-Network Defenses Dr. John P. Abraham Professor UTPA.

Highly Available Central Services An Intelligent Router Approach Thomas Finnern Thorsten Witt DESY/IT.

1 In VINI Veritas: Realistic and Controlled Network Experimentation Jennifer Rexford with Andy Bavier, Nick Feamster, Mark Huang, and Larry Peterson

Small Office Service Serial Router Connects Internal Stations to Shared Broadband Access Service Small Office Serial Router Shared Broadband Line ISP.

Understanding Networks. Objectives Compare client and network operating systems Learn about local area network technologies, including Ethernet, Token.

A Distributed Proxy Server for Wireless Mobile Web Service Kisup Kim, Hyukjoon Lee, and Kwangsue Chung Information Network 2001, 15 th Conference.

Communication concepts (Continued) Week 2 Lecture 2.

NPACI: National Partnership for Advanced Computational Infrastructure August 17-21, 1998 NPACI Parallel Computing Institute 1 Cluster Archtectures and.

Networking Components Chad Benedict – LTEC

Server Load Balancing. Introduction Why is load balancing of servers needed? If there is only one web server responding to all the incoming HTTP requests.

OpenFlow-Based Server Load Balancing GoneWild Author : Richard Wang, Dana Butnariu, Jennifer Rexford Publisher : Hot-ICE'11 Proceedings of the 11th USENIX.

© 2007 Cisco Systems, Inc. All rights reserved.Cisco Public 1 Version 4.0 Network Addressing Networking for Home and Small Businesses – Chapter 5.

11 KDDI Trial Hub & Spoke Shu Yamamoto Carl Williams Hidetoshi Yokota KDDI R&D Labs.

Day 12 Chapter 13 WAN Technologies and Routing. Classification of Networks LAN – spans a single building or campus MAN – Spans a city WAN – Spans multiple.

Module 12: Routing Fundamentals. Routing Overview Configuring Routing and Remote Access as a Router Quality of Service.

Firewall and its working By Mithila Palamakula. Firewall  Sits between two networks  Used to protect one from the other  Places a bottleneck between.

© 2006 Cisco Systems, Inc. All rights reserved.Cisco PublicITE I Chapter 6 1 Connecting to the Network Networking for Home and Small Businesses – Chapter.

TURN-Lite: A Lightweight TURN Architecture and Specification (draft-wang-tram-turnlite-01)draft-wang-tram-turnlite-01 Aijun Wang (China Telecom) Bing Liu.

IPv6 Rapid Deployment in Taiwan Academic Network (TANet) Authors: Po-Kang Chen Chia-Wen Lu Quincy Wu 1.

NETWORKING COMPONENTS AN OVERVIEW OF COMMONLY USED HARDWARE Christopher Johnson LTEC 4550.

Universal, Ubiquitous, Unfettered Internet © ui.com Pte Ltd Mobile Internet Protocol under IPv6 Amlan Saha 3UI.COM Global IPv6 Summit,

© 2007 Cisco Systems, Inc. All rights reserved.Cisco Public ITE PC v4.0 Chapter 1 1 Connecting to the Network Networking for Home and Small Businesses.

Content-oriented Networking Platform: A Focus on DDoS Countermeasure ( In incremental deployment perspective) Authors: Junho Suh, Hoon-gyu Choi, Wonjun.

Networking Components Michelle Vega Network System Administrations LTEC /026 Mr. West.

Homework 02 NAT 、 DHCP 、 Firewall 、 Proxy. Computer Center, CS, NCTU 2 Basic Knowledge  DHCP Dynamically assigning IPs to clients  NAT Translating addresses.

1 Network Firewalls CSCI Web Security Spring 2003 Presented By Yasir Zahur.

Firewalls and proxies Unit objectives

© 2007 Cisco Systems, Inc. All rights reserved.Cisco Public 1 Version 4.0 Connecting to the Network Introduction to Networking Concepts.

W&L Page 1 CCNA CCNA Training 2.7 Configure and verify trunking on Cisco switches Jose Luis Flores / Amel Walkinshaw Aug, 2015.

Technical Solution Proposal

Stateless 1:N IVI and Stateless 1:N double IVI X. Li, C. Bao, H. Zhang November 12, 2009.

Network Equipment Assignment 3 LTEC 4550 Aaron Whitaker.

Summer Intern Showcase Hello, I am Utkarsh Goel Division: PDG Department: Foundry Web Experience Title: Research Engineer Hiring Manager: Moritz.

Networking Protocols John R. Durrett ISQS 6343 #1.

AUTHOR DETAILS: CHANDRASEKHAR NAIDU MUTTINENI Mail: Blog:

1 Objectives Identify the basic components of a network Describe the features of Internet Protocol version 4 (IPv4) and Internet Protocol version 6 (IPv6)

Networking Components Quick Guide. Hubs Device that splits a network connection into multiple computers Data is transmitted to all devices attached Computers.

J. Liebeher (modified by M. Veeraraghavan) 1 Introduction Complexity of networking: An example Layered communications The TCP/IP protocol suite.

Kevin Harrison LTEC 4550 Assignment 3.  Ethernet Hub  An unsophisticated device that is used for connecting multiple Ethernet devices together.  Typically.

Source : 2014 IEEE Ninth International Conference on Intelligent Sensors, Sensor Networks and Information Processing (ISSNIP) Auther : Nacer Khalil, Mohamed.

Kittiphan Techakittiroj (25/06/59 19:10 น. 25/06/59 19:10 น. 25/06/59 19:10 น.) Network Address Translation Kittiphan Techakittiroj

Networks and Security Great Demo

Network Overview. Protocol Protocol (network protocols) - a special set of rules that define communication between two or more devices on a network.

Network Processing Systems Design

Planning the Addressing Structure

Could SP-NAT Save the Internet?

Sensors Journal, IEEE, Issue Date: May 2013,

NAT、DHCP、Firewall、FTP、Proxy

Gijeong Kim ,Junho Kim ,Sungwon Lee Kyunghee University

A SEMINAR ON ROVER TECHNOLOGY

A quick intro to networking

CONNECTING TO THE INTERNET

改良UDP洞穿技術設計物聯網通訊：以遠端門鈴監控系統為例 Improving UDP Hole Punching Technique For IoT Communications: A Remote Door-bell Monitoring System 報告時間28~32分佳楊凱勝指導教授：柯開維.

SCTP Handoff for Cluster Servers

VIRTUAL SERVERS Presented By: Ravi Joshi IV Year (IT)

Chapter 6: Network Layer

Faiza Iqbal Mobile Networks Faiza Iqbal EC-425 Mobile Networks Lab 1.

Chapter 12 Communications Security & Countermeasures

1 Introduction to the Internet.

PPPoE Internet Point to Point Protocol over Ethernet

Planning the Addressing Structure

Connecting to the Network

Implementing Firewalls

Presentation transcript:

Mint: A Cost-effective Network-address Translation Architecture with Multiple Inexpensive NAT Servers Chun-Chao Yeh and Chun-Wei Chiu Department of Computer Sciences National Taiwan Ocean University Keelung, Taiwan 2015 Seventh International Conference on Ubiquitous and Future Networks (ICUFN)

Outline Introduction What is NAT? What is MAC-rewrite? What is Multiple NAT? System design A. System Architecture and Assumptions B. Packet Handling Experiment results Concluding remarks

Introduction Mint (Multiple Inexpensive Network-address Translation) All devices require IP addresses in IoT, it is believed that IPv4 (IP address version 4) addresses are going to be exhausted in the near future, wide deployment of IPv6 is unsure. Cost-effective: provide similar packet-processing power with less cost. Scalable: allow NAT servers to be added/removed on-demand. Fault-tolerant: prevent single-point of failure via multiple NAT servers. Flexible: for example, the approach can effectively support multi- homing connections (multiple connections provided by different ISPs).

NAT: NAT mechanisms enable a group of hosts to share one (external) IP address, while each of the hosts inside the NAT owns their (internal) IP addresses.

MAC-rewrite

Multiple NAT

System design A.System Architecture and Assumptions There are two major components in the proposed parallel NAT architecture (Mint-NAT): NAT servers and Mint-NAT gateway. NAT servers:Address translation for each incoming/outgoing packets. Mint-NAT gateway: As a proxy for all the NAT servers included. Can select a proper NAT server and forward the client packet to the server for NAT services.

Packet Handling

Experiment results A. System Prototype Implementation and Experiment Setup three Asus RT-N10+ and one TotoLink N300RT

two networks were created, one for the (internal) NAT network (network address /24), the other for external network (network address /24).Both of the switches are gigabit Ethernet switches (SMC GS801 for SW-l and Asus GX-D1051 for SW-2). We setup a simple http page with plain text of 644 bytes, which can be transmitted in single Ethernet frame and thus eliminate possible packet partition overhead.

P.S Why use 644bytes?

B. Experiment Results (with one, two, and three NAT devices (Asus RTN10+) respectively) are 90, 180, and 270 connections per second. The case for four NAT devices (4-nat) resulted in a rate of 320 connections per second.

Concluding remarks In this paper, we present a cost-effective NAT service architecture based on multiple NAT servers. The proposed system architecture, named Mint, utilizes MAC-rewrite techniques and integrates a set of (inexpensive) NAT servers to share the NAT operation loads for each network packets passing between the NAT networks. We demonstrated the design concept with a prototype system, which includes four NAT devices and a NAT gateway. Experiments on the prototype system show that the sustained http connection rate can grow linearly whenever more NAT devices being added to the system.

Thank you for listening Q&A