Presentation is loading. Please wait.

Presentation is loading. Please wait.

Computer Science & Engineering Introduction to Computer Networks Network Layer Overview.

Published byPriscilla Roberts Modified over 9 years ago

Similar presentations

Presentation on theme: "Computer Science & Engineering Introduction to Computer Networks Network Layer Overview."— Presentation transcript:

1 Computer Science & Engineering Introduction to Computer Networks Network Layer Overview

2 CSE 461 University of Washington2 Where we are in the Course Starting the Network Layer! – Builds on the link layer. Routers send packets over multiple networks Physical Link Network Transport Application

3 CSE 461 University of Washington3 Why do we need a Network layer? We can already build networks with links and switches and send frames between hosts …

4 CSE 461 University of Washington4 Shortcomings of Switches 1.Don’t scale to large networks – Blow up of routing table, broadcast Table for all destinations in the world! Broadcast new destinations to the whole world!

5 CSE 461 University of Washington5 Shortcomings of Switches (2) 2.Don’t work across more than one link layer technology – Hosts on Ethernet + 3G + 802.11 … Can we play too? Go away!

6 CSE 461 University of Washington6 Shortcomings of Switches (3) 3.Don’t give much traffic control – Want to plan routes / bandwidth That was lame.

7 CSE 461 University of Washington7 Network Layer Approach Scaling: – Hierarchy, in the form of prefixes Heterogeneity: – IP for internetworking Bandwidth Control: – Lowest-cost routing – Later QOS (Quality of Service)

8 CSE 461 University of Washington8 Topics Network service models – Datagrams (packets), virtual circuits IP (Internet Protocol) – Internetworking – Forwarding (Longest Matching Prefix) – Helpers: ARP and DHCP – Fragmentation and MTU discovery – Errors: ICMP (traceroute!) IPv6, the future of IP NAT, a “middlebox” Routing algorithms This time Next time

9 CSE 461 University of Washington9 Routing vs. Forwarding Routing is the process of deciding in which direction to send traffic – Network wide (global) and expensive Which way?

10 CSE 461 University of Washington10 Routing vs. Forwarding (2) Forwarding is the process of sending a packet on its way – Node process (local) and fast Forward! packet

11 CSE 461 University of Washington11 Our Plan Forwarding this time – What routers do with packets Routing next time – Logically this comes first – But ignore it for now

12 Computer Science & Engineering Introduction to Computer Networks Network Services (§5.1)

13 CSE 461 University of Washington13 Topic What kind of service does the Network layer provide to the Transport layer? – How is it implemented at routers? Service? What’s he talking about?

14 CSE 461 University of Washington14 Two Network Service Models Datagrams, or connectionless service – Like postal letters – (This one is IP) Virtual circuits, or connection- oriented service – Like a telephone call

15 CSE 461 University of Washington15 Store-and-Forward Packet Switching Both models are implemented with store-and-forward packet switching – Routers receive a complete packet, storing it temporarily if necessary before forwarding it onwards – We use statistical multiplexing to share link bandwidth over time

16 Store-and-Forward (2) Switching element has internal buffering for contention CSE 461 University of Washington16... Input Buffer Output Buffer Fabric Input Output

17 Store-and-Forward (3) Simplified view with per port output buffering – Buffer is typically a FIFO (First In First Out) queue – If full, packets are discarded (congestion, later) CSE 461 University of Washington17 (FIFO) Queue Queued Packets Router =

18 Datagram Model Packets contain a destination address; each router uses it to forward each packet, possibly on different paths CSE 461 University of Washington18 ISP’s equipment

19 Datagram Model (2) Each router has a forwarding table keyed by address – Gives next hop for each destination address; may change CSE 461 University of Washington19 A’s table (initially) A’s table (later) C’s Table E’s Table B B

20 IP (Internet Protocol) Network layer of the Internet, uses datagrams (next) – IPv4 carries 32 bit addresses on each packet (often 1.5 KB) CSE 461 University of Washington20 Payload (e.g., TCP segment)

21 Virtual Circuit Model Three phases: 1.Connection establishment, circuit is set up Path is chosen, circuit information stored in routers 2.Data transfer, circuit is used Packets are forwarded along the path 3.Connection teardown, circuit is deleted Circuit information is removed from routers Just like a telephone circuit, but virtual in the sense that no bandwidth need be reserved; statistical sharing of links CSE 461 University of Washington21

22 Virtual Circuits (2) Packets only contain a short label to identify the circuit – Labels don’t have any global meaning, only unique for a link CSE 461 University of Washington22 ISP’s equipment

23 Virtual Circuits (3) Each router has a forwarding table keyed by circuit – Gives output line and next label to place on packet CSE 461 University of Washington23 A’s table C’s Table E’s Table 1 1 Circuit #1 Circuit #2 H3 H1 F F 55

24 Virtual Circuits (4) Each router has a forwarding table keyed by circuit – Gives output line and next label to place on packet CSE 461 University of Washington24 A’s table C’s Table E’s Table 1 1 Circuit #1 Circuit #2 5 2 2 2 H3 H1 1 1 F F 55

25 MPLS (Multi-Protocol Label Switching, §5.6.5) A virtual-circuit like technology widely used by ISPs – ISP sets up circuits inside their backbone ahead of time – ISP adds MPLS label to IP packet at ingress, undoes at egress CSE 461 University of Washington25

26 Datagrams vs Virtual Circuits Complementary strengths CSE 461 University of Washington26 IssueDatagramsVirtual Circuits Setup phaseNot neededRequired Router statePer destinationPer connection AddressesPacket carries full addressPacket carries short label RoutingPer packetPer circuit FailuresEasier to maskDifficult to mask Quality of serviceDifficult to addEasier to add

27 Computer Science & Engineering Introduction to Computer Networks Internetworking (§5.5, 5.6.1)

28 CSE 461 University of Washington28 Topic How do we connect different networks together? – This is called internetworking – We’ll look at how IP does it Hi there!Hi yourself

29 CSE 461 University of Washington29 How Networks May Differ Basically, in a lot of ways: – Service model (datagrams, VCs) – Addressing (what kind) – QOS (priorities, no priorities) – Packet sizes – Security (whether encrypted) Internetworking hides the differences with a common protocol. (Uh oh.)

30 Connecting Datagram and VC networks An example to show that it’s not so easy – Need to map destination address to a VC and vice-versa – A bit of a “road bump”, e.g., might have to set up a VC CSE 461 University of Washington30 Bump!

31 CSE 461 University of Washington31 Internetworking – Cerf and Kahn Pioneered by Cerf and Kahn, the “fathers of the Internet” – In 1974, later led to TCP/IP Tackled the problems of interconnecting networks – Instead of mandating a single network technology © 2009 IEEE Vint CerfBob Kahn

32 Internet Reference Model IP is the “narrow waist” of the Internet – Supports many different links below and apps above CSE 461 University of Washington32 4. Application 3. Transport 2. Internet 1. Link Ethernet 802.11 IP TCP UDP HTTPSMTPRTPDNS 3G DSL Cable

33 CSE 461 University of Washington33 IP as a Lowest Common Denominator Suppose only some networks support QOS or security etc. – Difficult for internetwork to support Pushes IP to be a “lowest common denominator” protocol – Asks little of lower-layer networks – Gives little as a higher layer service

34 IPv4 (Internet Protocol) Various fields to meet straightforward needs – Version, Header (IHL) and Total length, Protocol, and Header Checksum CSE 461 University of Washington34 Payload (e.g., TCP segment)

35 IPv4 (2) Network layer of the Internet, uses datagrams – Provides a layer of addressing above link addresses (next) CSE 461 University of Washington35 Payload (e.g., TCP segment)

36 IPv4 (3) Some fields to handle packet size differences (later) – Identification, Fragment offset, Fragment control bits CSE 461 University of Washington36 Payload (e.g., TCP segment)

37 IPv4 (4) Other fields to meet other needs (later, later) – Differentiated Services, Time to live (TTL) CSE 461 University of Washington37 Payload (e.g., TCP segment) Later, with ICMP Later, with QOS

38 Computer Science & Engineering Introduction to Computer Networks IP Forwarding (§5.6.1-5.6.2)

39 CSE 461 University of Washington39 Topic How do routers forward packets? – We’ll look at how IP does it – (We’ll cover routing later) Forward! packet

40 CSE 461 University of Washington40 Recap We want the network layer to: – Scale to large networks Using addresses with hierarchy – Support diverse technologies Internetworking with IP – Use link bandwidth well Lowest-cost routing Next week Next lecture This lecture

41 IP Addresses IPv4 uses 32-bit addresses – Later we’ll see IPv6, which uses 128-bit addresses Written in “dotted quad” notation – Four 8-bit numbers separated by dots CSE 461 University of Washington41 aaaaaaaabbbbbbbbccccccccdddddddd ↔ A.B.C.D 8 bits 00010010000111110000000000000001 ↔

42 IP Prefixes Addresses are allocated in blocks called prefixes – Addresses in an L-bit prefix have the same top L bits – There are 2 32-L addresses aligned on 2 32-L boundary CSE 461 University of Washington42

43 IP Prefixes (2) Written in “address/length” notation – Address is lowest address in the prefix, length is prefix bits – E.g., 128.13.0.0/16 is 128.13.0.0 to 128.13.255.255 – So a /24 (“slash 24”) is 256 addresses, and a /32 is one address CSE 461 University of Washington43 000100100001111100000000xxxxxxxx ↔ ↔ 128.13.0.0/16

44 Classful IP Addressing Originally, IP addresses came in fixed size blocks with the class/size encoded in the high-order bits – They still do, but the classes are now ignored CSE 461 University of Washington44 1 10 110 0162432 bits8 Class A, 2 24 addresses Class B, 2 16 addresses Class C, 2 8 addresses Network portionHost portion

45 IP Forwarding All addresses on one network belong to the same prefix Node uses a table that lists the next hop for prefixes CSE 461 University of Washington45 D C B A PrefixNext Hop 192.24.0.0/19D 192.24.12.0/22B

46 Longest Matching Prefix Prefixes in the table might overlap! – Combines hierarchy with flexibility Longest matching prefix forwarding rule: – For each packet, find the longest prefix that contains the destination address, i.e., the most specific entry – Forward the packet to the next hop router for that prefix CSE 461 University of Washington46

47 Longest Matching Prefix (2) CSE 461 University of Washington47 PrefixNext Hop 192.24.0.0/19D 192.24.12.0/22B 192.24.0.0 192.24.63.255 /19 /22 192.24.12.0 192.24.15.255 IP address 192.24.6.0  192.24.16.32  More specific

48 Host/Router Distinction In the Internet: – Routers do the routing – Hosts send remote traffic to the nearest router CSE 461 University of Washington48 It’s my job to know which way to go … Not for my network? Send it to the router

49 CSE 461 University of Washington49 Host Forwarding Table Give using longest matching prefix – 0.0.0.0/0 is a default route that catches all IP addresses PrefixNext Hop My network prefixSend to that IP 0.0.0.0/0Send to my router

50 CSE 461 University of Washington50 Flexibility of Longest Matching Prefix Can provide default behavior, with less specifics – To send traffic going outside an organization to a border router Can special case behavior, with more specifics – For performance, economics, security, …

51 CSE 461 University of Washington51 Performance of Longest Matching Prefix Uses hierarchy for a compact table – Relies on use of large prefixes Lookup more complex than table – Used to be a concern for fast routers – Not an issue in practice these days

52 CSE 461 University of Washington52 Other Aspects of Forwarding It’s not all about addresses … Payload (e.g., TCP segment)

53 CSE 461 University of Washington53 Other Aspects (2) Decrement TTL value – Protects against loops Checks header checksum – To add reliability Fragment large packets – Split to fit it on next link Send congestion signals – Warns hosts of congestion Generates error messages – To help mange network Handle various options Coming later

54 Computer Science & Engineering Introduction to Computer Networks Helping IP with ARP, DHCP (§5.6.4)

55 CSE 461 University of Washington55 Topic Filling in the gaps we need to make for IP forwarding work in practice – Getting IP addresses (DHCP) » – Mapping IP to link addresses (ARP) » What link layer address do I use? What’s my IP?

56 CSE 461 University of Washington56 Getting IP Addresses Problem: – A node wakes up for the first time … – What is its IP address? What’s the IP address of its router? Etc. – At least Ethernet address is on NIC Hey, where am I?

57 CSE 461 University of Washington57 Getting IP Addresses (2) 1.Manual configuration (old days) – Can’t be factory set, depends on use 2.A protocol for automatically configuring addresses (DHCP) – Shifts burden from users to IT folk Use A.B.C.D What’s my IP?

58 CSE 461 University of Washington58 DHCP DHCP (Dynamic Host Configuration Protocol), from 1993, widely used It leases IP address to nodes Provides other parameters too – Network prefix – Address of local router – DNS server, time server, etc.

59 CSE 461 University of Washington59 DHCP Protocol Stack DHCP is a client-server application – Uses UDP ports 67, 68 Ethernet IP UDP DHCP

60 CSE 461 University of Washington60 DHCP Addressing Bootstrap issue: – How does node send a message to DHCP server before it is configured? Answer: – Node sends broadcast messages that delivered to all nodes on the network – Broadcast address is all 1s – IP (32 bit): 255.255.255.255 – Ethernet (48 bit): ff:ff:ff:ff:ff:ff

61 CSE 461 University of Washington61 DHCP Messages Client Server One link

62 CSE 461 University of Washington62 DHCP Messages (2) Client Server DISCOVER REQUEST OFFER ACK Broadcast

63 CSE 461 University of Washington63 DHCP Messages (3) To renew an existing lease, an abbreviated sequence is used: – REQUEST, followed by ACK Protocol also supports replicated servers for reliability

64 CSE 461 University of Washington64 Sending an IP Packet Problem: – A node needs Link layer addresses to send a frame over the local link – How does it get the destination link address from a destination IP address? Uh oh … My IP is 1.2.3.4

65 CSE 461 University of Washington65 ARP (Address Resolution Protocol) Node uses to map a local IP address to its Link layer addresses Source Ethernet Dest. Ethernet Source IP Dest. IP Payload … Link layer From DHCP From NIC From ARP

66 CSE 461 University of Washington66 ARP Protocol Stack ARP sits right on top of link layer – No servers, just asks node with target IP to identify itself – Uses broadcast to reach all nodes Ethernet ARP

67 CSE 461 University of Washington67 ARP Messages Node Target One link

68 CSE 461 University of Washington68 ARP Messages (2) Node Target R EQUEST Broadcast Who has IP 1.2.3.4? REPLY I do at 1:2:3:4:5:6

69 CSE 461 University of Washington69 Discovery Protocols Help nodes find each other – There are more of them! E.g., zeroconf, Bonjour Often involve broadcast – Since nodes aren’t introduced – Very handy glue

70 Computer Science & Engineering Introduction to Computer Networks Packet Fragmentation(§5.5.5)

71 Big packet CSE 461 University of Washington71 Topic How do we connect networks with different maximum packet sizes? – Need to split up packets, or discover the largest size to use It’s too big! Take that

72 CSE 461 University of Washington72 Packet Size Problem Different networks have different maximum packet sizes – Or MTU (Maximum Transmission Unit) – E.g., Ethernet 1.5K, WiFi 2.3K Prefer large packets for efficiency – But what size is too large? – Difficult because node does not know complete network path

73 CSE 461 University of Washington73 Packet Size Solutions Fragmentation (now) – Split up large packets in the network if they are too big to send – Classic method, dated Discovery (next) – Find the largest packet that fits on the network path and use it – IP uses today instead of fragmentation

74 IPv4 Fragmentation Routers fragment packets that are too large to forward Receiving host reassembles to reduce load on routers CSE 461 University of Washington74 Fragment!Reassemble! Fits on first link

75 IPv4 Fragmentation Fields Header fields used to handle packet size differences – Identification, Fragment offset, MF/DF control bits CSE 461 University of Washington75 Payload (e.g., TCP segment)

76 CSE 461 University of Washington76 IPv4 Fragmentation Procedure Routers split a packet that is too large: – Typically break into large pieces – Copy IP header to pieces – Adjust length on pieces – Set offset to indicate position – Set MF (More Fragments) on all pieces except last Receiving hosts reassembles the pieces: – Identification field links pieces together, MF tells receiver when it has all pieces

77 IPv4 Fragmentation (2) CSE 461 University of Washington77 ID = 0x12ef Data Len = 2300 Offset = 0 MF = 0 ID = Data Len = Offset = MF = ID = Data Len = Offset = MF = Before MTU = 2300 After MTU = 1500 (Ignore length of headers)

78 IPv4 Fragmentation (3) CSE 461 University of Washington78 ID = 0x12ef Data Len = 2300 Offset = 0 MF = 0 ID = 0x12ef Data Len = 1500 Offset = 0 MF = 1 ID = 0x12ef Data Len = 800 Offset = 1500 MF = 0 Before MTU = 2300 After MTU = 1500

79 CSE 461 University of Washington79 IPv4 Fragmentation (4) It works! – Allows repeated fragmentation But fragmentation is undesirable – More work for routers, hosts – Tends to magnify loss rate – Security vulnerabilities too

80 CSE 461 University of Washington80 Path MTU Discovery Discover the MTU that will fit – So we can avoid fragmentation – The method in use today Host tests path with large packet – Routers provide feedback if too large; they tell host what size would have fit

81 Path MTU Discovery (2) CSE 461 University of Washington81 Try 1200 Try 900 MTU=1200 bytes MTU=900 MTU=1400

82 Path MTU Discovery (3) CSE 461 University of Washington82 Try 1200 Try 900 Test #2Test #3 Test #1 MTU=1200 bytes MTU=900 MTU=1400

83 CSE 461 University of Washington83 Path MTU Discovery (4) Process may seem involved – But usually quick to find right size Path MTU depends on the path and so can change over time – Search is ongoing Implemented with ICMP (next) – Set DF (Don’t Fragment) bit in IP header to get feedback messages

84 Computer Science & Engineering Introduction to Computer Networks Error Handling with ICMP (§5.6.4)

85 CSE 461 University of Washington85 Topic What happens when something goes wrong during forwarding? – Need to be able to find the problem Yikes! What happened? XXXXXXX

86 CSE 461 University of Washington86 Internet Control Message Protocol ICMP is a companion protocol to IP – They are implemented together – Sits on top of IP (IP Protocol=1) Provides error report and testing – Error is at router while forwarding – Also testing that hosts can use

87 ICMP Errors When router encounters an error while forwarding: – It sends an ICMP error report back to the IP source address – It discards the problematic packet; host needs to rectify CSE 461 University of Washington87 Report then toss it! Oh, now I see … XXXXXXX ICMP report

88 ICMP Message Format Each ICMP message has a Type, Code, and Checksum Often carry the start of the offending packet as payload Each message is carried in an IP packet CSE 461 University of Washington88

89 ICMP Message Format (2) Each ICMP message has a Type, Code, and Checksum Often carry the start of the offending packet as payload Each message is carried in an IP packet CSE 461 University of Washington89 Src=router, Dst=A Protocol = 1 Type=X, Code=Y Src=A, Dst=B XXXXXXXXXXXXXXX Portion of offending packet, starting with its IP header ICMP header IP header ICMP data

90 Example ICMP Messages CSE 461 University of Washington90 NameType / CodeUsage Dest. Unreachable (Net or Host)3 / 0 or 1Lack of connectivity Dest. Unreachable (Fragment)3 / 4Path MTU Discovery Time Exceeded (Transit)11 / 0Traceroute Echo Request or Reply8 or 0 / 0Ping Testing, not a forwarding error: Host sends Echo Request, and destination responds with an Echo Reply

91 Traceroute IP header contains TTL (Time to live) field – Decremented every router hop, with ICMP error if it hits zero – Protects against forwarding loops CSE 461 University of Washington91

92 Traceroute (2) Traceroute repurposes TTL and ICMP functionality – Sends probe packets increasing TTL starting from 1 – ICMP errors identify routers on the path CSE 461 University of Washington92... Local Host Remote Host 1 hop 2 hops 3 hops N-1 hops N hops

93 Computer Science & Engineering Introduction to Computer Networks IP Version 6 (§5.6.3)

94 CSE 461 University of Washington94 Topic IP version 6, the future of IPv4 that is now (still) being deployed Why do I want IPv6 again?

95 CSE 461 University of Washington95 At least a billion Internet hosts and growing … And we’re using 32-bit addresses! Internet Growth

96 The End of New IPv4 Addresses Now running on leftover blocks held by the regional registries; much tighter allocation policies CSE 461 University of Washington96 IANA (All IPs) ARIN (US, Canada) APNIC (Asia Pacific) RIPE (Europe) LACNIC (Latin Amer.) AfriNIC (Africa) ISPs Companies Exhausted on 2/11! End of the world ? 12/21/12? Exhausted on 4/11 and 9/12!

97 CSE 461 University of Washington97 IP Version 6 to the Rescue Effort started by the IETF in 1994 – Much larger addresses (128 bits) – Many sundry improvements Became an IETF standard in 1998 – Nothing much happened for a decade – Hampered by deployment issues, and a lack of adoption incentives – Big push ~2011 as exhaustion looms

98 IPv6 Deployment CSE 461 University of Washington98 Time for growth! Source: Google IPv6 Statistics, 30/1/13 Percentage of users accessing Google via IPv6

99 CSE 461 University of Washington99 IPv6 Features large addresses – 128 bits, most of header New notation – 8 groups of 4 hex digits (16 bits) – Omit leading zeros, groups of zeros 32 bits

100 CSE 461 University of Washington100 IPv6 (2) Lots of other, smaller changes – Streamlined header processing – Flow label to group of packets – Better fit with “advanced” features (mobility, multicasting, security) 32 bits

101 CSE 461 University of Washington101 IPv6 Transition The Big Problem: – How to deploy IPv6? – Fundamentally incompatible with IPv4 Dozens of approaches proposed – Dual stack (speak IPv4 and IPv6) – Translators (convert packets) – Tunnels (carry IPv6 over IPv4) »

102 Tunneling Native IPv6 islands connected via IPv4 – Tunnel carries IPv6 packets across IPv4 network CSE 461 University of Washington102

103 Tunneling (2) Tunnel acts as a single link across IPv4 network CSE 461 University of Washington103 User Tunnel

104 Tunneling (3) Tunnel acts as a single link across IPv4 network – Difficulty is to set up tunnel endpoints and routing CSE 461 University of Washington104 IPv6 Link User IPv4 Link IPv6 Link IPv6 Link IPv4 Link IPv6 Link Native IPv4 Native IPv6 Tunnel

105 Computer Science & Engineering Introduction to Computer Networks Network Address Translation (§5.6.2)

106 CSE 461 University of Washington106 Topic What is NAT (Network Address Translation)? How does it work? – NAT is widely used at the edges of the network, e.g., homes I’m a NAT box too! Internet

107 Layering Review Remember how layering is meant to work? – “Routers don’t look beyond the IP header.” Well … CSE 461 University of Washington107 TCP IP 802.11 App IP 802.11 IP Ethernet TCP IP 802.11 App IP 802.11 IP Ethernet Router

108 Middleboxes Sit “inside the network” but perform “more than IP” processing on packets to add new functionality – NAT box, Firewall / Intrusion Detection System CSE 461 University of Washington108 TCP IP 802.11 App IP 802.11 IP Ethernet TCP IP 802.11 App IP 802.11 IP Ethernet Middlebox App / TCP

109 CSE 461 University of Washington109 Middleboxes (2) Advantages – A possible rapid deployment path when there is no other option – Control over many hosts (IT) Disadvantages – Breaking layering interferes with connectivity; strange side effects – Poor vantage point for many tasks

110 CSE 461 University of Washington110 NAT (Network Address Translation) Box NAT box connects an internal network to an external network – Many internal hosts are connected using few external addresses – Middlebox that “translates addresses” Motivated by IP address scarcity – Controversial at first, now accepted

111 CSE 461 University of Washington111 NAT (2) Common scenario: – Home computers use “private” IP addresses – NAT (in AP/firewall) connects home to ISP using a single external IP address ISP Unmodified computers at homeLooks like one computer outside NAT box

112 CSE 461 University of Washington112 How NAT Works Keeps an internal/external table – Typically uses IP address + TCP port – This is address and port translation Need ports to make mapping 1-1 since there are fewer external IPs Internal IP:portExternal IP : port 192.168.1.12 : 552344.25.80.3 : 1500 192.168.1.13 : 123444.25.80.3 : 1501 192.168.2.20 : 123444.25.80.3 : 1502 What ISP thinks What host thinks

113 How NAT Works (2) Internal  External: – Look up and rewrite Source IP/port CSE 461 University of Washington113 Internal IP:portExternal IP : port 192.168.1.12 : 552344.25.80.3 : 1500 NAT box External destination IP=X, port=Y Internal source Src = Dst = Src = Dst =

114 How NAT Works (3) External  Internal – Look up and rewrite Destination IP/port CSE 461 University of Washington114 Internal IP:portExternal IP : port 192.168.1.12 : 552344.25.80.3 : 1500 NAT box External source IP=X, port=Y Internal destination Src = Dst = Src = Dst =

115 How NAT Works (4) Need to enter translations in the table for it to work – Create external name when host makes a TCP connection CSE 461 University of Washington115 Internal IP:portExternal IP : port 192.168.1.12 : 5523 NAT box External destination IP=X, port=Y Internal source Src = Dst = Src = Dst =

116 CSE 461 University of Washington116 NAT Downsides Connectivity has been broken! – Can only send incoming packets after an outgoing connection is set up – Difficult to run servers or peer-to-peer apps (Skype) at home Doesn’t work so well when there are no connections (UDP apps) Breaks apps that unwisely expose their IP addresses (FTP)

117 CSE 461 University of Washington117 NAT Upsides Relieves much IP address pressure – Many home hosts behind NATs Easy to deploy – Rapidly, and by you alone Useful functionality – Firewall, helps with privacy Kinks will get worked out eventually – “NAT Traversal” for incoming traffic

Download ppt "Computer Science & Engineering Introduction to Computer Networks Network Layer Overview."

Similar presentations

Internetworking II: MPLS, Security, and Traffic Engineering

Internetworking II: MPLS, Security, and Traffic Engineering
CPSC 441 - Network Layer4-1 IP addresses: how to get one? Q: How does a host get IP address? r hard-coded by system admin in a file m Windows: control-panel->network->configuration-

CPSC Network Layer4-1 IP addresses: how to get one? Q: How does a host get IP address? r hard-coded by system admin in a file m Windows: control-panel->network->configuration-
Transitioning to IPv6 April 15,2005 Presented By: Richard Moore PBS Enterprise Technology.

Transitioning to IPv6 April 15,2005 Presented By: Richard Moore PBS Enterprise Technology.
20.1 Chapter 20 Network Layer: Internet Protocol Copyright © The McGraw-Hill Companies, Inc. Permission required for reproduction or display.

20.1 Chapter 20 Network Layer: Internet Protocol Copyright © The McGraw-Hill Companies, Inc. Permission required for reproduction or display.
IPv4 - The Internet Protocol Version 4

IPv4 - The Internet Protocol Version 4
CS 457 – Lecture 16 Global Internet - BGP Spring 2012.

CS 457 – Lecture 16 Global Internet - BGP Spring 2012.
Network Layer IPv6 Slides were original prepared by Dr. Tatsuya Suda.

Network Layer IPv6 Slides were original prepared by Dr. Tatsuya Suda.
CSE 461: IP/ICMP and the Network Layer. Next Topic  Focus:  How do we build large networks?  Introduction to the Network layer  Internetworks  Service.

CSE 461: IP/ICMP and the Network Layer. Next Topic  Focus:  How do we build large networks?  Introduction to the Network layer  Internetworks  Service.
1 o Two issues in practice – Scale – Administrative autonomy o Autonomous system (AS) or region o Intra autonomous system routing protocol o Gateway routers.

1 o Two issues in practice – Scale – Administrative autonomy o Autonomous system (AS) or region o Intra autonomous system routing protocol o Gateway routers.
Internet Control Protocols Savera Tanwir. Internet Control Protocols ICMP ARP RARP DHCP.

Internet Control Protocols Savera Tanwir. Internet Control Protocols ICMP ARP RARP DHCP.
8-1 Last time □ Network layer ♦ Introduction forwarding vs. routing ♦ Virtual circuit vs. datagram details connection setup, teardown VC# switching forwarding.

8-1 Last time □ Network layer ♦ Introduction forwarding vs. routing ♦ Virtual circuit vs. datagram details connection setup, teardown VC# switching forwarding.
Network Layer Packet Forwarding IS250 Spring 2010

Network Layer Packet Forwarding IS250 Spring 2010
IP Suite© Dr. Ayman Abdel-Hamid, CS4254 Spring 20061 CS4254 Computer Network Architecture and Programming Dr. Ayman A. Abdel-Hamid Computer Science Department.

IP Suite© Dr. Ayman Abdel-Hamid, CS4254 Spring CS4254 Computer Network Architecture and Programming Dr. Ayman A. Abdel-Hamid Computer Science Department.
Chapter 5 The Network Layer.

Chapter 5 The Network Layer.
Network Layer4-1 IP: Internet Protocol r Datagram format r IPv4 addressing r DHCP: Dynamic Host Configuration Protocol r NAT: Network Address Translation.

Network Layer4-1 IP: Internet Protocol r Datagram format r IPv4 addressing r DHCP: Dynamic Host Configuration Protocol r NAT: Network Address Translation.
Network Layer4-1 Network layer r transport segment from sending to receiving host r on sending side encapsulates segments into datagrams r on rcving side,

Network Layer4-1 Network layer r transport segment from sending to receiving host r on sending side encapsulates segments into datagrams r on rcving side,
David Wetherall Professor of Computer Science & Engineering Introduction to Computer Networks Helping IP with ARP, DHCP (§5.6.4)

David Wetherall Professor of Computer Science & Engineering Introduction to Computer Networks Helping IP with ARP, DHCP (§5.6.4)
Support Protocols and Technologies. Topics Filling in the gaps we need to make for IP forwarding work in practice – Getting IP addresses (DHCP) – Mapping.

Support Protocols and Technologies. Topics Filling in the gaps we need to make for IP forwarding work in practice – Getting IP addresses (DHCP) – Mapping.
Network Layer4-1 NAT: Network Address Translation 10.0.0.1 10.0.0.2 10.0.0.3 10.0.0.4 138.76.29.7 local network (e.g., home network) 10.0.0/24 rest of.

Network Layer4-1 NAT: Network Address Translation local network (e.g., home network) /24 rest of.
IP (Internet Protocol) –the network level protocol in the Internet. –Philosophy – minimum functionality in IP, smartness at the end system. –What does.

IP (Internet Protocol) –the network level protocol in the Internet. –Philosophy – minimum functionality in IP, smartness at the end system. –What does.

Similar presentations

Ads by Google