Presentation is loading. Please wait.

Presentation is loading. Please wait.

Network Address Translation (NAT)

Published by翩溪 赵 Modified over 7 years ago

Similar presentations

Presentation on theme: "Network Address Translation (NAT)"— Presentation transcript:

1 Network Address Translation (NAT)
Reading: Chapter 21 Fall 2004 FSU CIS 5930 Internet Protocols

2 FSU CIS 5930 Internet Protocols
Concepts NAT Translation between IP addresses (and port numbers) Basic NAT Only involving IP address translation Network address and port translation Involving both IP address and port number Fall 2004 FSU CIS 5930 Internet Protocols

3 FSU CIS 5930 Internet Protocols
LAN * NAT-Router Endsystem A Endsystem B WWW-Server Fall 2004 FSU CIS 5930 Internet Protocols

4 Some application specific problems
FTP PORT command contains IP/port May need to change content Fragmentation Only the first fragment has TCP/UDP header May need to do assembly first Fall 2004 FSU CIS 5930 Internet Protocols

5 NAT implementation in Linux
Incoming packets Connection Tracking Higher layers Local processes NF_IP_LOCAL_IN NF_IP_LOCAL_OUT NAT Forwarded packets Routing NF_IP_FORWARD Routing NAT NAT NF_IP_PRE_ROUTING Connection Tracking NF_IP_POST_ROUTING CRC check Consistency checks Device driver (input) Device driver (output) Ausgehende Pakete Fall 2004 FSU CIS 5930 Internet Protocols

6 Initialization and uninitialization
Done by init() and fini() They call init_or_cleanup() init_or_cleanup() Initialization Initializing some netfilter tables Initializing some protocol specific stuffs Link (register) netfilter hooks ip_nat_fn(), ip_nat_local_fn(), ip_nat_out() Uninitializing Reversing the process Fall 2004 FSU CIS 5930 Internet Protocols

7 FSU CIS 5930 Internet Protocols
How packet flows in NAT Incoming packets NF_IP_PRE_ROUTING ip_nat_fn() Locally generated packets NF_IP_LOCAL_OUT ip_nat_local_fn() for unfragmented packets Passing on other packets Outgoing packets NF_IP_POST_ROUTING ip_nat_out() Reassembly packets, passing on to ip_nat_fn() Fall 2004 FSU CIS 5930 Internet Protocols

8 FSU CIS 5930 Internet Protocols
ip_nat_fn() Determining what NAT needs to be used (src or dst) Determining associated flow of the packet Handling the packet depending on state Expected connection (IP_CT_RELATED) New connection (IP_CT_NEW) Others Doing real binding (translation) Do_bindings() Fall 2004 FSU CIS 5930 Internet Protocols

9 Initializing address-binding process
Netfilter registered branch destinations ipt_snat_target(), ipt_dnat_target() Finding associated flow/connection entry Calling ip_nat_setup_info() to do new binding Fall 2004 FSU CIS 5930 Internet Protocols

10 Actual address translation
do_bindings() Searching associated bindings Calling manip_pkt() to do address translation manip_pkt() Translating ip address Updating checksum Calling prot->manip_pkt() to handle protocol specific translation Fall 2004 FSU CIS 5930 Internet Protocols

Download ppt "Network Address Translation (NAT)"

Similar presentations

1 Network Address Translation (NAT) Relates to Lab 7. Module about private networks and NAT.

1 Network Address Translation (NAT) Relates to Lab 7. Module about private networks and NAT.
CST 415 - Computer Networks NAT CST 415 4/10/2017 CST 415 - Computer Networks.

CST Computer Networks NAT CST 415 4/10/2017 CST Computer Networks.
1 IP Forwarding Relates to Lab 3. Covers the principles of end-to-end datagram delivery in IP networks.

1 IP Forwarding Relates to Lab 3. Covers the principles of end-to-end datagram delivery in IP networks.
IP Forwarding Relates to Lab 3.

IP Forwarding Relates to Lab 3.
CPSC 441 - Network Layer4-1 IP addresses: how to get one? Q: How does a host get IP address? r hard-coded by system admin in a file m Windows: control-panel->network->configuration-

CPSC Network Layer4-1 IP addresses: how to get one? Q: How does a host get IP address? r hard-coded by system admin in a file m Windows: control-panel->network->configuration-
CS 457 – Lecture 16 Global Internet - BGP Spring 2012.

CS 457 – Lecture 16 Global Internet - BGP Spring 2012.
Network Layer and Transport Layer.

Network Layer and Transport Layer.
ITINERANT: TCP Socket Migration Titus Winters Dan Berger CS 202: Spring ‘03.

ITINERANT: TCP Socket Migration Titus Winters Dan Berger CS 202: Spring ‘03.
What we will cover… Home Networking: Network Address Translation (NAT) Mobile Routing.

What we will cover… Home Networking: Network Address Translation (NAT) Mobile Routing.
1 Network Address Translation (NAT) Relates to Lab 7. Module about private networks and NAT.

1 Network Address Translation (NAT) Relates to Lab 7. Module about private networks and NAT.
Page: 1 Director 1.0 TECHNION Department of Computer Science The Computer Communication Lab (236340) Summer 2002 Submitted by: David Schwartz Idan Zak.

Page: 1 Director 1.0 TECHNION Department of Computer Science The Computer Communication Lab (236340) Summer 2002 Submitted by: David Schwartz Idan Zak.
Chapter 6 Network Address Translation (NAT). Network Address Translation  Modification of source or destination IP address  Needed by networks using.

Chapter 6 Network Address Translation (NAT). Network Address Translation  Modification of source or destination IP address  Needed by networks using.
1 IP Forwarding Relates to Lab 3. Covers the principles of end-to-end datagram delivery in IP networks.

1 IP Forwarding Relates to Lab 3. Covers the principles of end-to-end datagram delivery in IP networks.
Module 10. Internet Protocol (IP) is the routed protocol of the Internet. IP addressing enables packets to be routed from source to destination using.

Module 10. Internet Protocol (IP) is the routed protocol of the Internet. IP addressing enables packets to be routed from source to destination using.
1 IP Forwarding Relates to Lab 3. Covers the principles of end-to-end datagram delivery in IP networks.

1 IP Forwarding Relates to Lab 3. Covers the principles of end-to-end datagram delivery in IP networks.
Virtual Circuit Network. Network Layer 2 Network layer r transport segment from sending to receiving host r network layer protocols in every host, router.

Virtual Circuit Network. Network Layer 2 Network layer r transport segment from sending to receiving host r network layer protocols in every host, router.
IP Forwarding.

IP Forwarding.
Network Layer4-1 Chapter 4: Network Layer r 4. 1 Introduction r 4.2 Virtual circuit and datagram networks r 4.3 What’s inside a router r 4.4 IP: Internet.

Network Layer4-1 Chapter 4: Network Layer r 4. 1 Introduction r 4.2 Virtual circuit and datagram networks r 4.3 What’s inside a router r 4.4 IP: Internet.
TCP/IP Protocols Contains Five Layers

TCP/IP Protocols Contains Five Layers
Private Network Addresses IP addresses in a private network can be assigned arbitrarily. – Not registered and not guaranteed to be globally unique Generally,

Private Network Addresses IP addresses in a private network can be assigned arbitrarily. – Not registered and not guaranteed to be globally unique Generally,

Similar presentations

Ads by Google