SlideShare a Scribd company logo

Computer network (16)

N
NYversity

This document summarizes key topics related to TCP friendliness, congestion control, DCCP, NATs, and STUN. It discusses how TCP dynamically adapts its rate in response to congestion using AIMD. It then covers Chiu-Jain phase plots and how TCP responds to loss by cutting its congestion window. The document analyzes a simple TCP model and derives its goodput equation. It discusses the importance of protocols being "TCP friendly" and introduces DCCP as a connection-oriented protocol providing congestion control for unreliable datagrams. The remainder summarizes Network Address Translation (NAT), including types of NATs and problems they cause. It introduces STUN for determining public IP/port behind

Education
1 of 58
Download to read offline
1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
43
44
45
46
47
48
49
50
51
52
53
54
55
56
57
58
Lecture 10: TCP Friendliness, DCCP, NATs, and STUN
TCP Friendliness
Congestion Control TCP dynamically adapts its rate in response to congestion AIMD causes flows to converge to fair goodput But how do losses (e.g., bit errors) affect goodput? What about UDP?
Chiu Jain Phase Plots Flow A rate (bps) Flow B rate (bps) Fair A=B Efficient A+B=C overload underload t1 t2 t3 t4 t5 t6
Responding to Loss Set threshold to cwnd 2 On timeout - Set cwnd to 1 - Causes TCP to enter slow start On triple duplicate ACK (Reno) - Set cwnd to cwnd 2 - Retransmit missing segment - Causes TCP to stay in congestion avoidance
Analyzing TCP Simply Assume all segments are MSS long Assume a packet loss rate p Assume a constant RTT Assume p is small (no timeouts)
Analysis Window size W cuts to W 2 after a loss Grows to W after W 2 RTTs Goodput = 3 4 W MTU 1 RTT
Window Size p = 1 (W 2 +(W 2 +1)+:::+W) p 1 3 8W2 W q 8 3p Goodput = 3 4 q 8 3p MTU 1 RTT Goodput = 1:22MTU p p RTT Constant factor changes based on delayed acks, etc.
TCP Friendliness Don’t want other protocols to disrupt TCP UDP happily shuts down TCP flows “TCP friendliness:” obeying TCP congestion control as per prior goodput equation - Does not imply acting like TCP - E.g., does not require abrupt window changes
Computer network (16)
ledbat WG “The LEDBAT WG is chartered to standardize a congestion control mechanism that should saturate the bottleneck, maintain low delay, and yield to standard TCP.” TCP-friendliness is insufficient for modern P2P applications - Flow fairness, not application fairness - TCP fills queues Elastic workloads vs. inelastic workloads
DCCP
DCCP Datagram Congestion Control Protocol (DCCP) provides congestion control for unreliable datagrams (RFC 4340) Connection-oriented protocol - Request-response-ack establishment - Close-reset or CloseReq-Close-reset teardown Counts packets, not bytes
DCCP Segment
Sequence Numbers Every DCCP packet uses a new sequence number - Data - Acknowledgements - Control traffic Acknowledgements are for last packet received - Not cumulative acknowledgements - Does not succinctly describe connection history - Options can give packet vectors
Synchronization DCCP uses sequence number windows to protect from attacks Large bursts of losses cause packets to fall past windows Need to resynchronize
Synchronization Exchange
Synchronization on Reset Problem
Synchronization on Reset Solution
Congestion Control Defines Congestion Control IDs (CCIDs) Negotiated with change/confirm L/R options Each half-connection can have different congestion control CCID 2: TCP congestion control (AIMD) (RFC 4941) CCID 3: TCP-friendly congestion control (RFC 4942)
CCID 2 Uses TCP congestion control - Maintains a cwnd, slow-start, etc. Adds congestion control to acks - Sender specifies an AckRatio, R - Ratio of data to ack packets (TCP with delayed ACKs is 2) - On detecting ack losses, double R - After cwnd R2R lossless congestion windows, decrement R
CCID 3 Uses TCP-friendly congestion control Uses a sending rate, rather than a congestion window Receiver sends feedback once per RTT, reporting loss rate If sender hears no feedback, halves sending rate Security issue with loss rate reporting: report loss intervals, rather than just a loss rate, verifiable with ECN nonces
DCCP Today Numerous implementations IETF Standards Track Well suited to VoIP, Internet Gaming, etc. Sees very little use
2-minute stretch
Network Address Translator
NAT Network Address Translator NAT (128.34.22.8) Client A (10.0.0.101) NAT (76.18.117.20) Client B (10.1.1.9) Session A-S 10.0.0.101:1234 18.181.0.31:22 Session B-S 10.1.1.9:5411 18.181.0.31:22 Server (18.181.0.31) Session B-S 76.18.117.20:10001 18.181.0.31:22 Session A-S 128.34.22.8:6101 18.181.0.31:22
Motivations and Complications There are only 232 IP addresses Firewalls for security Breaks end-to-end (node does not know its external IP) Node might not even know if it’s behind a NAT NAT needs to be able to dynamically assign mappings
How a NAT Works Maps between global and local (IP,port) pairs Requires knowledge of transport packet format UDP datagram, TCP SYN - Can shut down TCP mapping on FIN+ACK - UDP requires timeouts ( 2 minutes, unless IANA says otherwise) RFC 4787/BCP 127 defines recommended behaviors
NAT Example, Step 1 NAT (128.34.22.8) Client A (10.1.1.18) Server (18.181.0.31) Client B (10.1.1.9)
NAT Example, Step 2 NAT (128.34.22.8) Client A (10.1.1.18) Server (18.181.0.31) 10.1.1.18 18.181.0.31 4512 80 Client B (10.1.1.9) Client A tries to open a connection to Server port 80 from port 4512
NAT Example, Step 3 NAT (128.34.22.8) Client A (10.1.1.18) Server (18.181.0.31) Client B (10.1.1.9) NAT rewrites the source address and port so it seems it is the source 128.34.22.8 18.181.0.31 6641 80 10.1.1.18 18.181.0.31 4512 80
NAT Example, Step 4 NAT (128.34.22.8) Client A (10.1.1.18) Server (18.181.0.31) Client B (10.1.1.9) NAT also creates a mapping so it can transform future packets correctly 18.181.0.31 10.1.1.18 4512 80 128.34.22.8 6641
NAT Example, Step 5 NAT (128.34.22.8) Client A (10.1.1.18) Server (18.181.0.31) 18.181.0.31 Client B (10.1.1.9) Server responds to SYN with SYN+ACK and NAT rewrites it 18.181.0.31 128.34.22.8 80 6641 10.1.1.18 80 4512 18.181.0.31 10.1.1.18 4512 80 128.34.22.8 6641
NAT Example, Step 6 NAT (128.34.22.8) Client A (10.1.1.18) Server (18.181.0.31) 18.181.0.31 Client B (10.1.1.9) Client B can also open a connection, and the NAT creates a mapping for it too 18.181.0.31 128.34.22.8 80 4050 10.1.1.19 80 9967 18.181.0.31 10.1.1.19 9967 80 128.34.22.8 4050
NAT Example, Step 7 Client A (10.1.1.18) Server (18.181.0.31) In the case of TCP, NAT can discard the mapping on close or RST RST RST NAT (128.34.22.8) 18.181.0.31 Client B (10.1.1.9) 18.181.0.31 128.34.22.8 80 6641 10.1.1.18 80 4512 18.181.0.31 10.1.1.18 4512 80 128.34.22.8 6641
Types of NAT (RFC 3849) Full Cone: no ingress filter (single local-external mapping) Restricted Cone: ingress filter on address Port Restricted: ingress filter on address/port Symmetric: different mappings for different external destinations Teminology is imperfect (static port mappings, etc.)
NAT Problems Incoming TCP connections E.g., Skype clients super nodes bootstrap call super node relay
TCP Through NATs Server socket doesn’t initiate traffic: NAT can’t set up mapping Rendezvous servers (as in Skype) Connection reversal through rendezvous if only one is behind a NAT (rendezvous server asks un-NAT node to open a port so NAT node can connect)
TCP Reversal
More NAT Problems Port mapping: 0-1023 should map to 0-1023 Port parity: even port!even port, odd port!odd port (RFC 3550: RTP uses even, RTCP uses odd)) Hairpinning: packet from inside NAT can send packets to external (NAT) address and have portmap work
RFC 4787 and Hairpinning “NAT UDP Unicast Requirements” - F. Audet and C. Jennings (guest lecture last year) More formally, a NAT that supports hairpinning forwards packets originating from an internal address, X1:x1, destined for an external address X2':x2' that has an active mapping to an internal address X2:x2, back to that internal address, X2:x2. Note that typically X1' is the same as X2'. Furthermore, the NAT may present the hairpinned packet with either an internal (X1:x1) or an external (X1':x1') source IP address and port. Therefore, the hairpinning NAT behavior can be either External source IP address and port or Internal source IP address and port. Internal source IP address and port may cause problems by confusing implementations that expect an external IP address and port.
Example confusion Two nodes (A, B) share a switch behind a NAT A sends TCP SYN to an external address for B B responds with SYN+ACK What can happen if NAT did not rewrite A’s SYN to have an external address and port? Will B’s packet traverse the NAT?
Simple Traversal of UDP through NATs
STUN (RFC 3849) “Simple Traversal of User Datagram Protocol (UDP) Through Network Address Translators (NATs)” Enables a node to - Determine if it is behind a NAT, and if so, what kind - Obtain a public IP address/port pair Client-server protocol, requires no changes to NATs STUN server coordinates
STUN Binding Requests Node sends BR to STUN server STUN sends a response that has the address and port it sees - If different than node’s local address and port, it’s behind a NAT Node can probe to see what kind of NAT - Ask STUN server to respond from different address: no response, address restricted; different response, symmetric - Ask STUN server to respond from different port: no response, port restricted When does STUN not work?
NAT Hole-Punching STUN doesn’t work when - A or B are behind symmetric NAT - A and B are behind same NAT without hairpinning - What about restricted cone, port-restricted NATs? Parallel approaches - A and B report their local IP address to server Sx - Server tells the other the address/port pair (L;G) - A tries to send UDP packets to (LB;GB) using LA - B tries to send UDP packets to (LA;GA) using LB
NAT Hole-Punching Example Client A (10.0.0.101) NAT (76.18.117.20) Client B (10.1.1.9) Server (18.181.0.31) NAT (128.34.22.8)
NAT Hole-Punching Example 1. Request connection to B Client A (10.0.0.101) NAT (76.18.117.20) Client B (10.1.1.9) Server (18.181.0.31) NAT (128.34.22.8)
NAT Hole-Punching Example Client A (10.0.0.101) Server (18.181.0.31) 2a. S sends LB and GB to A 2b. S sends LA and GA to B NAT (76.18.117.20) Client B (10.1.1.9) NAT (128.34.22.8)
NAT Hole-Punching Example Client A (10.0.0.101) Server (18.181.0.31) 3a. A sends to LB and GB 3b. B sends to LA and GA NAT (76.18.117.20) Client B (10.1.1.9) NAT (128.34.22.8)
NAT Hole-Punching Example Client A (10.0.0.101) Client B (10.1.1.9) Server (18.181.0.31) NAT (76.18.117.20) NAT (128.34.22.8) 4. Session A-B established
Multiple NAT Layers Common for consumer Internet: ISP has internal NAT, end user places another NAT Requires hairpinning at ISP NAT Client A (10.0.0.101) UserNAT (192.168.3.7) Client B (10.1.1.9) ISP NAT (18.181.0.31) User NAT (192.168.4.1) Internet ISP Network
The New Hourglass Layers 5-7 TCP UDP ICMP IP Layers 1-2
Class Administrative Stuff
So, the midterm...
Computer network (16)
Midterm Grades A: 80-100 B: 60-79 C: 50-59 D: 40-59 F: 40 Don’t forget two-thirds rule on final grade, final exam can trump midterm
Travel:W-F Guest lectureWednesday: David Mazi´eres - Topic: IPv6, multicast, anycast Phil’s office hours: Today 2:05-3

More Related Content

PPTX
Part 12 : Local Area Networks
Olivier Bonaventure
 
PPTX
Transport Layer in Computer Networks (TCP / UDP / SCTP)
Hamidreza Bolhasani
 
PPT
Np unit iv ii
vamsitricks
 
PPT
udp , tcp ,sctp
AKSHIT KOHLI
 
PPT
Np unit1
vamsitricks
 
PDF
RTSP Protocol - Explanation to develop API of RTSP Protocol
FranZEast
 
ODP
7. protocols
Marian Marinov
 
PPT
RTSP Analysis Wireshark
Yoss Cohen
 
Part 12 : Local Area Networks
Olivier Bonaventure
 
Transport Layer in Computer Networks (TCP / UDP / SCTP)
Hamidreza Bolhasani
 
Np unit iv ii
vamsitricks
 
udp , tcp ,sctp
AKSHIT KOHLI
 
Np unit1
vamsitricks
 
RTSP Protocol - Explanation to develop API of RTSP Protocol
FranZEast
 
7. protocols
Marian Marinov
 
RTSP Analysis Wireshark
Yoss Cohen
 

What's hot (20)

PPTX
RIP RTCP RTSP
Dev Heba
 
PPT
RTP.ppt
Videoguy
 
PPT
Computer network
DeepikaT13
 
PPT
Rtsp
Sumit Arora
 
PDF
Computer network (13)
NYversity
 
PPT
Sctp tutorial
Susant Sahani
 
PPTX
RTP
Tarek Nader
 
ODP
7.protocols 2
Marian Marinov
 
PPT
Chap05 gtp 03_kh
Farzad Ramin
 
PDF
Introduction to SCTP and it's benefits over TCP and UDP
VIJAY SHARMA
 
PPT
Computer network (Lecture 2)
Vishwajit Nandi
 
PPT
Course on TCP Dynamic Performance
Javier Arauz
 
PDF
CS 6390 Project design report
Raj Gupta
 
PPT
Chap 13 stream control transmission protocol
Noctorous Jamal
 
PDF
CS 6390 Project design report
Abhishek Datta
 
PPT
Real-Time Streaming Protocol
Jayaprakash Nagaruru
 
PPTX
9 ipv6-routing
Olivier Bonaventure
 
PPTX
RTP & RTCP
VijayIndra Shekhawat
 
PDF
TCP & UDP Streaming Comparison and a Study on DCCP & SCTP Protocols
Peter SHIN
 
PPT
Sania rtp
saniacorreya
 
RIP RTCP RTSP
Dev Heba
 
RTP.ppt
Videoguy
 
Computer network
DeepikaT13
 
Rtsp
Sumit Arora
 
Computer network (13)
NYversity
 
Sctp tutorial
Susant Sahani
 
RTP
Tarek Nader
 
7.protocols 2
Marian Marinov
 
Chap05 gtp 03_kh
Farzad Ramin
 
Introduction to SCTP and it's benefits over TCP and UDP
VIJAY SHARMA
 
Computer network (Lecture 2)
Vishwajit Nandi
 
Course on TCP Dynamic Performance
Javier Arauz
 
CS 6390 Project design report
Raj Gupta
 
Chap 13 stream control transmission protocol
Noctorous Jamal
 
CS 6390 Project design report
Abhishek Datta
 
Real-Time Streaming Protocol
Jayaprakash Nagaruru
 
9 ipv6-routing
Olivier Bonaventure
 
RTP & RTCP
VijayIndra Shekhawat
 
TCP & UDP Streaming Comparison and a Study on DCCP & SCTP Protocols
Peter SHIN
 
Sania rtp
saniacorreya
 
Ad

Viewers also liked (17)

PDF
XPDS13: On Paravirualizing TCP - Congestion Control on Xen VMs - Luwei Cheng,...
The Linux Foundation
 
PDF
Programming methodology lecture19
NYversity
 
PDF
Programming methodology lecture10
NYversity
 
PDF
Programming methodology-1.1
NYversity
 
PDF
Programming methodology lecture09
NYversity
 
PDF
Machine learning (12)
NYversity
 
PDF
Computer network (7)
NYversity
 
PDF
Programming methodology lecture05
NYversity
 
PDF
Programming methodology lecture02
NYversity
 
PDF
Programming methodology lecture25
NYversity
 
PDF
Computer network (1)
NYversity
 
PDF
Programming methodology lecture16
NYversity
 
PDF
Principles of programming languages
NYversity
 
PDF
Programming methodology lecture13
NYversity
 
PDF
Programming methodology lecture01
NYversity
 
PPT
Lect9 (1)
Abdo sayed
 
PPT
Congestion Control
Ram Dutt Shukla
 
XPDS13: On Paravirualizing TCP - Congestion Control on Xen VMs - Luwei Cheng,...
The Linux Foundation
 
Programming methodology lecture19
NYversity
 
Programming methodology lecture10
NYversity
 
Programming methodology-1.1
NYversity
 
Programming methodology lecture09
NYversity
 
Machine learning (12)
NYversity
 
Computer network (7)
NYversity
 
Programming methodology lecture05
NYversity
 
Programming methodology lecture02
NYversity
 
Programming methodology lecture25
NYversity
 
Computer network (1)
NYversity
 
Programming methodology lecture16
NYversity
 
Principles of programming languages
NYversity
 
Programming methodology lecture13
NYversity
 
Programming methodology lecture01
NYversity
 
Lect9 (1)
Abdo sayed
 
Congestion Control
Ram Dutt Shukla
 
Ad

Similar to Computer network (16) (20)

PPT
Unit III IPV6 UDP
sangusajjan
 
PDF
Computer network
Gaurav Rawat
 
PPT
Chapter6TransportLayer header format protocols-2.ppt
Mugabo4
 
PPT
Troubleshooting TCP/IP
vijai s
 
PPT
transport layer Explained-www.kxkks,skkqk-qw.ppt
alfredjbphiri
 
PPTX
Tcp congestion avoidance
Ahmed Kamel Taha
 
PDF
Computer network (11)
NYversity
 
PPTX
Mobile Transpot Layer
Maulik Patel
 
PDF
Programming TCP for responsiveness
Kazuho Oku
 
PDF
TCP - Transmission Control Protocol
Peter R. Egli
 
PPTX
Part 9 : Congestion control and IPv6
Olivier Bonaventure
 
PPTX
transport protocols
keerthigakeerthigaD
 
PPTX
3.TRANSPORT LAYER Computer Network .pptx
tyghvbn
 
PDF
VoiceBootcamp Ccnp collaboration lab guide v1.0 sample
Faisal Khan
 
PPTX
IPAddressing .pptx
karthikvcyber
 
PDF
Tcpip
julien pauli
 
PDF
materi uas jarkom tahun ajaraan 2022.pdf
regardefaihadz
 
PPT
Training Day Slides
adam_merritt
 
PPTX
Computer network
Gaurav Rawat
 
PPTX
08 - COMS 525 Internet Protocols and TCPIP - TCP 1.pptx
PalanivelKuppusamy1
 
Unit III IPV6 UDP
sangusajjan
 
Computer network
Gaurav Rawat
 
Chapter6TransportLayer header format protocols-2.ppt
Mugabo4
 
Troubleshooting TCP/IP
vijai s
 
transport layer Explained-www.kxkks,skkqk-qw.ppt
alfredjbphiri
 
Tcp congestion avoidance
Ahmed Kamel Taha
 
Computer network (11)
NYversity
 
Mobile Transpot Layer
Maulik Patel
 
Programming TCP for responsiveness
Kazuho Oku
 
TCP - Transmission Control Protocol
Peter R. Egli
 
Part 9 : Congestion control and IPv6
Olivier Bonaventure
 
transport protocols
keerthigakeerthigaD
 
3.TRANSPORT LAYER Computer Network .pptx
tyghvbn
 
VoiceBootcamp Ccnp collaboration lab guide v1.0 sample
Faisal Khan
 
IPAddressing .pptx
karthikvcyber
 
Tcpip
julien pauli
 
materi uas jarkom tahun ajaraan 2022.pdf
regardefaihadz
 
Training Day Slides
adam_merritt
 
Computer network
Gaurav Rawat
 
08 - COMS 525 Internet Protocols and TCPIP - TCP 1.pptx
PalanivelKuppusamy1
 

More from NYversity (20)

PDF
3016 all-2007-dist
NYversity
 
PDF
Programming methodology lecture28
NYversity
 
PDF
Programming methodology lecture27
NYversity
 
PDF
Programming methodology lecture26
NYversity
 
PDF
Programming methodology lecture24
NYversity
 
PDF
Programming methodology lecture23
NYversity
 
PDF
Programming methodology lecture22
NYversity
 
PDF
Programming methodology lecture20
NYversity
 
PDF
Programming methodology lecture18
NYversity
 
PDF
Programming methodology lecture17
NYversity
 
PDF
Programming methodology lecture15
NYversity
 
PDF
Programming methodology lecture14
NYversity
 
PDF
Programming methodology lecture12
NYversity
 
PDF
Programming methodology lecture11
NYversity
 
PDF
Programming methodology lecture08
NYversity
 
PDF
Programming methodology lecture07
NYversity
 
PDF
Programming methodology lecture06
NYversity
 
PDF
Programming methodology lecture04
NYversity
 
PDF
Programming methodology lecture03
NYversity
 
PDF
Design patterns
NYversity
 
3016 all-2007-dist
NYversity
 
Programming methodology lecture28
NYversity
 
Programming methodology lecture27
NYversity
 
Programming methodology lecture26
NYversity
 
Programming methodology lecture24
NYversity
 
Programming methodology lecture23
NYversity
 
Programming methodology lecture22
NYversity
 
Programming methodology lecture20
NYversity
 
Programming methodology lecture18
NYversity
 
Programming methodology lecture17
NYversity
 
Programming methodology lecture15
NYversity
 
Programming methodology lecture14
NYversity
 
Programming methodology lecture12
NYversity
 
Programming methodology lecture11
NYversity
 
Programming methodology lecture08
NYversity
 
Programming methodology lecture07
NYversity
 
Programming methodology lecture06
NYversity
 
Programming methodology lecture04
NYversity
 
Programming methodology lecture03
NYversity
 
Design patterns
NYversity
 

Recently uploaded (20)

PPTX
Cell Types and Its function , kingdom of life
ClaireMangundayao1
 
PDF
Anesthesia in Laparoscopic Surgery in India
mohitsuren827
 
PPTX
Microbial diseases, their pathogenesis and prophylaxis
DevlinaSengupta
 
PDF
102 student loan defaulters named and shamed – Is someone you know on the list?
Kweku Zurek
 
PDF
Black Hat USA 2025 - Micro ICS Summit - ICS/OT Threat Landscape
Chris Sistrunk
 
PDF
3rd Neelam Sanjeevareddy Memorial Lecture.pdf
Academy of Grassroots Studies and Research of India (AGRASRI)
 
PDF
Chapter 2 Heredity, Prenatal Development, and Birth.pdf
MarjorieLopezTiu
 
PDF
Abdominal Access Techniques with Prof. Dr. R K Mishra
mohitsuren827
 
PPTX
PPH.pptx obstetrics and gynecology in nursing
SrideviDevaraj5
 
PDF
Pre independence Education in Inndia.pdf
goofy5603
 
PDF
01-Introduction-to-Information-Management.pdf
PrinceIbarra
 
PDF
O7-L3 Supply Chain Operations - ICLT Program
labyankof
 
PPTX
PPT- ENG7_QUARTER1_LESSON1_WEEK1. IMAGERY -DESCRIPTIONS pptx.pptx
KMDee
 
PPTX
Pharmacology of Heart Failure /Pharmacotherapy of CHF
Rajshri Ghogare
 
PDF
Module 4: Burden of Disease Tutorial Slides S2 2025
Jonathan Hallett
 
PPTX
school management -TNTEU- B.Ed., Semester II Unit 1.pptx
NihumathunnisaH
 
PPTX
human mycosis Human fungal infections are called human mycosis..pptx
shilpa939953
 
PPTX
GDM (1) (1).pptx small presentation for students
shrawanbpkihs
 
PDF
TR - Agricultural Crops Production NC III.pdf
avgilmegino3
 
PDF
Supply Chain Operations Speaking Notes -ICLT Program
labyankof
 
Cell Types and Its function , kingdom of life
ClaireMangundayao1
 
Anesthesia in Laparoscopic Surgery in India
mohitsuren827
 
Microbial diseases, their pathogenesis and prophylaxis
DevlinaSengupta
 
102 student loan defaulters named and shamed – Is someone you know on the list?
Kweku Zurek
 
Black Hat USA 2025 - Micro ICS Summit - ICS/OT Threat Landscape
Chris Sistrunk
 
3rd Neelam Sanjeevareddy Memorial Lecture.pdf
Academy of Grassroots Studies and Research of India (AGRASRI)
 
Chapter 2 Heredity, Prenatal Development, and Birth.pdf
MarjorieLopezTiu
 
Abdominal Access Techniques with Prof. Dr. R K Mishra
mohitsuren827
 
PPH.pptx obstetrics and gynecology in nursing
SrideviDevaraj5
 
Pre independence Education in Inndia.pdf
goofy5603
 
01-Introduction-to-Information-Management.pdf
PrinceIbarra
 
O7-L3 Supply Chain Operations - ICLT Program
labyankof
 
PPT- ENG7_QUARTER1_LESSON1_WEEK1. IMAGERY -DESCRIPTIONS pptx.pptx
KMDee
 
Pharmacology of Heart Failure /Pharmacotherapy of CHF
Rajshri Ghogare
 
Module 4: Burden of Disease Tutorial Slides S2 2025
Jonathan Hallett
 
school management -TNTEU- B.Ed., Semester II Unit 1.pptx
NihumathunnisaH
 
human mycosis Human fungal infections are called human mycosis..pptx
shilpa939953
 
GDM (1) (1).pptx small presentation for students
shrawanbpkihs
 
TR - Agricultural Crops Production NC III.pdf
avgilmegino3
 
Supply Chain Operations Speaking Notes -ICLT Program
labyankof
 

Computer network (16)

  • 1. Lecture 10: TCP Friendliness, DCCP, NATs, and STUN
  • 3. Congestion Control TCP dynamically adapts its rate in response to congestion AIMD causes flows to converge to fair goodput But how do losses (e.g., bit errors) affect goodput? What about UDP?
  • 4. Chiu Jain Phase Plots Flow A rate (bps) Flow B rate (bps) Fair A=B Efficient A+B=C overload underload t1 t2 t3 t4 t5 t6
  • 5. Responding to Loss Set threshold to cwnd 2 On timeout - Set cwnd to 1 - Causes TCP to enter slow start On triple duplicate ACK (Reno) - Set cwnd to cwnd 2 - Retransmit missing segment - Causes TCP to stay in congestion avoidance
  • 6. Analyzing TCP Simply Assume all segments are MSS long Assume a packet loss rate p Assume a constant RTT Assume p is small (no timeouts)
  • 7. Analysis Window size W cuts to W 2 after a loss Grows to W after W 2 RTTs Goodput = 3 4 W MTU 1 RTT
  • 8. Window Size p = 1 (W 2 +(W 2 +1)+:::+W) p 1 3 8W2 W q 8 3p Goodput = 3 4 q 8 3p MTU 1 RTT Goodput = 1:22MTU p p RTT Constant factor changes based on delayed acks, etc.
  • 9. TCP Friendliness Don’t want other protocols to disrupt TCP UDP happily shuts down TCP flows “TCP friendliness:” obeying TCP congestion control as per prior goodput equation - Does not imply acting like TCP - E.g., does not require abrupt window changes
  • 11. ledbat WG “The LEDBAT WG is chartered to standardize a congestion control mechanism that should saturate the bottleneck, maintain low delay, and yield to standard TCP.” TCP-friendliness is insufficient for modern P2P applications - Flow fairness, not application fairness - TCP fills queues Elastic workloads vs. inelastic workloads
  • 12. DCCP
  • 13. DCCP Datagram Congestion Control Protocol (DCCP) provides congestion control for unreliable datagrams (RFC 4340) Connection-oriented protocol - Request-response-ack establishment - Close-reset or CloseReq-Close-reset teardown Counts packets, not bytes
  • 15. Sequence Numbers Every DCCP packet uses a new sequence number - Data - Acknowledgements - Control traffic Acknowledgements are for last packet received - Not cumulative acknowledgements - Does not succinctly describe connection history - Options can give packet vectors
  • 16. Synchronization DCCP uses sequence number windows to protect from attacks Large bursts of losses cause packets to fall past windows Need to resynchronize
  • 20. Congestion Control Defines Congestion Control IDs (CCIDs) Negotiated with change/confirm L/R options Each half-connection can have different congestion control CCID 2: TCP congestion control (AIMD) (RFC 4941) CCID 3: TCP-friendly congestion control (RFC 4942)
  • 21. CCID 2 Uses TCP congestion control - Maintains a cwnd, slow-start, etc. Adds congestion control to acks - Sender specifies an AckRatio, R - Ratio of data to ack packets (TCP with delayed ACKs is 2) - On detecting ack losses, double R - After cwnd R2R lossless congestion windows, decrement R
  • 22. CCID 3 Uses TCP-friendly congestion control Uses a sending rate, rather than a congestion window Receiver sends feedback once per RTT, reporting loss rate If sender hears no feedback, halves sending rate Security issue with loss rate reporting: report loss intervals, rather than just a loss rate, verifiable with ECN nonces
  • 23. DCCP Today Numerous implementations IETF Standards Track Well suited to VoIP, Internet Gaming, etc. Sees very little use
  • 26. NAT Network Address Translator NAT (128.34.22.8) Client A (10.0.0.101) NAT (76.18.117.20) Client B (10.1.1.9) Session A-S 10.0.0.101:1234 18.181.0.31:22 Session B-S 10.1.1.9:5411 18.181.0.31:22 Server (18.181.0.31) Session B-S 76.18.117.20:10001 18.181.0.31:22 Session A-S 128.34.22.8:6101 18.181.0.31:22
  • 27. Motivations and Complications There are only 232 IP addresses Firewalls for security Breaks end-to-end (node does not know its external IP) Node might not even know if it’s behind a NAT NAT needs to be able to dynamically assign mappings
  • 28. How a NAT Works Maps between global and local (IP,port) pairs Requires knowledge of transport packet format UDP datagram, TCP SYN - Can shut down TCP mapping on FIN+ACK - UDP requires timeouts ( 2 minutes, unless IANA says otherwise) RFC 4787/BCP 127 defines recommended behaviors
  • 29. NAT Example, Step 1 NAT (128.34.22.8) Client A (10.1.1.18) Server (18.181.0.31) Client B (10.1.1.9)
  • 30. NAT Example, Step 2 NAT (128.34.22.8) Client A (10.1.1.18) Server (18.181.0.31) 10.1.1.18 18.181.0.31 4512 80 Client B (10.1.1.9) Client A tries to open a connection to Server port 80 from port 4512
  • 31. NAT Example, Step 3 NAT (128.34.22.8) Client A (10.1.1.18) Server (18.181.0.31) Client B (10.1.1.9) NAT rewrites the source address and port so it seems it is the source 128.34.22.8 18.181.0.31 6641 80 10.1.1.18 18.181.0.31 4512 80
  • 32. NAT Example, Step 4 NAT (128.34.22.8) Client A (10.1.1.18) Server (18.181.0.31) Client B (10.1.1.9) NAT also creates a mapping so it can transform future packets correctly 18.181.0.31 10.1.1.18 4512 80 128.34.22.8 6641
  • 33. NAT Example, Step 5 NAT (128.34.22.8) Client A (10.1.1.18) Server (18.181.0.31) 18.181.0.31 Client B (10.1.1.9) Server responds to SYN with SYN+ACK and NAT rewrites it 18.181.0.31 128.34.22.8 80 6641 10.1.1.18 80 4512 18.181.0.31 10.1.1.18 4512 80 128.34.22.8 6641
  • 34. NAT Example, Step 6 NAT (128.34.22.8) Client A (10.1.1.18) Server (18.181.0.31) 18.181.0.31 Client B (10.1.1.9) Client B can also open a connection, and the NAT creates a mapping for it too 18.181.0.31 128.34.22.8 80 4050 10.1.1.19 80 9967 18.181.0.31 10.1.1.19 9967 80 128.34.22.8 4050
  • 35. NAT Example, Step 7 Client A (10.1.1.18) Server (18.181.0.31) In the case of TCP, NAT can discard the mapping on close or RST RST RST NAT (128.34.22.8) 18.181.0.31 Client B (10.1.1.9) 18.181.0.31 128.34.22.8 80 6641 10.1.1.18 80 4512 18.181.0.31 10.1.1.18 4512 80 128.34.22.8 6641
  • 36. Types of NAT (RFC 3849) Full Cone: no ingress filter (single local-external mapping) Restricted Cone: ingress filter on address Port Restricted: ingress filter on address/port Symmetric: different mappings for different external destinations Teminology is imperfect (static port mappings, etc.)
  • 37. NAT Problems Incoming TCP connections E.g., Skype clients super nodes bootstrap call super node relay
  • 38. TCP Through NATs Server socket doesn’t initiate traffic: NAT can’t set up mapping Rendezvous servers (as in Skype) Connection reversal through rendezvous if only one is behind a NAT (rendezvous server asks un-NAT node to open a port so NAT node can connect)
  • 40. More NAT Problems Port mapping: 0-1023 should map to 0-1023 Port parity: even port!even port, odd port!odd port (RFC 3550: RTP uses even, RTCP uses odd)) Hairpinning: packet from inside NAT can send packets to external (NAT) address and have portmap work
  • 41. RFC 4787 and Hairpinning “NAT UDP Unicast Requirements” - F. Audet and C. Jennings (guest lecture last year) More formally, a NAT that supports hairpinning forwards packets originating from an internal address, X1:x1, destined for an external address X2':x2' that has an active mapping to an internal address X2:x2, back to that internal address, X2:x2. Note that typically X1' is the same as X2'. Furthermore, the NAT may present the hairpinned packet with either an internal (X1:x1) or an external (X1':x1') source IP address and port. Therefore, the hairpinning NAT behavior can be either External source IP address and port or Internal source IP address and port. Internal source IP address and port may cause problems by confusing implementations that expect an external IP address and port.
  • 42. Example confusion Two nodes (A, B) share a switch behind a NAT A sends TCP SYN to an external address for B B responds with SYN+ACK What can happen if NAT did not rewrite A’s SYN to have an external address and port? Will B’s packet traverse the NAT?
  • 43. Simple Traversal of UDP through NATs
  • 44. STUN (RFC 3849) “Simple Traversal of User Datagram Protocol (UDP) Through Network Address Translators (NATs)” Enables a node to - Determine if it is behind a NAT, and if so, what kind - Obtain a public IP address/port pair Client-server protocol, requires no changes to NATs STUN server coordinates
  • 45. STUN Binding Requests Node sends BR to STUN server STUN sends a response that has the address and port it sees - If different than node’s local address and port, it’s behind a NAT Node can probe to see what kind of NAT - Ask STUN server to respond from different address: no response, address restricted; different response, symmetric - Ask STUN server to respond from different port: no response, port restricted When does STUN not work?
  • 46. NAT Hole-Punching STUN doesn’t work when - A or B are behind symmetric NAT - A and B are behind same NAT without hairpinning - What about restricted cone, port-restricted NATs? Parallel approaches - A and B report their local IP address to server Sx - Server tells the other the address/port pair (L;G) - A tries to send UDP packets to (LB;GB) using LA - B tries to send UDP packets to (LA;GA) using LB
  • 47. NAT Hole-Punching Example Client A (10.0.0.101) NAT (76.18.117.20) Client B (10.1.1.9) Server (18.181.0.31) NAT (128.34.22.8)
  • 48. NAT Hole-Punching Example 1. Request connection to B Client A (10.0.0.101) NAT (76.18.117.20) Client B (10.1.1.9) Server (18.181.0.31) NAT (128.34.22.8)
  • 49. NAT Hole-Punching Example Client A (10.0.0.101) Server (18.181.0.31) 2a. S sends LB and GB to A 2b. S sends LA and GA to B NAT (76.18.117.20) Client B (10.1.1.9) NAT (128.34.22.8)
  • 50. NAT Hole-Punching Example Client A (10.0.0.101) Server (18.181.0.31) 3a. A sends to LB and GB 3b. B sends to LA and GA NAT (76.18.117.20) Client B (10.1.1.9) NAT (128.34.22.8)
  • 51. NAT Hole-Punching Example Client A (10.0.0.101) Client B (10.1.1.9) Server (18.181.0.31) NAT (76.18.117.20) NAT (128.34.22.8) 4. Session A-B established
  • 52. Multiple NAT Layers Common for consumer Internet: ISP has internal NAT, end user places another NAT Requires hairpinning at ISP NAT Client A (10.0.0.101) UserNAT (192.168.3.7) Client B (10.1.1.9) ISP NAT (18.181.0.31) User NAT (192.168.4.1) Internet ISP Network
  • 53. The New Hourglass Layers 5-7 TCP UDP ICMP IP Layers 1-2
  • 57. Midterm Grades A: 80-100 B: 60-79 C: 50-59 D: 40-59 F: 40 Don’t forget two-thirds rule on final grade, final exam can trump midterm
  • 58. Travel:W-F Guest lectureWednesday: David Mazi´eres - Topic: IPv6, multicast, anycast Phil’s office hours: Today 2:05-3