Presentation is loading. Please wait.

Presentation is loading. Please wait.

2004-12-01 HIP proxy Patrik Salmela. 2004-12-01 2 Contents Background: ID-locator split HIP Why a HIP proxy Functionality of a HIP proxy The prototype.

Published byAdele Flowers Modified over 9 years ago

Similar presentations

Presentation on theme: "2004-12-01 HIP proxy Patrik Salmela. 2004-12-01 2 Contents Background: ID-locator split HIP Why a HIP proxy Functionality of a HIP proxy The prototype."— Presentation transcript:

1 2004-12-01 HIP proxy Patrik Salmela

2 2004-12-01 2 Contents Background: ID-locator split HIP Why a HIP proxy Functionality of a HIP proxy The prototype Performance Conclusions

3 2004-12-01 3 Background: ID – locator split Currently: IP address serves 2 purposes Locator POW: Node moves -> new locator: OK Identifier POW: Node moves -> new identifier: NOT OK Identifier requirements: Stay constant regardless of location and time

4 2004-12-01 4 Background (cont.) Some ID – locator split solutions GSE proposal for IPv6 Part of address serves as ID, constant FARA Framework for designing new architectures PeerNet DHT and peer-to-peer thinking I 3 IDs registered at I 3 servers HIP

5 2004-12-01 5 The HIP way ID-locator split IDlocatorID: HI (-> HIT / LSI)locator: IP address IDlocatorPackets sent to ID, routed using locator Security IPsec ESP, SAs created during base exchange Mobility Connections between IDs (HITs) Location update messages Multihoming IDPackets sent to ID, the routing is irrelevant The ID is the base for all these features

6 2004-12-01 6 HIP (cont.)

7 2004-12-01 7 Why a HIP proxy? More HIP hosts -> more use for HIP It will take time for HIP to spread A HIP proxy enables HIP between legacy hosts and HIP hosts Legacy hostHIP hostHIP proxy HIP IPsec ESP

8 2004-12-01 8 Why a HIP proxy (cont.) Promotes HIP New possibilities to use HIP Can be used as ”try-then-buy” for HIP Easier to enable HIP for hosts in a network In the long run an all HIP solution is better; less configuration, more freedom/features If satisfied by services provided by HIP (proxy) -> upgrade to a HIP host/network

9 2004-12-01 9 Restrictions for a HIP proxy No security between proxy and legacy host Solution: Proxy on the border of a private network HIP host unaware of proxy, security problem Solution: Add indication into base exchange Legacy hosts cannot use all HIP features Solution: Upgrade to HIP host

10 2004-12-01 10 Functionality of a HIP proxy Assign, and use, HITs for legacy hosts HIP connection from HIP host also possible

11 2004-12-01 11 The prototype HIP proxy FreeBSD 5.2, Ericsson Finland’s HIP impl. IPv6 only No HIP modified DNS -> HIT-IP mappings in configuration file Proxy between two small LANs Uses ip6fw and divert6

12 2004-12-01 12 The prototype (cont.) Packets diverted to proxy for processing All packets coming from priv. net. Locate HIT-IP mappings Replace IP addresses with HITs Packets from pub. net. with HITs in header Locate HIT-IP mappings Replace HITs with IP addresses

13 2004-12-01 13 Performance Using proxy Using HIP Conn.Avg. RTT (20 pkts.) No Yes No Yes 1212124812121248 0,624ms 0,616ms 0,698ms 0,684ms 0,851ms 0,832ms 0,822ms 0,872ms + ~12% (0,070ms) (proxy) + ~22% (0,150ms) (IPsec)

14 2004-12-01 14 Performance (cont.) Using proxy Using HIP Hosts/ list Avg. RTT (20 pkts.) Yes No 10 50 100 500 1000 0,676ms 0,693ms 0,705ms 0,730ms 0,770ms If the host lists are long: Configuration file difficult to manage (probably) very much traffic through the proxy -> Delay from looking up mappings is not the main problem

15 2004-12-01 15 Further work IP version independent HIP proxy Work in progress… Improve proxy configuration E.g. check if configuration file has been edited

16 2004-12-01 16 Conclusions HIP proxy prototype intended as proof-of-concept concept proven Can be used as base for new, improved, version HIP proxy can be used as a stepping stone when going legacy -> HIP

17 2004-12-01 17 Comments / Questions?

Download ppt "2004-12-01 HIP proxy Patrik Salmela. 2004-12-01 2 Contents Background: ID-locator split HIP Why a HIP proxy Functionality of a HIP proxy The prototype."

Similar presentations

Keiji Maekawa Graduate School of Informatics, Kyoto University Yasuo Okabe Academic Center for Computing and Media Studies, Kyoto University.

Keiji Maekawa Graduate School of Informatics, Kyoto University Yasuo Okabe Academic Center for Computing and Media Studies, Kyoto University.
Hierarchical Routing Architecture Introduction draft-xu-rrg-hra-00.txt Routing Research Group Xiaohu XU

Hierarchical Routing Architecture Introduction draft-xu-rrg-hra-00.txt Routing Research Group Xiaohu XU
CPSC 441 - Network Layer4-1 IP addresses: how to get one? Q: How does a host get IP address? r hard-coded by system admin in a file m Windows: control-panel->network->configuration-

CPSC Network Layer4-1 IP addresses: how to get one? Q: How does a host get IP address? r hard-coded by system admin in a file m Windows: control-panel->network->configuration-
1 Teredo - Tunneling IPv6 through NATs Date: 2003-10-31 Speaker: Quincy Wu National Chiao Tung University.

1 Teredo - Tunneling IPv6 through NATs Date: Speaker: Quincy Wu National Chiao Tung University.
1 DSMIP6 Support QUALCOMM Inc. Jun Wang, George Cherian, Masa Shirota Notice.

1 DSMIP6 Support QUALCOMM Inc. Jun Wang, George Cherian, Masa Shirota Notice.
VGO 2 May 2003 Online Gaming by VGO2 Philippe Villeneuve Gustavo Basilio Niklas Åbrink Kristoffer Sjögren Nrip Nihalani Gunnar Wretlind.

VGO 2 May 2003 Online Gaming by VGO2 Philippe Villeneuve Gustavo Basilio Niklas Åbrink Kristoffer Sjögren Nrip Nihalani Gunnar Wretlind.
STUN Date: 2011-05-25 Speaker: Hui-Hsiung Chung 1.

STUN Date: Speaker: Hui-Hsiung Chung 1.
IPNL: A NAT-Extended Internet Architecture Francis & Gummadi Riku Honkanen.

IPNL: A NAT-Extended Internet Architecture Francis & Gummadi Riku Honkanen.
NAT TRAVERSAL FOR IPSEC Research Seminar on Datacommunications Software HIIT 09.11.2005.

NAT TRAVERSAL FOR IPSEC Research Seminar on Datacommunications Software HIIT
1 Network Architecture and Design Advanced Issues in Internet Protocol (IP) IPv4 Network Address Translation (NAT) IPV6 IP Security (IPsec) Mobile IP IP.

1 Network Architecture and Design Advanced Issues in Internet Protocol (IP) IPv4 Network Address Translation (NAT) IPV6 IP Security (IPsec) Mobile IP IP.
EEC-484/584 Computer Networks Lecture 6 Wenbing Zhao

EEC-484/584 Computer Networks Lecture 6 Wenbing Zhao
Mobile IP Overview: Standard IP Standard IP Evolution of Mobile IP Evolution of Mobile IP How it works How it works Problems Assoc. with it Problems Assoc.

Mobile IP Overview: Standard IP Standard IP Evolution of Mobile IP Evolution of Mobile IP How it works How it works Problems Assoc. with it Problems Assoc.
Chapter 2: Application Layer

Chapter 2: Application Layer
Hands-On Microsoft Windows Server 2003 Networking Chapter 1 Windows Server 2003 Networking Overview.

Hands-On Microsoft Windows Server 2003 Networking Chapter 1 Windows Server 2003 Networking Overview.
Application Layer  We will learn about protocols by examining popular application-level protocols  HTTP  FTP  SMTP / POP3 / IMAP  Focus on client-server.

Application Layer  We will learn about protocols by examining popular application-level protocols  HTTP  FTP  SMTP / POP3 / IMAP  Focus on client-server.
NEtwork MObility By: Kristin Belanger. Contents Introduction Introduction Mobile Devices Mobile Devices Objectives Objectives Security Security Solution.

NEtwork MObility By: Kristin Belanger. Contents Introduction Introduction Mobile Devices Mobile Devices Objectives Objectives Security Security Solution.
Cellular IP: Proxy Service Reference: “Incorporating proxy services into wide area cellular IP networks”; Zhimei Jiang; Li Fung Chang; Kim, B.J.J.; Leung,

Cellular IP: Proxy Service Reference: “Incorporating proxy services into wide area cellular IP networks”; Zhimei Jiang; Li Fung Chang; Kim, B.J.J.; Leung,
1 Chapter Overview IP (v4) Address IPv6. 2 IPv4 Addresses Internet Protocol (IP) is the only network layer protocol with its own addressing system and.

1 Chapter Overview IP (v4) Address IPv6. 2 IPv4 Addresses Internet Protocol (IP) is the only network layer protocol with its own addressing system and.
Virtual LANs. VLAN introduction VLANs logically segment switched networks based on the functions, project teams, or applications of the organization regardless.

Virtual LANs. VLAN introduction VLANs logically segment switched networks based on the functions, project teams, or applications of the organization regardless.
Issues of HIP in an Operators Network Nick Papadoglou Thomas Dietz.

Issues of HIP in an Operators Network Nick Papadoglou Thomas Dietz.

Similar presentations

Ads by Google