research-article

Issues with network address translation for SCTP

Authors:

David A. Hayes,

Jason But,

Grenville ArmitageAuthors Info & Claims

ACM SIGCOMM Computer Communication Review, Volume 39, Issue 1

Pages 23 - 33

https://doi.org/10.1145/1496091.1496095

Published: 31 December 2008 Publication History

Get Access

Abstract

A Stream Control Transmission Protocol (SCTP) capable Network Address Translation (NAT) device is necessary to support the wider deployment of the SCTP protocol. The key issues for an SCTP NAT are SCTP's control chunk multiplexing and multi-homing features. Control chunk multiplexing can expose an SCTP NAT to possible Denial of Service attacks. These can be mitigated through the use of chunk and parameter processing limits.

Multiple and changing IP addresses during an SCTP association, mean that SCTP NATs cannot operate in the way conventional UDP/TCP NATs operate. Tracking these multiple global IP addresses can help in avoiding lookup table conflicts, however, it can also result in circumstances that can lead to NAT state inconsistencies. Our analysis shows that tracking global IP addresses is not necessary in most expected practical installations.

We use our FreeBSD SCTP NAT implementation, alias_sctp to examine the performance implications of tracking global IP addresses. We find that typical memory usage doubles and that the processing requirements are significant for installations that experience high association arrival rates.

In conclusion we provide practical recommendations for a secure stable SCTP NAT installation.

References

[1]

L. Zhang, "A retrospective view of NAT," IETF Journal, vol. 3, no. 2, Oct. 2007. {Online}. Available: http://www.isoc.org/tools/blogs/ietfjournal/?p=157

Google Scholar

[2]

R. Stewart and M. Tüxen, "Stream control transmission protocol (SCTP) network address translation," Internet-Draft, Jul. 2008.

Google Scholar

[3]

M. Tüxen, I. Rüngeler, R. Stewart, and E. P. Rathgeb, "Network address translation (NAT) for the stream control transmission protocol (SCTP)," IEEE Network, vol. 22, no. 5, pp. 26--32, September/October 2008.

Digital Library

Google Scholar

[4]

D. A. Hayes and J. But, "Alias sctp NAT module," viewed 30 October 2008. {Online}. Available: http://caia.swin.edu.au/urp/sonata/downloads.html

Google Scholar

[5]

R. Stewart, "Stream control transmission protocol," IETF, RFC 4960, Sep. 2007.

Google Scholar

[6]

R. R. Stewart and Q. Xie, Stream Control Transmission Protocol (SCTP). Addison-Wesley, 2002.

Digital Library

Google Scholar

[7]

P. Ferguson and D. Senie, "Network ingress filtering: Defeating denial of service attacks which employ ip source address spoofing," IETF, RFC 2827, May 2000.

Digital Library

Google Scholar

[8]

P. Srisuresh and M. Holdrege, "IP network address translator (NAT) terminology and considerations," IETF, RFC 2663, Aug. 1999.

Digital Library

Google Scholar

[9]

P. Srisuresh and K. Egevang, "Traditional IP network address translator (traditional NAT)," IETF, RFC 3022, Jan. 2001.

Digital Library

Google Scholar

[10]

CAIA, "SONATA -- SCTP over NAT adaptation," viewed 28 August 2008. {Online}. Available: http://caia.swin.edu.au/urp/sonata

Google Scholar

[11]

I. A. N. A. (IANA), "Port numbers," viewed 23 October 2008, Oct. 2008. {Online}. Available: http://www.iana.org/assignments/port-numbers

Google Scholar

Cited By

View all

Li HDang YSun GWu CZhang PShan DPan THu C(2024)Programming Network Stack for Physical Middleboxes and Virtualized Network FunctionsIEEE/ACM Transactions on Networking10.1109/TNET.2023.330764132:2(971-986)Online publication date: Apr-2024
https://doi.org/10.1109/TNET.2023.3307641
Barik RWelzl MFairhurst GElmokashfi ADreibholz TGjessing S(2020)On the Usability of Transport Protocols other than TCP: A Home Gateway and Internet Path Traversal StudyComputer Networks10.1016/j.comnet.2020.107211(107211)Online publication date: Mar-2020
https://doi.org/10.1016/j.comnet.2020.107211
Edeline KKühlewind MTrammell BDonnet B(2017)copycatProceedings of the 2017 Applied Networking Research Workshop10.1145/3106328.3106330(13-19)Online publication date: 15-Jul-2017
https://dl.acm.org/doi/10.1145/3106328.3106330
Show More Cited By

Index Terms

Issues with network address translation for SCTP
1. Networks
  1. Network components
  2. Network types
    1. Public Internet
2. Software and its engineering
  1. Software organization and properties
    1. Contextual software domains
      1. Operating systems
        Communications management

Recommendations

Design and Implementation of Video Streaming Hot-plug between Wired and Wireless Networks Using SCTP

Video streaming hot-plug is defined as keeping video streaming to be continuous when a host is switched from wired/wireless to wireless/wired networks, or from one wireless network to another wireless network. In this paper, video streaming hot-plug ...
On Explicit Congestion Notification for Stream Control Transmission Protocol in Lossy Networks

As a congestion avoidance mechanism, Explicit Congestion Notification (ECN) is designed to inform a data source to react to potential congestion early. Currently, the new transport protocol, Stream Control Transmission Protocol (SCTP), is not ECN-...
Concurrent multipath transfer using SCTP multihoming: introducing the potentially-failed destination state
NETWORKING'08: Proceedings of the 7th international IFIP-TC6 networking conference on AdHoc and sensor networks, wireless networks, next generation internet

Previously, we identified the failure-induced receive buffer (rbuf) blocking problem in Concurrent Multipath Transfer using SCTP multihoming (CMT), and proposed CMT with a Potentially-failed destination state (CMTPF) to alleviate rbuf blocking. In this ...

Comments

Please enable JavaScript to view thecomments powered by Disqus.

Information & Contributors

Information

Published In

cover image ACM SIGCOMM Computer Communication Review

ACM SIGCOMM Computer Communication Review Volume 39, Issue 1

January 2009

74 pages

ISSN:0146-4833

DOI:10.1145/1496091

Issue’s Table of Contents

Publisher

Association for Computing Machinery

New York, NY, United States

Publication History

Published: 31 December 2008

Published in SIGCOMM-CCR Volume 39, Issue 1

Check for updates

Author Tags

Qualifiers

Research-article

Contributors

Other Metrics

View Article Metrics

Bibliometrics & Citations

Bibliometrics

Article Metrics

11
Total Citations
View Citations
496
Total Downloads

Downloads (Last 12 months)9
Downloads (Last 6 weeks)3

Reflects downloads up to 12 Dec 2024

Other Metrics

View Author Metrics

Citations

Cited By

View all

Li HDang YSun GWu CZhang PShan DPan THu C(2024)Programming Network Stack for Physical Middleboxes and Virtualized Network FunctionsIEEE/ACM Transactions on Networking10.1109/TNET.2023.330764132:2(971-986)Online publication date: Apr-2024
https://doi.org/10.1109/TNET.2023.3307641
Barik RWelzl MFairhurst GElmokashfi ADreibholz TGjessing S(2020)On the Usability of Transport Protocols other than TCP: A Home Gateway and Internet Path Traversal StudyComputer Networks10.1016/j.comnet.2020.107211(107211)Online publication date: Mar-2020
https://doi.org/10.1016/j.comnet.2020.107211
Edeline KKühlewind MTrammell BDonnet B(2017)copycatProceedings of the 2017 Applied Networking Research Workshop10.1145/3106328.3106330(13-19)Online publication date: 15-Jul-2017
https://dl.acm.org/doi/10.1145/3106328.3106330
Wiss TForsstrom S(2017)Feasibility and performance evaluation of SCTP for the industrial internet of thingsIECON 2017 - 43rd Annual Conference of the IEEE Industrial Electronics Society10.1109/IECON.2017.8217060(6101-6106)Online publication date: Oct-2017
https://doi.org/10.1109/IECON.2017.8217060
Murray D(2015)Why Internet Protocols Need IncentivesProceedings of the 2015 IEEE 29th International Conference on Advanced Information Networking and Applications Workshops10.1109/WAINA.2015.48(261-266)Online publication date: 24-Mar-2015
https://dl.acm.org/doi/10.1109/WAINA.2015.48
Fitzpatrick JZdarsky F(2013)Enabling multi-homed femtocells using SCTP2013 IEEE International Conference on Communications Workshops (ICC)10.1109/ICCW.2013.6649416(1183-1188)Online publication date: Jun-2013
https://doi.org/10.1109/ICCW.2013.6649416
Budzisz ŁGarcia JBrunstrom AFerrús R(2012)A taxonomy and survey of SCTP researchACM Computing Surveys (CSUR)10.1145/2333112.233311344:4(1-36)Online publication date: 7-Sep-2012
https://dl.acm.org/doi/10.1145/2333112.2333113
Wang CLiu HLiao W(2011)i-SNG: A cost-effective live news broadcasting system over heterogeneous wireless networksIEEE Communications Magazine10.1109/MCOM.2011.597841249:8(28-35)Online publication date: Aug-2011
https://doi.org/10.1109/MCOM.2011.5978412
Liu HHsieh CChen HHsieh CLiao WChu PWang C(2010)Exploiting Multi-Link SCTP for Live TV Broadcasting Service2010 IEEE 71st Vehicular Technology Conference10.1109/VETECS.2010.5493654(1-6)Online publication date: May-2010
https://doi.org/10.1109/VETECS.2010.5493654
Kostopoulos AWarma HLeva THeinrich BFord AEggert L(2010)Towards Multipath TCP Adoption: Challenges and opportunities6th EURO-NGI Conference on Next Generation Internet10.1109/NGI.2010.5534465(1-8)Online publication date: Jun-2010
https://doi.org/10.1109/NGI.2010.5534465
Show More Cited By

View Options

Login options

Check if you have access through your login credentials or your institution to get full access on this article.

Cited By

Index Terms

Recommendations

Design and Implementation of Video Streaming Hot-plug between Wired and Wireless Networks Using SCTP

On Explicit Congestion Notification for Stream Control Transmission Protocol in Lossy Networks

Concurrent multipath transfer using SCTP multihoming: introducing the potentially-failed destination state