NAT Algorithm and Connection Tracking Table

Q

What is NAT Algorithm and its Connection Tracking Table?

✍: FYIcenter.com

A

When a private network with multiple private IP addresses connects to the Internet with a single shared public IP address, router has to perform NAT (Network Address Translation) tasks using the following algorithm.

Let's use the following diagram to describe the NAT algorithm and its connection tracking table.

NAT Algorithm and Connection Tracking Table (wikipedia.org)

1. Assume that private metwork uses IP range of 192.168.0.0/16 with 192.168.1.1 for the gateway, which is the router performing the NAT job.

2. Assume that the public IP address given by the ISP is 145.12.131.7.

3. Host 191.168.100.3 sends HTTP request to http://www.yahoo.com which is 209.131.36.158:80. The request message header contains the following info:

Source: 191.168.100.3:3855 (random port picked by browser)
Dest: 209.131.36.158:80

4. The network interface sends the message to the gateway at 192.168.1.1.

5. Since NAT function is turned on, it will do the NAT job:

Pick up a free port, 6282, on the public IP.
Create an NAT mapping of 191.168.100.3:3855 = 145.12.131.7:6282 in the connection tracking table.
Update the request message header by replacing "191.168.100.3:3855" with "145.12.131.7:6282".
Forward the request message to the public Internet.

6. www.yahoo.com receives the request message and returns a response message with the following header info.

Source: 209.131.36.158:80
Dest: 145.12.131.7:6282

7. The router receives the response message and performs the reverse NAT job again:

Find the NAT mapping entry that matches 145.12.131.7:6282 from the connection tracking table.
Update the request message header by replacing "145.12.131.7:6282" with "191.168.100.3:3855".
Forward the response message to the prviate network.

8. The host 191.168.100.3 receives the response message.

Additional security enhancements can be added to the above NAT algorithm to prevent other public hosts/ports to send messages to the mapped private hosts.

⇒ "ipconfig" and "ifconfig" Commands

⇐ Private IP vs. Public IP

⇑ IP Network

⇑⇑ Internet Connection - Frequently Asked Questions

2021-05-16, 1502🔥, 0💬

What Is IP Gateway
What Is IP (Internet Protocol) Gateway? An IP (Internet Protocol) gateway is a special host that is connected to two or more IP local networks and performs IP routing task. For example, the following diagram represents 3 hosts connected into 2 local networks. IP Gateway - Intersection of Networks (t... 2021-05-16, ∼1532🔥, 0💬

NAT Algorithm and Connection Tracking Table
What is NAT Algorithm and its Connection Tracking Table? When a private network with multiple private IP addresses connects to the Internet with a single shared public IP address, router has to perform NAT (Network Address Translation) tasks using the following algorithm. Let's use the following dia... 2021-05-16, ∼1503🔥, 0💬

IP Routing Table on macOS
How to display IP Routing Table on macOS Systems? You can use the "network -rn" command to display the IP routing table a macOS system. Here is an example: fyicenter$ netstat -rn Routing tables Internet: Destination Gateway Flags Refs Use Netif Expire default 192.168.1.1 UGSc 16 14 en0 127 127.0.0.1... 2021-04-30, ∼1474🔥, 0💬

What Is IP Address Class
What Is IP Address Class? An IP (Internet Protocol) address class represents a group of IP addresses assigned for a specific local network size. Every IP address is really made up of two parts: a "network" part, which identifies a local network, and a "host" part which identifies a host within the l... 2021-06-05, ∼1426🔥, 0💬

Private IP vs. Public IP
What are the differences between private IP addresses and public IP addresses? How a private IP network is mapped to a single public IP? Private IP addresses are IP addresses reserved for building private networks within an organization. Private IP addresses are listed below: Class Private IP Range ... 2021-05-16, ∼1384🔥, 0💬

IP Routing Table on Windows
How to display IP Routing Table on Windows Systems? You can use the "network -rn" or "route print" command to display the IP routing table a Windows system. Here is an example: fyicenter> netstat -rn ============================== ============================== ===============Interface List 3.... 2021-04-30, ∼1342🔥, 0💬

What Is IP Routing
What Is IP (Internet Protocol) Routing? IP (Internet Protocol) Routing is a technology that allows a message to be delivered from one local network to another network over an IP network. IP (Internet Protocol) Routing consists of the following components. 1. Host IP Configuration - Each host on an I... 2021-05-16, ∼1306🔥, 0💬

IP Routing Table on Linux
How to display IP Routing Table on Linux Systems? You can use the "network -rn" command to display the IP routing table a Linux system. Here is an example: fyicenter$ netstat -rn Kernel IP routing table Destination Gateway Genmask Flags MSS Window irtt Iface 0.0.0.0 192.168.1.1 0.0.0.0 UG 0 0 0 eno1... 2021-04-30, ∼1304🔥, 0💬

"ipconfig" and "ifconfig" Commands
What Is "ipconfig" and "ifconfig" Commands? "ipconfig" command is a tool on Windows systems to display IP configurations of networking interfaces. The example below shows IP configurations of 2 networking interfaces on a single host: fyicenter> ipconfig /all 0 Ethernet adapter : Description .... 2021-05-16, ∼1208🔥, 0💬

All rights in the contents of this web site are reserved by the individual author. fyicenter.com does not guarantee the truthfulness, accuracy, or reliability of any contents.