Presentation is loading. Please wait.

Presentation is loading. Please wait.

NAT (Network Address Translation)

Published byRosaline Fowler Modified over 6 years ago

Similar presentations

Presentation on theme: "NAT (Network Address Translation)"— Presentation transcript:

1 NAT (Network Address Translation)
Section 461

2 Jokes Seal Ghostbusters Bittorrent

3 Introduction to Nat Grew up in Lexington, KY
Enjoy stargazing, cycling, and mushroom hunting Met Mario once (long time ago)

4 Introduction to NAT Network Address Translation
Not very old (heavy use since late 90s) Maps from private addresses to public addresses, and vice-versa Port numbers as secondary addressing information Most common type of NAT is actually NAPT (Network Address Port Translation) Other type of NAT is “Basic NAT” (which we won’t really be discussing)

5 Private Networks Any IP network that isn’t directly connected to the internet IP addresses can be assigned however we want! However, generally these ranges are used:

6 NAT Diagram

7 How’s NAT work? How could we do this?

8 How’s NAT work? Each NAT device (router) has an address translation table For outbound packets, a new table entry is made, choosing an arbitrary source port number (TCP/IP headers rewritten) For inbound packets, the table is consulted to rewrite the packet headers and re-route to an internal host Phone analogy

9 Why Do We Need NAT? Why is NAT necessary?

10 Why Do We Need NAT? Why is NAT necessary?
Not enough IP addresses to go around We want some hosts not to be publicly accessible Security concerns (NATs are used as firewalls)

11 Types of NAT Full-cone NAT Address-restricted-cone NAT
Accepts data through any previously used port Address-restricted-cone NAT Only accepts data through previously used ports if the source IP matches a system we’ve already sent to Port-restricted-cone NAT Like the above, but uses source ports too Symmetric NAT Mappings are unique to external hosts: a different public port is used for each external host

12 Problems with NAT NAT is great! But it has issues Like what?

13 Problems with NAT NAT is great! But it has issues Like what?
Breaks “end-to-end principle” Should just use IPv6 Rewrites packet headers Even requires new TCP checksum! Initial issue: how do you connect to a host behind a NAT if it hasn’t talked to you first?

14 Running Services behind a NAT
You’re behind a NAT, and you need an external host’s packets to get to you Example: running a web host behind a NAT You can’t necessarily send an outbound packet first to write the NAT table Major issue for games and P2P Solutions? Port forwarding (manually adding tables to the address translation table)

15 NAT Punchthrough Two hosts behind NATs need a way to exchange data directly They know each other’s IPs, but not each other’s communication ports They both connect to a known server that exchanges the data for them They can now communicate Often used for multiplayer games

16 UPnP and IGD UPnP: Universal Plug and Play
Protocols for networked devices to perform discovery automatically IGD: Internet Gateway Device protocol NAT protocol that can perform automatic port mapping Allows a host inside a network to tell the router which public port it wants to use for communication Also gives mechanisms for finding public IP address and checking existing port mappings Games can rely on this protocol to configure NAT tables such that users can be mapped with known ports and communication can take place

17 STUN Old Name: Simple Traversal of UDP through NAT
New Name: Session Traversal Utilities for NAT Protocol for NAT traversal Hosts get their own public-facing IPs by asking an outside server

18 TURN Traversal Using Relays Around NAT
Similar to earlier punchthrough algorithm A server sits between two hosts behind NATs The server relays data between the two hosts

19 ICE Interactive Connectivity Establishment
Protocol that utilizes STUN and TURN to perform NAT punchthrough Used often in VoIP

20 Questions?

Download ppt "NAT (Network Address Translation)"

Similar presentations

CST 415 - Computer Networks NAT CST 415 4/10/2017 CST 415 - Computer Networks.

CST Computer Networks NAT CST 415 4/10/2017 CST Computer Networks.
CPSC 441 - Network Layer4-1 IP addresses: how to get one? Q: How does a host get IP address? r hard-coded by system admin in a file m Windows: control-panel->network->configuration-

CPSC Network Layer4-1 IP addresses: how to get one? Q: How does a host get IP address? r hard-coded by system admin in a file m Windows: control-panel->network->configuration-
CS 4700 / CS 5700 Network Fundamentals Lecture 15: NAT (You Better Forward Those Ports) Revised 3/9/2013.

CS 4700 / CS 5700 Network Fundamentals Lecture 15: NAT (You Better Forward Those Ports) Revised 3/9/2013.
NAT/Firewall Traversal April 2009. NAT revisited – “port-translating NAT”

NAT/Firewall Traversal April NAT revisited – “port-translating NAT”
STUN Date: 2011-05-25 Speaker: Hui-Hsiung Chung 1.

STUN Date: Speaker: Hui-Hsiung Chung 1.
SIP Traversal over NAT Problems and Solutions Mr. Ting-Yun Chi May 2,2006 (Taiwan,NICI IPv6 R&D Division)

SIP Traversal over NAT Problems and Solutions Mr. Ting-Yun Chi May 2,2006 (Taiwan,NICI IPv6 R&D Division)
Copyright 2005 – 2009 © by Elliot Eichen. All rights reserved. NAT (NAPT/PAT), STUN, and ICE `Structure of ice II, viewed along the hexagonal c-axis. Hydrogen.

Copyright 2005 – 2009 © by Elliot Eichen. All rights reserved. NAT (NAPT/PAT), STUN, and ICE `Structure of ice II, viewed along the hexagonal c-axis. Hydrogen.
1 © 2005 Cisco Systems, Inc. All rights reserved. Cisco Confidential Session Number Presentation_ID STUN, TURN and ICE Cary Fitzgerald.

1 © 2005 Cisco Systems, Inc. All rights reserved. Cisco Confidential Session Number Presentation_ID STUN, TURN and ICE Cary Fitzgerald.
Chapter 6 Network Address Translation (NAT). Network Address Translation  Modification of source or destination IP address  Needed by networks using.

Chapter 6 Network Address Translation (NAT). Network Address Translation  Modification of source or destination IP address  Needed by networks using.
SIP, NAT, Firewall SIP NAT Firewall How to Traversal NAT/Firewall for SIP.

SIP, NAT, Firewall SIP NAT Firewall How to Traversal NAT/Firewall for SIP.
Subnetting.

Subnetting.
Section 461.  ARP  Ghostbusters  Grew up in Lexington, KY  Enjoy stargazing, cycling, and mushroom hunting  Met Mario once (long time ago)

Section 461.  ARP  Ghostbusters  Grew up in Lexington, KY  Enjoy stargazing, cycling, and mushroom hunting  Met Mario once (long time ago)
Support Protocols and Technologies. Topics Filling in the gaps we need to make for IP forwarding work in practice – Getting IP addresses (DHCP) – Mapping.

Support Protocols and Technologies. Topics Filling in the gaps we need to make for IP forwarding work in practice – Getting IP addresses (DHCP) – Mapping.
Day15 IP Space/Setup. IP Suite of protocols –TCP –UDP –ICMP –GRE… Gives us many benefits –Routing of packets over internet –Fragmentation/Reassembly of.

Day15 IP Space/Setup. IP Suite of protocols –TCP –UDP –ICMP –GRE… Gives us many benefits –Routing of packets over internet –Fragmentation/Reassembly of.
4: Addressing Working At A Small-to-Medium Business or ISP.

4: Addressing Working At A Small-to-Medium Business or ISP.
Network Layer4-1 NAT: Network Address Translation 10.0.0.1 10.0.0.2 10.0.0.3 10.0.0.4 138.76.29.7 local network (e.g., home network) 10.0.0/24 rest of.

Network Layer4-1 NAT: Network Address Translation local network (e.g., home network) /24 rest of.
Network Address Translation (NAT) CS-480b Dick Steflik.

Network Address Translation (NAT) CS-480b Dick Steflik.
Network Address Translation (NAT)

Network Address Translation (NAT)
9/11/2015Home Networking1 Bob.test Have Road Runner Unhappy about reports of constant probes of machines Policy decision –I want to prevent unauthorized.

9/11/2015Home Networking1 Bob.test Have Road Runner Unhappy about reports of constant probes of machines Policy decision –I want to prevent unauthorized.
1 IP: putting it all together Part 2 G53ACC Chris Greenhalgh.

1 IP: putting it all together Part 2 G53ACC Chris Greenhalgh.

Similar presentations

Ads by Google