NAT Traversal Capability and Keep-Alive Functionality with IPSec in IKEv2 Implementation
نویسنده
چکیده
Since IPv4 Private Networks are behind NAT (Network Address Translation) devices. So, to bypass the Binding Update and Binding Acknowledgment by NAT, we need to encapsulate it in UDP (User datagram Protocol) Packets. Hence, the Dual Stack Mobile IPv6 should support NAT Traversal and Detection. So for proper securing and fully functionality of NAT traversal, it should be IP Security Protected. Paper presents design and implementation of NAT traversal capability and keeps alive functionality with IP Security in IKEv2 (Internet Key Exchange version 2) implementation for proper Data Communication. It also implements how IPSec integrate with NAT. Keywords-Network Address Translation, Traversal, Detection, IP Security, Home Link, Data Traffic, Linux Kernel, IKEv2.
منابع مشابه
Internet Key Exchange (IKEv2) Protocol
This document describes version 2 of the Internet Key Exchange (IKE) protocol. IKE is a component of IPsec used for performing mutual authentication and establishing and maintaining security associations. This version of the IKE specification combines the contents of what IKEv2 draft-ietf-ipsec-ikev2-15.txt [Page 1] Internet-Draft August 13, 2004 were previously separate documents, including IS...
متن کاملTCP Wake-Up: Reducing Keep-Alive Traffic in Mobile IPv4 and IPsec NAT Traversal
Applications such as instant messaging and push email require long-lived connections between clients and servers. In the absence of other traffic, stateful firewalls and Network Address Translators (NATs) require “keep-alive” messages to maintain state for such persistent connections. We present new measurements analyzing the energy consumption of these keep-alive messages on a mobile phone in ...
متن کاملSupport of NAT traversal in IKEv2 implementation
Network Address Translation (NAT) is a mechanism introduced with a primary purpose to postpone the problem of IPv4 addresses shortage, but it also has some other uses, most notably, easier site renumbering. From its introduction in the middle of 90's up until now, usage of NAT solution on the Internet has surged, but in the same time it is a very controversial subject since it introduces many p...
متن کاملNAT traversal for IPsec
Network Address Translator (NAT) is a technology that is used for allowing multiple computers in the network to share a single public IP address for accessing the Internet. The basic reason for NAT usage is the limited number of IPv4 addresses. NAT is widely used in the current networks where it is also used as cloaking service for computers in internal network, since all computers behind the N...
متن کاملTransport Layer Security (TLS) Implementation for Secured MN- HA Communication in Mobile IPv6
Mobile IPv6 usually use the IPsec/IKEv2 to secure Mobile Node (MN) and Home Agent (HA) communication. The implementation of IPsec/IKEv2 with MIPv6 is complex because it requires a tight coupling between MIPv6 protocol part and the IPsec/IKEv2 part of the IP stack. This paper proposes a security mechanism which uses Transport Layer Security (TLS) for establishing Keying Material and other bootst...
متن کامل