Presentation is loading. Please wait.

Presentation is loading. Please wait.

VersionIHLTotal Length FlagsIdentificationFragment Offset Time To Live Destination Address OptionsPadding Protocol = 6 Type of Service IP Header TCP Destination.

Published byEarl Harper Modified over 9 years ago

Similar presentations

Presentation on theme: "VersionIHLTotal Length FlagsIdentificationFragment Offset Time To Live Destination Address OptionsPadding Protocol = 6 Type of Service IP Header TCP Destination."— Presentation transcript:

1 VersionIHLTotal Length FlagsIdentificationFragment Offset Time To Live Destination Address OptionsPadding Protocol = 6 Type of Service IP Header TCP Destination Port Source Port Sequence Number Acknowledgment Number Data offset FINFIN SYNSYN URGURG ACKACK PSHPSH RSTRST Window Urgent Pointer Padding TCP Options TCP Data Source Address Header Checksum Checksum

2 10.0.0.1 Public Internet 192.9.200.1 Private Address Realm Source: 10.0.0.1 Dest: 192.9.200.1 Source: 192.9.200.1 Dest: 10.0.0.1  Host A Host B

3 10.0.0.1 192.9.200.1 Host A Host B Site NAT Public Internet Private Address Realm Source: 10.0.0.1/2000 Dest: 192.9.200.1/80 Source: 192.9.200.1 Dest: 10.0.0.1/2000 Source: 139.130.1.1/3000 Dest: 192.9.200.1/80 Source: 192.9.200.1/80 Dest: 139.130.1.1/3000 NAT Binding 10.0.0.1 / 2000 139.130.1.1 / 3000

4 Host A Host B Site NAT Host C Port 90 Port 91 Port 90 Port 91 Port 2001 NAT Binding NAT Filter Local Addr / Port  External Addr / Port -- External Access Mask A / 2001  Z / 3001 -- B / 90 Initial Packet Source: A / 2001 Dest: B / 90 Source: Z / 3001 Dest: B / 90   

5 Host A Host B Site NAT Host C Port 90 Port 91 Port 90 Port 91 Port 2001 NAT Binding NAT Filter Local Addr / Port  External Addr / Port -- External Access Mask A / 2001  Z / 3001 -- * / * Initial Packet Source: A / 2001 Dest: B / 90 Source: Z / 3001 Dest: B / 90

6 Host A Host B Site NAT Host C Port 90 Port 91 Port 90 Port 91 Port 2001 NAT Binding NAT Filter Local Addr / Port  External Addr / Port -- External Access Mask A / 2001  Z / 3001 -- B / * Initial Packet Source: A / 2001 Dest: B / 90 Source: Z / 3001 Dest: B / 90  

7 Host A Host B Site NAT Host C Port 90 Port 91 Port 90 Port 91 Port 2001 NAT Binding NAT Filter Local Addr / Port  External Addr / Port -- External Access Mask A / 2001  Z / 3001 -- * / 90 Initial Packet Source: A / 2001 Dest: B / 90 Source: Z / 3001 Dest: B / 90  

8 STUN Request To alternate Addr and Port Response? Same IP Addr and Port? Same IP Addr and Port? STUN Request Change Response: Addr and Port STUN Request Change Response:Port UDP Blocked N Y Response? UDP FirewallOpen Internet STUN Request Change Response: Addr and Port Response? Full Cone NAT Response? Symmetric NAT Restricted NAT Port Restricted NAT N N N N N Y Y Y Y Y

9 Host A Site NAT Host D NAT Binding NAT Filter Local Addr / Port  External Addr / Port -- External Access Mask A / 2001  Z / 3001 -- * / 2001 D / 2002  Y / 3002 -- * / 2002 Port 2001 Port 2002 Source: D / 2002 Dest: Z / 3001 Source: Y / 3002 Dest: Z / 3001 Source: Y / 3002 Dest: A / 2001

10 Port y1 Host X Host Y1 Site NAT Host Y2 Port x NAT Binding NAT Filter Local Addr / Port  External Addr / Port -- External Access Mask X / x  X1 / x1 -- ? / ? Source: X / x Dest: Y1 / y1 Source: X1 / x1 Dest: Y1 / y1 Port y2 Source: Y2 / y2 Dest: X / x Source: Y2/ y2 Dest: X1 / x1 Use Address and Port X1 / x1

Download ppt "VersionIHLTotal Length FlagsIdentificationFragment Offset Time To Live Destination Address OptionsPadding Protocol = 6 Type of Service IP Header TCP Destination."

Similar presentations

TCP/IP Christopher Zacky. lolwut Decimal Numbers.

TCP/IP Christopher Zacky. lolwut Decimal Numbers.
Introduction to TCP A first look at the sockets API for ‘connection-oriented’ client/server application programs.

Introduction to TCP A first look at the sockets API for ‘connection-oriented’ client/server application programs.
CISCO NETWORKING ACADEMY Chabot College ELEC 99.05 Transport Layer (4)

CISCO NETWORKING ACADEMY Chabot College ELEC Transport Layer (4)
NAT/Firewall Traversal April 2009. NAT revisited – “port-translating NAT”

NAT/Firewall Traversal April NAT revisited – “port-translating NAT”
STUN Date: 2011-05-25 Speaker: Hui-Hsiung Chung 1.

STUN Date: Speaker: Hui-Hsiung Chung 1.
Introduction1-1 message segment datagram frame source application transport network link physical HtHt HnHn HlHl M HtHt HnHn M HtHt M M destination application.

Introduction1-1 message segment datagram frame source application transport network link physical HtHt HnHn HlHl M HtHt HnHn M HtHt M M destination application.
TCP & UDP - Protocol Details Yen-Cheng Chen

TCP & UDP - Protocol Details Yen-Cheng Chen
1 A TCAM-based solution for integrated traffic anomaly detection and policy filtering Author: Zhijun Wang, Hao Che, Jiannong Cao, Jingshan Wang Publisher:

1 A TCAM-based solution for integrated traffic anomaly detection and policy filtering Author: Zhijun Wang, Hao Che, Jiannong Cao, Jingshan Wang Publisher:
Instructor: Sam Nanavaty TCP/IP protocol. Instructor: Sam Nanavaty Version – Allows for the evolution of the protocol IHL (Internet header length) – Length.

Instructor: Sam Nanavaty TCP/IP protocol. Instructor: Sam Nanavaty Version – Allows for the evolution of the protocol IHL (Internet header length) – Length.
S. Mandayam/ ECOMMS/ECE Dept./Rowan University Electrical Communications Systems ECE.09.331 Spring 2010 Shreekanth Mandayam ECE Department Rowan University.

S. Mandayam/ ECOMMS/ECE Dept./Rowan University Electrical Communications Systems ECE Spring 2010 Shreekanth Mandayam ECE Department Rowan University.
CP476 Internet Computing TCP/IP 1 Lecture 3. TCP / IP Objective: A in-step look at TCP/IP Purposes and operations Header specifications Implementations.

CP476 Internet Computing TCP/IP 1 Lecture 3. TCP / IP Objective: A in-step look at TCP/IP Purposes and operations Header specifications Implementations.
TCP segment structure source port # dest port # 32 bits application data (variable length) sequence number acknowledgement number rcvr window size ptr.

TCP segment structure source port # dest port # 32 bits application data (variable length) sequence number acknowledgement number rcvr window size ptr.
1 2004.5.4.  TCP connection set up  TCP connection tear-down  Sliding window revisited  Triggering transmission.

 TCP connection set up  TCP connection tear-down  Sliding window revisited  Triggering transmission.
Explicit Congestion Notification (ECN) Qi (Gill) Wang CISC 856 – TCP/IP, Fall 2012 Special thanks to: Dr. Paul Amer Guna Ranjan, Justin.

Explicit Congestion Notification (ECN) Qi (Gill) Wang CISC 856 – TCP/IP, Fall 2012 Special thanks to: Dr. Paul Amer Guna Ranjan, Justin.
CS470, A.SelcukIPsec Attacks1 IPsec ESP Attacks CS 470 Introduction to Applied Cryptography Instructor: Ali Aydin Selcuk.

CS470, A.SelcukIPsec Attacks1 IPsec ESP Attacks CS 470 Introduction to Applied Cryptography Instructor: Ali Aydin Selcuk.
Transport Layer Problems with network layer services

Transport Layer Problems with network layer services
1 Some TCP/IP Basics....NFSDNSTELNETSMTPFTP UDPTCP IP and ICMP Ethernet, serial line,..etc. Application Layer Transport Layer Network Layer Low-level &

1 Some TCP/IP Basics....NFSDNSTELNETSMTPFTP UDPTCP IP and ICMP Ethernet, serial line,..etc. Application Layer Transport Layer Network Layer Low-level &
Lecture 23: Network Primer 7/15/2003 CSCE 590 Summer 2003.

Lecture 23: Network Primer 7/15/2003 CSCE 590 Summer 2003.
1 Application TCPUDP IPICMPARPRARP Physical network Application TCP/IP Protocol Suite.

1 Application TCPUDP IPICMPARPRARP Physical network Application TCP/IP Protocol Suite.
Source Port # (16)Destination Port # (16) Sequence Number (32 bits) Acknowledgement Number (32 bits) Hdr Len (4) Flags (6)Window Size (16) Options (if.

Source Port # (16)Destination Port # (16) Sequence Number (32 bits) Acknowledgement Number (32 bits) Hdr Len (4) Flags (6)Window Size (16) Options (if.

Similar presentations

Ads by Google