Dissertation > Excellent graduate degree dissertation topics show

Research and Implimentation of VPN Gateway Supporting NAT

Author: ZhuZhiMei
Tutor: LiZhiTang
School: Huazhong University of Science and Technology
Course: Computer System Architecture
Keywords: User Datagram Protocol Package Network address translation through the Virtual private network forwarding gateway Internet Protocol Security
CLC: TP393.05
Type: Master's thesis
Year: 2004
Downloads: 176
Quote: 2
Read: Download Dissertation

Abstract


IPSec as the IP layer security protocol for the IP packet authentication , data integrity and confidentiality protection in the field of network security, in particular virtual private network ( VPN ) plays an important role . Network Address Translation ( NAT ) is a private network addresses within the subnet mapped to one or several on the Internet public network address , which effectively solve the problem of shortage of IPv4 addresses . IPSec and NAT protocol in-depth analysis and found that serious incompatibilities exist between them : when protected by IPSec packets after NAT link , NAT will modify the packet 's IP address or transmission identifier , it will cause the packet can not pass the IPSec security checks , so that communication can not communicate properly . These incompatibilities severely limits the NAT and IPSec to work together . However, in the field of network security applications often require NAT gateway and IPSec VPN gateway can work together. To this end , we propose the use of UDP encapsulation technology to modify existing VPN system in order to achieve the VPN through the NAT . Increase the load in the IKE SA negotiation process between the VPN gateway address detection is supported NAT traversal between the gateway and the existence of NAT . ESP and AH packet UDP encapsulation and decapsulation module . The IPSec processing processes have been modified . Finally, the problem of IP fragmentation encountered in the implementation process , ICMP PMTU an effective solution . For both sides NAT , initiate communication with the VPN device is connected to the VPN device's IP address and consultation port number can not be determined for a variety of reasons , resulting in not establish an encrypted communication tunnel . To this end, we propose to use \Also analyzed using UDP encapsulation through the NAT to be resolved .

Related Dissertations

  1. Centralized WLAN Tunnel Management System Design and Implementation,TN925.93
  2. Design and Implementation of the P2P Instant Message System Based on NAT Traversal,TP393.09
  3. Research and Design of a Communication System Based on P2P Architecture and SIP Protocol,TP393.02
  4. Research and Design of NAT Travsering Scheme Based on Hybrid P2P Network under UDP,TP393.02
  5. NAT gateway based on VxWorks embedded operating system developed,TP393.05
  6. NAT-PT is based IPv4/IPv6 translation gateway Research and Implementation,TP393.05
  7. Implement the SIP end in a non- peer networks applied research,TN916
  8. The Design and Implementation of a Solution to Traverse NAT with UPnP in SIP Switch System,TP393.03
  9. Research and Realization of Solution for NAT Traversal in P2P Communications,TP393.02
  10. Analysis、Design and Implementation of the Dynamic P2P VPN System,TP393.1
  11. Design and Implementation of IMS/SIP Session Border Controller,TN919.82
  12. A Solution to Implement Static Routing of Nat Gateway with Assistance of RIP Protocol,TP393.05
  13. Research and Implementation of USB-Based IP Encryption Phone,TN916.33
  14. The Design and Implementation TCP NAT Traversal Based on STUNT Protocol,TP393.04
  15. Application and Implementation of the IPSec Protocol in the Software Definition Radio Base Station Platform,TP393.08
  16. Based on application layer routing SIP through NAT program design and implementation,TP393.03
  17. P2P-based network applications NAT traversal solution analysis and design,TP393.03
  18. Research and Implementation on Automatic Authentication Configuration of IPSec Remote Access Mode,TP393.08
  19. Network security defense system research and design,TP393.08
  20. Network processor-based IPv4/IPv6 protocol conversion gateway Design and Implementation,TP393

CLC: > Industrial Technology > Automation technology,computer technology > Computing technology,computer technology > Computer applications > Computer network > General issues > Network equipment
© 2012 www.DissertationTopic.Net  Mobile