Presentation is loading. Please wait.

Presentation is loading. Please wait.

Could SP-NAT Save the Internet?

Published by桦商 萧 Modified over 7 years ago

Similar presentations

Presentation on theme: "Could SP-NAT Save the Internet?"— Presentation transcript:

1 Could SP-NAT Save the Internet?
WAND, University of Waikato

2 Service Provider NAT Aim is to reduce IPv4 address consumption
Multiple subscribers share a single public IPv4 address NAT device is located within the ISP-managed network Internets ISP NAT Subscribers

3 Research Questions Provisioning How many subscribers per NAT device?
Can existing subscriber behaviour be accommodated? What level of restrictions would affect the least subscribers? Incoming sessions How many subscribers are accepting incoming sessions? What services are those subscribers running?

4 Analysis Analyse traces captured from two different NZ ISPs
ISP 2007 – DSL customer traffic from February 2007 ISP 2009 – Captured from a new monitor in January 2009 Track sessions (flows) for each subscriber IP Outgoing session creation rate Peak concurrent outgoing sessions Incoming sessions – quantity and protocol

5 Session Counting TCP Sessions Must begin with a SYN packet
Incoming sessions must also observe a SYN ACK A session is expired after a period of inactivity Incomplete 3-way handshake = 4 minutes Established TCP connection = 2 hours and 4 minutes If a RST or FIN ACK is observed = immediate expiry UDP Sessions All sessions are expired after 2 minutes and 20 seconds of inactivity

6 Outgoing Sessions

7 Outgoing Sessions

8 Incoming Sessions NAT violates the IP connectivity model
External devices cannot directly connect to hosts behind NAT This creates problems for end-users that wish to ... Operate Internet services, such as a web server Participate in peer-to-peer

9 Incoming Sessions Possible solutions Port forwarding
Subscribers cannot interact with the NAT device directly Can only forward each port number once per NAT device NAT traversal techniques Supported by some but not all applications Lack of standardisation for NAT device behaviour BEHAVE IETF working group is trying to resolve this

10 Incoming Sessions Questions
How many subscribers are accepting incoming connections? What services are they operating? What ports are being used to run services? As an aside, how useful are port numbers for identifying services?

11 Incoming Sessions Observed subscriber IPs that accept an incoming TCP connection For ISP 2007: For ISP 2009: 44.2 % 30.8 %

12 Incoming TCP Sessions (ISP 2007)
How many server ports are being used by each IP?

13 Incoming TCP Sessions (ISP 2007)
Broken down by server port

14 Incoming TCP Sessions (ISP 2009)
Broken down by server port

15 Incoming TCP Sessions (ISP 2007)
Using the four-byte L7 protocol analysis rules

16 Incoming TCP Sessions (ISP 2009)
Using the four-byte L7 protocol analysis rules

17 Incoming TCP Sessions (ISP 2007)
Byte counts instead of flow counts

18 Incoming TCP Sessions (ISP 2009)
Byte counts instead of flow counts

19 Incoming TCP Sessions (ISP 2007)
Utilization of TCP port 80 (byte counts)

20 Incoming TCP Sessions (ISP 2009)
Utilization of TCP port 80 (byte counts)

21 WAND Network Research Group
Department of Computer Science The University of Waikato Private Bag 3105 Hamilton, New Zealand

22

Download ppt "Could SP-NAT Save the Internet?"

Similar presentations

CST 415 - Computer Networks NAT CST 415 4/10/2017 CST 415 - Computer Networks.

CST Computer Networks NAT CST 415 4/10/2017 CST Computer Networks.
1 Ports and IPv6. 2 Ports Transmission Control Protocol (TCP) or the User Datagram Protocol (UDP), used for communication Generally speaking, a computer.

1 Ports and IPv6. 2 Ports Transmission Control Protocol (TCP) or the User Datagram Protocol (UDP), used for communication Generally speaking, a computer.
Firewalls By Tahaei Fall 2012. What is a firewall? a choke point of control and monitoring interconnects networks with differing trust imposes restrictions.

Firewalls By Tahaei Fall What is a firewall? a choke point of control and monitoring interconnects networks with differing trust imposes restrictions.
CS 4700 / CS 5700 Network Fundamentals Lecture 15: NAT (You Better Forward Those Ports) Revised 3/9/2013.

CS 4700 / CS 5700 Network Fundamentals Lecture 15: NAT (You Better Forward Those Ports) Revised 3/9/2013.
1 Topic 2 – Lesson 4 Packet Filtering Part I. 2 Basic Questions What is packet filtering? What is packet filtering? What elements are inside an IP header?

1 Topic 2 – Lesson 4 Packet Filtering Part I. 2 Basic Questions What is packet filtering? What is packet filtering? What elements are inside an IP header?
CISCO NETWORKING ACADEMY Chabot College ELEC 99.05 Transport Layer (4)

CISCO NETWORKING ACADEMY Chabot College ELEC Transport Layer (4)
IST 201 Chapter 9. TCP/IP Model Application Transport Internet Network Access.

IST 201 Chapter 9. TCP/IP Model Application Transport Internet Network Access.
STUN Date: 2011-05-25 Speaker: Hui-Hsiung Chung 1.

STUN Date: Speaker: Hui-Hsiung Chung 1.
CS 4700 / CS 5700 Network Fundamentals Lecture 13: Middleboxes and NAT (Duct tape for IPv4) Revised 3/9/2013.

CS 4700 / CS 5700 Network Fundamentals Lecture 13: Middleboxes and NAT (Duct tape for IPv4) Revised 3/9/2013.
Firewalls and Intrusion Detection Systems

Firewalls and Intrusion Detection Systems
Page: 1 Director 1.0 TECHNION Department of Computer Science The Computer Communication Lab (236340) Summer 2002 Submitted by: David Schwartz Idan Zak.

Page: 1 Director 1.0 TECHNION Department of Computer Science The Computer Communication Lab (236340) Summer 2002 Submitted by: David Schwartz Idan Zak.
Scanning February 23, 2010 MIS 4600 – MBA 5880 - © Abdou Illia.

Scanning February 23, 2010 MIS 4600 – MBA © Abdou Illia.
Understanding Networks. Objectives Compare client and network operating systems Learn about local area network technologies, including Ethernet, Token.

Understanding Networks. Objectives Compare client and network operating systems Learn about local area network technologies, including Ethernet, Token.
Chapter 6 Network Address Translation (NAT). Network Address Translation  Modification of source or destination IP address  Needed by networks using.

Chapter 6 Network Address Translation (NAT). Network Address Translation  Modification of source or destination IP address  Needed by networks using.
Introduction To Networking

Introduction To Networking
1 Spring Semester 2007, Dept. of Computer Science, Technion Internet Networking recitation #12 LSNAT - Load Sharing NAT (RFC 2391)

1 Spring Semester 2007, Dept. of Computer Science, Technion Internet Networking recitation #12 LSNAT - Load Sharing NAT (RFC 2391)
Section 461.  ARP  Ghostbusters  Grew up in Lexington, KY  Enjoy stargazing, cycling, and mushroom hunting  Met Mario once (long time ago)

Section 461.  ARP  Ghostbusters  Grew up in Lexington, KY  Enjoy stargazing, cycling, and mushroom hunting  Met Mario once (long time ago)
Middleboxes & Network Appliances EE122 TAs Past and Present.

Middleboxes & Network Appliances EE122 TAs Past and Present.
4: Addressing Working At A Small-to-Medium Business or ISP.

4: Addressing Working At A Small-to-Medium Business or ISP.
TRANSPORT LAYER T.Najah Al-Subaie Kingdom of Saudi Arabia Prince Norah bint Abdul Rahman University College of Computer Since and Information System NET331.

TRANSPORT LAYER T.Najah Al-Subaie Kingdom of Saudi Arabia Prince Norah bint Abdul Rahman University College of Computer Since and Information System NET331.

Similar presentations

Ads by Google