100 likes | 225 Vues
Version. IHL. Total Length. Type of Service. Identification. Flags. Fragment Offset. Time To Live. Protocol = 6. Header Checksum. IP Header. Source Address. Destination Address. Options. Padding. Source Port. Destination Port. Sequence Number. TCP. Acknowledgment Number. Data
E N D
Version IHL Total Length Type of Service Identification Flags Fragment Offset Time To Live Protocol = 6 Header Checksum IP Header Source Address Destination Address Options Padding Source Port Destination Port Sequence Number TCP Acknowledgment Number Data offset S Y N F I N U R G A C K P S H R S T Window Checksum Urgent Pointer Padding TCP Options TCP Data
192.9.200.1 Source: 10.0.0.1 Dest: 192.9.200.1 10.0.0.1 Private Address Realm Host A Host B Source: 192.9.200.1 Dest: 10.0.0.1 Public Internet
Public Internet Private Address Realm 192.9.200.1 Source: 10.0.0.1/2000 Dest: 192.9.200.1/80 Source: 139.130.1.1/3000 Dest: 192.9.200.1/80 10.0.0.1 Site NAT NAT Binding 10.0.0.1 / 2000 139.130.1.1 / 3000 Host A Source: 192.9.200.1 Dest: 10.0.0.1/2000 Source: 192.9.200.1/80 Dest: 139.130.1.1/3000 Host B
Host B Source: Z / 3001 Dest: B / 90 Source: A / 2001 Dest: B / 90 Port 90 Initial Packet Port 91 Port 2001 Site NAT Host A Port 90 Port 91 NAT Binding NAT Filter Local Addr / Port External Addr / Port -- External Access Mask A / 2001 Z / 3001 -- B / 90 Host C
Host B Source: Z / 3001 Dest: B / 90 Source: A / 2001 Dest: B / 90 Port 90 Initial Packet Port 91 Port 2001 Site NAT Host A Port 90 Port 91 NAT Binding NAT Filter Local Addr / Port External Addr / Port -- External Access Mask A / 2001 Z / 3001 -- * / * Host C
Source: Z / 3001 Dest: B / 90 Source: A / 2001 Dest: B / 90 Port 90 Initial Packet Port 91 Host B Port 2001 Site NAT Host A Port 90 Port 91 NAT Binding NAT Filter Local Addr / Port External Addr / Port -- External Access Mask A / 2001 Z / 3001 -- B / * Host C
Host B Source: Z / 3001 Dest: B / 90 Source: A / 2001 Dest: B / 90 Port 90 Initial Packet Port 91 Port 2001 Site NAT Host A Port 90 Port 91 NAT Binding NAT Filter Local Addr / Port External Addr / Port -- External Access Mask A / 2001 Z / 3001 -- * / 90 Host C
STUN Request Same IP Addr and Port? STUN Request Change Response: Addr and Port N Y Y Response? N UDP Blocked STUN Request Change Response: Addr and Port N Response? Y Open Internet UDP Firewall Y Response? N Full Cone NAT Same IP Addr and Port? STUN Request To alternate Addr and Port N Symmetric NAT Y STUN Request Change Response:Port N Response? Y Port Restricted NAT Restricted NAT
Source: Y / 3002 Dest: A / 2001 Port 2001 Host A Source: Y / 3002 Dest: Z / 3001 Site NAT NAT Binding NAT Filter Local Addr / Port External Addr / Port -- External Access Mask A / 2001 Z / 3001 -- * / 2001 D / 2002 Y / 3002 -- * / 2002 Port 2002 Host D Source: D / 2002 Dest: Z / 3001
Source: X1 / x1 Dest: Y1 / y1 Source: X / x Dest: Y1 / y1 Port y1 Host Y1 Use Address and Port X1 / x1 Port x Site NAT Host X Port y2 Source: Y2 / y2 Dest: X / x Source: Y2/ y2 Dest: X1 / x1 Host Y2 NAT Binding NAT Filter Local Addr / Port External Addr / Port -- External Access Mask X / x X1 / x1 -- ? / ?