Presentation is loading. Please wait.

Presentation is loading. Please wait.

Network Address Translation (NAT)

Published byJanice Lyons Modified over 9 years ago

Similar presentations

Presentation on theme: "Network Address Translation (NAT)"— Presentation transcript:

1 Network Address Translation (NAT)
Don McGregor Research Associate MOVES Institute Understanding global peace and conflict means understanding of human communities in the midst of and in response to change. US Joint Forces Command noted that “changes in the strategic landscape… new technologies, and the adaptation and creativity of our adversaries will alter….operations a great deal. Here too, the past can suggest much about the future – the nature of change, its impacts on human societies….” This presentation provides an overview of the project and research methodology, progress to date and planned go-forward efforts. 2008. The Joint Operating Environment, United States Joint Forces Command Center for Joint Futures (J59).

2 Network Address Translation
In the original “classic” internet IPs were all publicly addressable. You could contact any host from any other host IPs have become a somewhat rare commodity now, so people are trying to conserve them. One way to do this is via NAT The idea is to use a single “classic” IP on the internet-facing side of a network, and “private” IPs on the other side

3 NAT Router Router Public IP Private IP Internet 205.155.65.17
Home Router Laptop Private IP

4 NAT Your home router, when it boots, usually receives a public IP from your ISP on its internet-facing side. This IP can be addressed by the internet. On your home network side, it usually assigns itself an IP of This is a “private IP” that is not usable on the big internet Your router runs DHCP itself, and hands out private IPs to anything on your home network (but not the public-facing network!) So a laptop on your home network might get assigned an IP of Everything in your home network has a unique IP and everything is happy

5 Private IPs The IETF has assigned certain blocks of Ips to be “private IPs”. They are These IPs can only be used within a private network. If any packets have a destination address from the above blocks, they are simply discarded on the big internet. You can still use them on your private network, though.

6 Example: Send a packet from your laptop in your home network to a desktop in your home network. OK; source and destination IPs of x are OK on your private network Send a packet with a source or destination IP of x to Not OK! Packet must traverse the big internet, and there are millions of hosts with an IP of in private networks. We wouldn’t know where to send the response, determined by the source IP! As a result routers on the public internet discard packets using private IPs

7 Getting Out So how can we allow our laptop to contact Amazon from inside our private network? This is done via Network Address Translation A TCP/IP packet has a source and destination IP address Src IP Dest IP …Other stuff Payload

8 NAT When the packet is received by your home router it does a change: the source IP is changed from to the public IP assigned to the home router, This IP is unique in the internet; no other host anywhere in the world should have it When a response is received, the home router does a switch again: the destination IP is changed from the public IP to

9 NAT The NAT router maintains a table that maps each private network socket connection, so multiple hosts inside the private network can use the same NAT host

10 Configuration (Home) Usually you just point your web browser at There’s a web-based configuration tool there. Log on (probably with the pw and username in the documentation) and configure

11 Port Forwarding Notice that a host external to the NAT can’t talk to a host internal to the NAT—there’s no way to know which internal host it should go to unless an internal host first establishes a connection out and creates an entry in the NAT table This is a big problem for games and simulations exchanging state information One way around this is “port fowarding”. The NAT box is pre-configured so that traffic from outside to the router is automatically forwarded to a specific host and port

12 Port Forwarding (LinkSys)

13 Why? Suppose you’re running a network in a secure facility that is completely cut off from the internet. No need for routable IPs, and in fact you don’t want routable IPs It saves public IPs. A company can have only a few public IPs but hundreds or thousands of hosts with private IPs. The internet is running out of public IPs Can be more secure; an outsider can’t directly establish a connection to a private host Allows clients to contact outside servers

14 Why Not? Sometimes you want to have others connect to you (peer-to-peer): Voice over IP, games and virtual environments, etc. There are some techniques for allowing this (“NAT Punch-through” or “NAT traversal”) but they’re pretty complex and because home routers vary so much are difficult to standardize See RFC 5128 for details on NAT traversal See also “port forwarding”

Download ppt "Network Address Translation (NAT)"

Similar presentations

Fred P. Baker CCIE, CCIP(security), CCSA, MCSE+I, MCSE(2000)

Fred P. Baker CCIE, CCIP(security), CCSA, MCSE+I, MCSE(2000)
CST 415 - Computer Networks NAT CST 415 4/10/2017 CST 415 - Computer Networks.

CST Computer Networks NAT CST 415 4/10/2017 CST Computer Networks.
CPSC 441 - Network Layer4-1 IP addresses: how to get one? Q: How does a host get IP address? r hard-coded by system admin in a file m Windows: control-panel->network->configuration-

CPSC Network Layer4-1 IP addresses: how to get one? Q: How does a host get IP address? r hard-coded by system admin in a file m Windows: control-panel->network->configuration-
©2012 ClearOne Communications. Confidential and proprietary. COLLABORATE ® Video Conferencing Networking Basics.

©2012 ClearOne Communications. Confidential and proprietary. COLLABORATE ® Video Conferencing Networking Basics.
IP Masquerading Homes and Businesses: When you only have one IP but you have LOTS of machines.

IP Masquerading Homes and Businesses: When you only have one IP but you have LOTS of machines.
CS 4700 / CS 5700 Network Fundamentals Lecture 15: NAT (You Better Forward Those Ports) Revised 3/9/2013.

CS 4700 / CS 5700 Network Fundamentals Lecture 15: NAT (You Better Forward Those Ports) Revised 3/9/2013.
© 2007 Cisco Systems, Inc. All rights reserved.ICND1 v1.0—5-1 WAN Connections Enabling the Internet Connection.

© 2007 Cisco Systems, Inc. All rights reserved.ICND1 v1.0—5-1 WAN Connections Enabling the Internet Connection.
Ch. 1 – Scaling IP Addresses NAT/PAT and DHCP CCNA 4 version 3.0.

Ch. 1 – Scaling IP Addresses NAT/PAT and DHCP CCNA 4 version 3.0.
Ch. 1 – Scaling IP Addresses NAT/PAT and DHCP CCNA 4 version 3.0 Rick Graziani Cabrillo College.

Ch. 1 – Scaling IP Addresses NAT/PAT and DHCP CCNA 4 version 3.0 Rick Graziani Cabrillo College.
Ch. 1 – Scaling IP Addresses NAT/PAT and DHCP

Ch. 1 – Scaling IP Addresses NAT/PAT and DHCP
IP Address 1. 2 Network layer r Network layer protocols in every host, router r Router examines IP address field in all IP datagrams passing through it.

IP Address 1. 2 Network layer r Network layer protocols in every host, router r Router examines IP address field in all IP datagrams passing through it.
What we will cover… Home Networking: Network Address Translation (NAT) Mobile Routing.

What we will cover… Home Networking: Network Address Translation (NAT) Mobile Routing.
Ch. 1 – Scaling IP Addresses NAT/PAT and DHCP CMPSC-358 (CCNA 4 ) Spring 2007.

Ch. 1 – Scaling IP Addresses NAT/PAT and DHCP CMPSC-358 (CCNA 4 ) Spring 2007.
M. Dahshan - TCOM52721 TCOM 5272 Telecomm Lab Dr. Mostafa Dahshan OU-Tulsa 4W 2 nd floor 660-3713

M. Dahshan - TCOM52721 TCOM 5272 Telecomm Lab Dr. Mostafa Dahshan OU-Tulsa 4W 2 nd floor
IP Address 1. 2 Network layer r Network layer protocols in every host, router r Router examines IP address field in all IP datagrams passing through it.

IP Address 1. 2 Network layer r Network layer protocols in every host, router r Router examines IP address field in all IP datagrams passing through it.
Chapter 6 Network Address Translation (NAT). Network Address Translation  Modification of source or destination IP address  Needed by networks using.

Chapter 6 Network Address Translation (NAT). Network Address Translation  Modification of source or destination IP address  Needed by networks using.
Wi-Fi Structures.

Wi-Fi Structures.
CCNA Guide to Cisco Networking Fundamentals Fourth Edition Chapter 9 Network Services.

CCNA Guide to Cisco Networking Fundamentals Fourth Edition Chapter 9 Network Services.
A Guide to major network components

A Guide to major network components
Sybex CCENT 100-101 Chapter 13: Network Address Translation Instructor & Todd Lammle.

Sybex CCENT Chapter 13: Network Address Translation Instructor & Todd Lammle.

Similar presentations

Ads by Google