Presentation is loading. Please wait.

Presentation is loading. Please wait.

Leone From global measurements to local management NATalyser inhome NAT detection Miguel Ángel Díaz, Francisco Valera.

Published bySarah Leonard Modified over 8 years ago

Similar presentations

Presentation on theme: "Leone From global measurements to local management NATalyser inhome NAT detection Miguel Ángel Díaz, Francisco Valera."— Presentation transcript:

1 Leone From global measurements to local management NATalyser inhome NAT detection Miguel Ángel Díaz, Francisco Valera

2 METRIC OBJECTIVE  General picture February Leone - From global measurements to local management 2 EXTERNAL NETWORKS

3 METRIC OBJECTIVE  General picture Leone - From global measurements to local management 3 EXTERNAL NETWORKS  What : evaluate NATs characteristics and 'behave' RFC compliance  The requirements are described in:  RFC 5382 for TCP  RFC 5508 for ICMP  RFC 4787 for UDP  Characterize the NATs by their configurations  Why: check possible problems for end user applications  Are ISPs aware of this? February

4 Executions Leone - From global measurements to local management 4  NATalyser has been executed on various countries… February 25 Inhome Nats

5 Testbed Leone - From global measurements to local management 5  …and also with several router vendors February

6 NATalyser Leone - From global measurements to local management 6 February Wifi NATs results3G/4G results Because they usually go through a CG Nat In Android there’s only a few tests because we cannot use Raw Sockets without root permissions

7 NATalyser Leone - From global measurements to local management 7 February Wifi NATs results InHome NATs -Residential -Probes Public NATs -Restaurants -Hotels / Shopping center Dataset 1 Android + Inhome tests 7 test Dataset 2 Inhome tests 28 test

8 Types of questions to answer  Do the ISPs implement always the same type of NAT?  Do the vendors implement always the same type of NAT?  Is there a main type of NAT?  Do an ISP implement always the same NAT within the same vendor?  … Leone - From global measurements to local management 8 February

9 Configurations  We are going to call “Configuration” to a specific combination of results for the tests  These two would be two different configurations 13rd February, 2013 Leone - From global measurements to local management 9

10 InHome NATs (Dataset 1) Leone - From global measurements to local management 10 Different tests having different behavior We still have a main class here February Between the two first classes there’s only one difference: The first one have the mapping lifetime on more than 2 minutes

11 InHome NATs (Dataset 1) Leone - From global measurements to local management 11 This one is from BT but from an unkown vendor February

12 InHome NATs (Dataset 1) Leone - From global measurements to local management 12 February

13 Dispersion by ISP/Vendor Leone - From global measurements to local management 13 BT February It seems that BT takes the same configuration for the same vendor for Huawei and almost for all of Sagem This one doesn’t have the mapping lifetime more than 2 minutes

14 Dispersion by ISP/Vendor February Leone - From global measurements to local management 14 Telecom Italia

15 InHome NATs (Dataset 1) February Leone - From global measurements to local management 15

16 InHome NATs (Dataset 1) February Leone - From global measurements to local management 16 Technicolor is present on Telecom Italia ( 11 probes) and in Tiscalinet, so all of them are on Italy. More than 50% of them fullfill the 100% of the requirements

17 InHome NATs (Dataset 1) February Leone - From global measurements to local management 17 All the SAGEM COMMUNICATIONS probes that BT owns are behavioring the same way by not having the TCP mapping endpoint independent Also, Huawei and Arcadyan from BT behave the same way, not implementing the binding lifetime > than 2 minutes and the outbound mapping renewal

18 General Image (Dataset 2) 13rd February, 2013 Leone - From global measurements to local management 18 There’s no clear configuration taking into account UDP, TCP and ICMP on all the measured InHome NATs

19 InHome NATs (Dataset 2) 13rd February, 2013 Leone - From global measurements to local management 19

20 Remarkable results  Overall picture 8th October, 2013 Leone - From global measurements to local management 20 EXTERNAL NETWORKS UDP

21 Configuration Distribution 13rd February, 2013 Leone - From global measurements to local management 21 These classes are marked by 4 tests being the total 11: -Mapping Lifetime -Mapping type -Filtering type -Preservation of the port All are from Telecom Italia being majority of them from the vendor Technicolor

22 Remarkable results  Overall picture 8th October, 2013 Leone - From global measurements to local management 22 EXTERNAL NETWORKS TCP

23 Configuration Distribution 13rd February, 2013 Leone - From global measurements to local management 23 From BT and unknown vendor (not localizable) From BT and Telecom Italia and unknown vendor and NETGEAR This class has Endpoint independent behavior This one hasn’t Endpoint independent behavior. Majority of Technicolor vendor In general, the vendors and the ISPs are well distributed between the 2 main classes

24 Remarkable results  Overall picture 8th October, 2013 Leone - From global measurements to local management 24 EXTERNAL NETWORKS ICMP

25 Configuration Distribution Leone - From global measurements to local management 25 None of the measured NATs have the support of the internal error of ICMP Again, the ISPs and Vendors are distributed on all the classes

26 Related Work 13rd February, 2013 Leone - From global measurements to local management 26 From L. D’Acunto, J. A. Pouwelse, and H. J. Sips, “A measurement of NAT and firewall characteristics in peer-to- peer systems,” in Proc. 15-th ASCI Conference, 2009, vol. 5031, pp. 1–5. Frequency distributions of NAT timeout for UDP

27 Related Work 13rd February, 2013 Leone - From global measurements to local management 27 From L. D’Acunto, J. A. Pouwelse, and H. J. Sips, “A measurement of NAT and firewall characteristics in peer-to- peer systems,” in Proc. 15-th ASCI Conference, 2009, vol. 5031, pp. 1–5.

28 Public NATs  We are starting to measure some public NATs such as:  Restaurants  Vips  Ginos  McDonalds  Cafeterias  Starbucks  Unknown ones  Shopping center’s Wifi Leone - From global measurements to local management 28 February

29 Configuration Distribution 13rd February, 2013 Leone - From global measurements to local management 29 This configuration does not allow any traffic that is not http The class is composed of the 100% of the Mcdonalds measured and 2 open Wifi from shopping centers The rest of the classes only differ on the TCP tests and the mapping lifetime This type of NAT does not have a mapping lifetime more than 2 minutes 60% of the NATs are from the RouterBoard.com vendor Also Arrakis Servicios Y Comunicaciones S.l. (BT group) has always the RouterBoard.com vendor All this NATs share one thing: None of them have the Mapping lifetime more than 2 minutes

30 Conclusions Leone - From global measurements to local management 30  NATalyser has been executed on  Sam’s testbed  Public open networks  Public registration network  In the future NATalyser will be executed on more environments in order to get more results. With this we want to have more data in order to get the distributions February

Download ppt "Leone From global measurements to local management NATalyser inhome NAT detection Miguel Ángel Díaz, Francisco Valera."

Similar presentations

CCENT Study Guide Chapter 12 Security.

CCENT Study Guide Chapter 12 Security.
CSC458 Programming Assignment II: NAT Nov 7, 2014.

CSC458 Programming Assignment II: NAT Nov 7, 2014.
© 2008 Cisco Systems, Inc. All rights reserved.Cisco ConfidentialPresentation_ID 1 W. Schulte Chapter 5: Network Address Translation for IPv4  Connecting.

© 2008 Cisco Systems, Inc. All rights reserved.Cisco ConfidentialPresentation_ID 1 W. Schulte Chapter 5: Network Address Translation for IPv4  Connecting.
©2012 ClearOne Communications. Confidential and proprietary. COLLABORATE ® Video Conferencing Networking Basics.

©2012 ClearOne Communications. Confidential and proprietary. COLLABORATE ® Video Conferencing Networking Basics.
Firewalls By Tahaei Fall 2012. What is a firewall? a choke point of control and monitoring interconnects networks with differing trust imposes restrictions.

Firewalls By Tahaei Fall What is a firewall? a choke point of control and monitoring interconnects networks with differing trust imposes restrictions.
P2P and NAT How to traverse NAT Davide Carboni © 2005-2006.

P2P and NAT How to traverse NAT Davide Carboni ©
Leone From global measurements to local management UC3M: inHome NAT detection RFC recommender ICMP UDP TCP Miguel Ángel Díaz, Francisco Valera.

Leone From global measurements to local management UC3M: inHome NAT detection RFC recommender ICMP UDP TCP Miguel Ángel Díaz, Francisco Valera.
PlanetLab Operating System support* *a work in progress.

PlanetLab Operating System support* *a work in progress.
Winter 20021 CMPE 155 Week 7. Winter 20022 Assignment 6: Firewalls What is a firewall? –Security at the network level. Wide-area network access makes.

Winter CMPE 155 Week 7. Winter Assignment 6: Firewalls What is a firewall? –Security at the network level. Wide-area network access makes.
H. 323 and firewalls: Problem Statement and Solution Framework Author: Melinda Shore, Nokia Presenter: Shannon McCracken.

H. 323 and firewalls: Problem Statement and Solution Framework Author: Melinda Shore, Nokia Presenter: Shannon McCracken.
Remote Viewing Setup DVR & IP Video Devices

Remote Viewing Setup DVR & IP Video Devices
Detecting P2P Traffic from the P2P Flow Graph Jonghyun Kim Khushboo Shah Stephen Bohacek Electrical and Computer Engineering.

Detecting P2P Traffic from the P2P Flow Graph Jonghyun Kim Khushboo Shah Stephen Bohacek Electrical and Computer Engineering.
1 Internet Networking Spring 2004 Tutorial 13 LSNAT - Load Sharing NAT (RFC 2391)

1 Internet Networking Spring 2004 Tutorial 13 LSNAT - Load Sharing NAT (RFC 2391)
Controlling access with packet filters and firewalls.

Controlling access with packet filters and firewalls.
COS 420 Day 18. Agenda Assignment 4 Posted Chap 16-20 Due April 6 Group project program requirements Submitted but Needs lots of work Individual Project.

COS 420 Day 18. Agenda Assignment 4 Posted Chap Due April 6 Group project program requirements Submitted but Needs lots of work Individual Project.
Negotiating Unsolicited Connections to a Service Listening Behind a Firewall Ben Stroud CS525 Spring 10.

Negotiating Unsolicited Connections to a Service Listening Behind a Firewall Ben Stroud CS525 Spring 10.
DYSWIS1 Managing (VoIP) Applications – DYSWIS Henning Schulzrinne Dept. of Computer Science Columbia University July 2005.

DYSWIS1 Managing (VoIP) Applications – DYSWIS Henning Schulzrinne Dept. of Computer Science Columbia University July 2005.
M. Dahshan - TCOM52721 TCOM 5272 Telecomm Lab Dr. Mostafa Dahshan OU-Tulsa 4W 2 nd floor 660-3713

M. Dahshan - TCOM52721 TCOM 5272 Telecomm Lab Dr. Mostafa Dahshan OU-Tulsa 4W 2 nd floor
UPMT – Universal Per-application Mobility management using Tunnels Stefano Salsano - Marco Bonola -

UPMT – Universal Per-application Mobility management using Tunnels Stefano Salsano - Marco Bonola -
An Introduction to Internetworking. Why distributed systems - Share resources (devices & CPU) - Communicate people (by transmitting data)

An Introduction to Internetworking. Why distributed systems - Share resources (devices & CPU) - Communicate people (by transmitting data)

Similar presentations

Ads by Google