Presentation is loading. Please wait.

Presentation is loading. Please wait.

Chapter 4, slide: 1 Chapter 4: Network Layer r Introduction r IP: Internet Protocol  IPv4 addressing  NAT  IPv6 r Routing algorithms  Link state 

Published byWinfred Beasley Modified over 9 years ago

Similar presentations

Presentation on theme: "Chapter 4, slide: 1 Chapter 4: Network Layer r Introduction r IP: Internet Protocol  IPv4 addressing  NAT  IPv6 r Routing algorithms  Link state "— Presentation transcript:

1 Chapter 4, slide: 1 Chapter 4: Network Layer r Introduction r IP: Internet Protocol  IPv4 addressing  NAT  IPv6 r Routing algorithms  Link state  Distance Vector r Routing in the Internet  RIP  OSPF  BGP

2 Sharing an IP address r Home networks, other small LANs r Expensive to have unique IP address for each host r Want to share internet access through just one IP address r Want to maintain security/privacy r Install router … but how does it work? Chapter 4, slide: 2

3 Network Address Translation r NAT is an extension of the original IP addressing scheme r Motivated by exhaustion of IP address space r Allows multiple computers at one site to share a single global IP address r Requires a device to perform packet translation r In-line configuration  All traffic entering or leaving the network must go through the NAT device  Should be transparent to all users Virtual private connection Chapter 4, slide: 3

4 NAT: Network Address Translation r local network uses just one IP address as far as outside world is concerned (external address) r range of addresses not needed from ISP: just one IP address for all devices r can change addresses of devices in local network without notifying outside world r can change ISP / external address without changing addresses of devices in local network r devices inside local net not explicitly addressable by outside world (a security plus). Chapter 4, slide: 4

5 NAT: Network Address Translation 10.0.0.1 10.0.0.2 10.0.0.3 10.0.0.4 138.76.29.7 local network (e.g., home network) 10.0.0/24 rest of Internet Datagrams with source or destination in this network have 10.0.0/24 address for source, destination (as usual) All datagrams leaving local network have same single source NAT IP address: 138.76.29.7, different source port numbers Chapter 4, slide: 5

6 Implementation r To send datagram out to the internet from a computer in the private network:  Computer constructs datagram with source address and destination address, sends to NAT box  NAT box translates the source address in the datagram to the site's IP address  NAT keeps source and destination addresses in its translation table  Note: checksum must be recalculated and datagram must be reconstructed Chapter 4, slide: 6

7 Implementation r To forward an incoming datagram from the internet to a computer in the private network:  Datagrams arrive addressed to the site's IP address  NAT finds source and destination addresses in its translation table  NAT changes the destination address in the datagram to the internal address for the target computer  NAT reconstructs the datagram (with new checksum, etc.) and forwards it to the computer in the private network Chapter 4, slide: 7

8 Implementation r Software solutions  Standard PC with NAT software, e.g.: –Linux masquerade –Windows RRAS (Routing and Remote Access Server) extra NIC required  OK for slower speed networks (e.g., 10 Mbps)  NAT box must translate addresses in time for the usual network functions to work detecting congestion, etc. r Hardware solutions  Special-purpose hardware for high-speed networks (e.g., gigabit Ethernet) r Hybrid solutions  Routers can incorporate software for NAT  Used in medium-speed networks (e.g., 100 Mbps) Chapter 4, slide: 8

9 Virtual connection r The effect of NAT is to form a virtual private connection between a computer in a private network and a remote host (internet site). r Of course, the connection may be to a computer in a separate private network (through another NAT box) r Internal communications do not use the NAT box Chapter 4, slide: 9

10 Problems with basic NAT r If two computers inside the private network both want to communicate with the same external site, the basic translation table is not sufficient r If one computer inside the private network is running applications with two remote hosts, the basic translation table is not sufficient r If a remote site wants to make the first contact with a computer inside the private network, there will be no translation table entry. Chapter 4, slide: 10

11 NAPT r Network Address and Port Translation  Most popular implementation of NAT  Usually just called NAT  Keeps track of local addresses and IP addresses  Also can keep track of (and change) TCP and UDP protocol port numbers  Allows multiple computers in the private network to communicate with a single destination multiple applications on a single computer in the private network to communicate with multiple destinations Chapter 4, slide: 11

12 Example NAPT table r Entry in table records protocol port number as well as IP address r Port numbers are re-assigned to avoid conflicts r Note: this requires the NAT box (router) to have some transport-layer functionality DirectionInitial valueTranslatedUnchanged out IP SRC:TCP SRC 10.0.0.125:30000 IP SRC:TCP SRC 128.210.24.6:40001 IP DST:TCP DST 68.18.6.225:80 out IP SRC:TCP SRC 10.0.0.77:30000 IP SRC:TCP SRC 128.210.24.6:40002 IP DST:TCP DST 68.18.6.225:80 in IP DST:TCP DST 128.210.24.6:40001 IP DST:TCP DST 10.0.0.125:30000 IP SRC:TCP SRC 68.18.6.225:80 in IP DST:TCP DST 128.210.24.6:40002 IP DST:TCP DST 10.0.0.77:30000 IP SRC:TCP SRC 68.18.6.225:80 Chapter 4, slide: 12

13 NAT table r For an out-going datagram:  Source address is changed to the site address.  Source port number is re-assigned and recorded  Checksum is recalculated  Datagram is reconstructed  Destination address / port number are not changed  Translation table records Internal source address / original port number Destination address / re-assigned source port number Chapter 4, slide: 13

14 NAT table r For an in-coming datagram:  Destination address is changed to the internal address recorded in the translation table.  Destination port number is changed to the port number recorded in the translation table.  Checksum is recalculated  Datagram is reconstructed  Source address / port number are not changed Chapter 4, slide: 14

15 NAT: Network Address Translation 10.0.0.1 10.0.0.2 10.0.0.3 S: 10.0.0.1, 3345 D: 128.119.40.186, 80 1 10.0.0.4 138.76.29.7 1: host 10.0.0.1 sends datagram to 128.119.40.186, 80 NAT translation table WAN side addr LAN side addr 138.76.29.7, 5001 10.0.0.1, 3345 …… S: 128.119.40.186, 80 D: 10.0.0.1, 3345 4 S: 138.76.29.7, 5001 D: 128.119.40.186, 80 2 2: NAT router changes datagram source addr from 10.0.0.1, 3345 to 138.76.29.7, 5001, updates table S: 128.119.40.186, 80 D: 138.76.29.7, 5001 3 3: Reply arrives dest. address: 138.76.29.7, 5001 4: NAT router changes datagram dest addr from 138.76.29.7, 5001 to 10.0.0.1, 3345 Chapter 4, slide: 15

16 First contact r When initial contact is attempted from outside the site, there is no translation table entry  E.G., a private network might be running multiple servers through a NAT system Chapter 4, slide: 16

17 NAT traversal problem r client wants to connect to server with address 10.0.0.1  server address 10.0.0.1 local to LAN (client can’t use it as destination addr)  only one externally visible NAT’ed address: 138.76.29.7 10.0.0.1 10.0.0.4 NAT router 138.76.29.7 Client ? Chapter 4, slide: 17

18 NAT traversal problem Solution 1: statically configure NAT to forward incoming connection requests at given port to server  e.g., (123.76.29.7, port 2500) always forwarded to 10.0.0.1 port 25000 10.0.0.1 10.0.0.4 NAT router 138.76.29.7 Client ? Chapter 4, slide: 18

19 NAT traversal problem Solution 2: Universal PnP Internet Gateway Device (IGD) Protocol. Allows NAT’ed host to: r map (private IP, private port #) with (public IP, public port #) r advertise (public IP, public port #)  So DNS can work r add/remove port mappings 10.0.0.1 10.0.0.4 NAT router 138.76.29.7 IGD Chapter 4, slide: 19

20 Summary: Network Address Translation r 16-bit port-number field:  ~65,000 simultaneous connections with a single LAN-side address! r NAT is controversial.  Objections include: routers should only process up to layer 3 address shortage should instead be solved by IPv6 Chapter 4, slide: 20

21 Chapter 4, slide: 21 Chapter 4: Network Layer r Introduction r Virtual circuit and datagram networks r IP: Internet Protocol  IPv4 addressing  NAT  IPv6 r Routing algorithms  Link state  Distance Vector r Routing in the Internet  RIP  OSPF  BGP

22 Chapter 4, slide: 22 IPv6 r Initial motivation:  32-bit address space soon to be completely allocated. r Additional motivation:  header changes to facilitate QoS r Major changes from IPv4:  Fragmentation: no longer allowed; drop packet if too big  Checksum: removed to reduce processing time; already done at transport and link layers  Options: allowed, but outside of header, indicated by “Next Header” field

23 New features of IPv6 r Support for audio and video  “flow labels” and “quality of service” allow audio and video applications to establish appropriate connections r Extensible  new features can be added more easily Chapter 4, slide: 23

24 IPv6 datagram format Chapter 4, slide: 24

25 IPv6 base header format Chapter 4, slide: 25

26 IPv6 base header r Contains less information than IPv4 header  VERSION (4 bits)  TRAFFIC CLASS (8 bits) specifies the traffic class (used to choose a route)  FLOW LABEL (20 bits) used to associate datagrams belonging to a flow or communication between two applications  PAYLOAD LENGTH (16 bits) indicates the length of data (i.e. payload) excluding header  NEXT HEADER (8 bits) points to first extension header  HOP LIMIT (8 bits)(old TTL) specifies the maximum number of hops a packet can travel through before being discarded  SOURCE ADDRESS (128 bits)  DESTINATION ADDRESS (128 bits) Chapter 4, slide: 26

27 NEXT header Chapter 4, slide: 27

28 Parsing IPv6 headers r Base header is fixed size - 40 octets r NEXT HEADER field in base header defines type of next header  Next header appears at end of fixed-size base header r Some extensions headers are variable sized  NEXT HEADER field in extension header defines type  HEADER LEN field gives size of extension header Chapter 4, slide: 28

29 Multiple headers r Efficiency  header only as large as necessary r Flexibility  can add new headers for new features r Incremental development  can add processing for new features Chapter 4, slide: 29

30 Fragmentation and Path MTU r Fragmentation information is in fragmentation extension header r IPv6 source (not intermediate routers) is responsible for fragmentation  Source must find path MTU r Routers simply drop datagrams larger than path MTU  No more fragmenting by routers  ICMP message sent to source r Must be dynamic - path may change during transmission of datagrams r Source determines path MTU  Uses path MTU discovery Source sends probe message of various sizes Gets ICMP messages until destination reached  Constructs datagrams to fit within that MTU Chapter 4, slide: 30

31 IPv6 addressing r 128-bit addresses r Includes network prefix and host suffix r No address classes  prefix/suffix boundary can fall anywhere  Longest matching prefix Chapter 4, slide: 31

32 Address notation in IPv6 r 128-bit addresses  unwieldy in dotted decimal  requires 16 numbers  example: 105.220.136.100.255.255.255.255.0.0.18.128.140.10.255.255 r IPv6 uses groups of 16-bit numbers in hex separated by colons  colon hexadecimal (colon hex)  example: 69DC:8864:FFFF:FFFF:0:1280:8C0A:FFFF r Add /bits to specify netmask  example: 69DC:8864:FFFF:FFFF:0:1280:8C0A:FFFF/64 Chapter 4, slide: 32

33 Address shorthand in IPv6 r Zero-compression  series of zeroes indicated by two colons  example: FF0C:0:0:0:0:0:0:B1 becomes FF0C::B1 r An IPv6 address with 96 leading zeros is interpreted to hold an IPv4 address Chapter 4, slide: 33

34 Chapter 4, slide: 34 Transition From IPv4 To IPv6 r Can all routers be upgraded simultaneously ??  Answer: it can’t; no “flag days”  Analogy: (IP for Internet) ~ (foundation for House)  To change the foundation, you need to tear down the house!! r Solution gradually incorporate IPv6 (may take few years)  How will the network operate with mixed IPv4 and IPv6 routers?  Tunneling??

35 Chapter 4, slide: 35 Tunneling A B E F IPv6 tunnel Logical view: Physical view: A B E F IPv6 IPv4 What is the problem here? D C Why can’t B just send an IPv4 packet to C ? Flow: X Src: A Dest: F data A-to-B: IPv6 Problem: D won’t be able to send an IPv6 packet to E? Why? Be aware that: IPv6 nodes have both IPv4 & IPv6 addresses Nodes know which nodes are IPv4 and which one are IPv6 (use for e.g. DNS)

36 Chapter 4, slide: 36 Tunneling A B E F IPv6 tunnel Logical view: Physical view: A B E F IPv6 C D IPv4 Flow: X Src: A Dest: F data A-to-B: IPv6 Flow: X Src: A Dest: F data E-to-F: IPv6 Flow: X Src: A Dest: F data Src:B Dest: E B-to-C: IPv6 inside IPv4 Flow: X Src: A Dest: F data Src:B Dest: E B-to-C: IPv6 inside IPv4 Be aware that: IPv6 nodes have both IPv4 & IPv6 addresses Nodes know which nodes are IPv4 and which one are IPv6 (use for e.g. DNS)

Download ppt "Chapter 4, slide: 1 Chapter 4: Network Layer r Introduction r IP: Internet Protocol  IPv4 addressing  NAT  IPv6 r Routing algorithms  Link state "

Similar presentations

CPSC 441 - Network Layer4-1 IP addresses: how to get one? Q: How does a host get IP address? r hard-coded by system admin in a file m Windows: control-panel->network->configuration-

CPSC Network Layer4-1 IP addresses: how to get one? Q: How does a host get IP address? r hard-coded by system admin in a file m Windows: control-panel->network->configuration-
TCOM 509 – Internet Protocols (TCP/IP) Lecture 06_b Subnetting,Supernetting, CIDR IPv6 Instructor: Dr. Li-Chuan Chen Date: 10/06/2003 Based in part upon.

TCOM 509 – Internet Protocols (TCP/IP) Lecture 06_b Subnetting,Supernetting, CIDR IPv6 Instructor: Dr. Li-Chuan Chen Date: 10/06/2003 Based in part upon.
PRIVATE NETWORK INTERCONNECTION (NAT AND VPN) & IPv6

PRIVATE NETWORK INTERCONNECTION (NAT AND VPN) & IPv6
CSCI 4550/8556 Computer Networks Comer, Chapter 22: The Future IP (IPv6)

CSCI 4550/8556 Computer Networks Comer, Chapter 22: The Future IP (IPv6)
COS 461 Fall 1997 Routing COS 461 Fall 1997 Typical Structure.

COS 461 Fall 1997 Routing COS 461 Fall 1997 Typical Structure.
CS 457 – Lecture 16 Global Internet - BGP Spring 2012.

CS 457 – Lecture 16 Global Internet - BGP Spring 2012.
Network Layer IPv6 Slides were original prepared by Dr. Tatsuya Suda.

Network Layer IPv6 Slides were original prepared by Dr. Tatsuya Suda.
Announcement r Recitation tomorrow on Project 2 r Midterm Survey at the end of this class.

Announcement r Recitation tomorrow on Project 2 r Midterm Survey at the end of this class.
Week 5: Internet Protocol Continue to discuss Ethernet and ARP –MTU –Ethernet and ARP packet format IP: Internet Protocol –Datagram format –IPv4 addressing.

Week 5: Internet Protocol Continue to discuss Ethernet and ARP –MTU –Ethernet and ARP packet format IP: Internet Protocol –Datagram format –IPv4 addressing.
Network Layer 4-1 4.1 introduction 4.2 virtual circuit and datagram networks 4.3 what’s inside a router 4.4 IP: Internet Protocol  datagram format  IPv4.

Network Layer introduction 4.2 virtual circuit and datagram networks 4.3 what’s inside a router 4.4 IP: Internet Protocol  datagram format  IPv4.
IP Address 1. 2 Network layer r Network layer protocols in every host, router r Router examines IP address field in all IP datagrams passing through it.

IP Address 1. 2 Network layer r Network layer protocols in every host, router r Router examines IP address field in all IP datagrams passing through it.
Network Layer4-1 Chapter 4 Network Layer Computer Networking: A Top Down Approach Featuring the Internet, 3 rd edition. Jim Kurose, Keith Ross Addison-Wesley,

Network Layer4-1 Chapter 4 Network Layer Computer Networking: A Top Down Approach Featuring the Internet, 3 rd edition. Jim Kurose, Keith Ross Addison-Wesley,
What we will cover… Home Networking: Network Address Translation (NAT) Mobile Routing.

What we will cover… Home Networking: Network Address Translation (NAT) Mobile Routing.
Chapter 5 The Network Layer.

Chapter 5 The Network Layer.
NAT: Network Address Translation 10.0.0.1 10.0.0.2 10.0.0.3 10.0.0.4 138.76.29.7 local network (e.g., home network) 10.0.0/24 rest of Internet Datagrams.

NAT: Network Address Translation local network (e.g., home network) /24 rest of Internet Datagrams.
Network Layer: IPv6 IS250 Spring 2010

Network Layer: IPv6 IS250 Spring 2010
Network Layer4-1 IP: Internet Protocol r Datagram format r IPv4 addressing r DHCP: Dynamic Host Configuration Protocol r NAT: Network Address Translation.

Network Layer4-1 IP: Internet Protocol r Datagram format r IPv4 addressing r DHCP: Dynamic Host Configuration Protocol r NAT: Network Address Translation.
COS 420 Day 20. Agenda Group Project Discussion Protocol Definition Due April 12 Paperwork Due April 29 Assignment 3 Due Assignment 4 is posted Last Assignment.

COS 420 Day 20. Agenda Group Project Discussion Protocol Definition Due April 12 Paperwork Due April 29 Assignment 3 Due Assignment 4 is posted Last Assignment.
IP Address 1. 2 Network layer r Network layer protocols in every host, router r Router examines IP address field in all IP datagrams passing through it.

IP Address 1. 2 Network layer r Network layer protocols in every host, router r Router examines IP address field in all IP datagrams passing through it.
Network Layer4-1 Chapter 4 Network Layer A note on the use of these ppt slides: We’re making these slides freely available to all (faculty, students, readers).

Network Layer4-1 Chapter 4 Network Layer A note on the use of these ppt slides: We’re making these slides freely available to all (faculty, students, readers).

Similar presentations

Ads by Google