tailieunhanh - NAT traversal capability and keep alive functionality with ipsec in IKEv2 implementation

Paper presents design and implementation of NAT traversal capability and keeps alive functionality with IP Security in IKEv2 (Internet Key Exchange version 2) implementation for proper Data Communication. It also implements how IPSec integrate with NAT. | ISSN:2249-5789 Chaman Singh et al, International Journal of Computer Science & Communication Networks,Vol 2(1), 99-110 NAT Traversal Capability and Keep-Alive Functionality with IPSec in IKEv2 Implementation CHAMAN SINGH1 2 Associate Professor Research Scholar chaman83mca@ kishorilalbansal@ Department of Computer Science, Himachal Pradesh University Shimla, India 1 Abstract Since IPv4 Private Networks are behind NAT (Network Address Translation) devices. So, to bypass the Binding Update and Binding Acknowledgment by NAT, we need to encapsulate it in UDP (User datagram Protocol) Packets. Hence, the Dual Stack Mobile IPv6 should support NAT Traversal and Detection. So for proper securing and fully functionality of NAT traversal, it should be IP Security Protected. Paper presents design and implementation of NAT traversal capability and keeps alive functionality with IP Security in IKEv2 (Internet Key Exchange version 2) implementation for proper Data Communication. It also implements how IPSec integrate with NAT. Keywords-Network Address Translation, Traversal, Detection, IP Security, Home Link, Data Traffic, Linux Kernel, IKEv2. 1. Introduction The Mobile IPv6 [1] is a protocol developed as a subset of Internet Protocol veMyon 6[2] to support mobile connections. Mobile IPv6 allows a mobile node to transparently maintain connections while moving from one [3] subnet to another [4]. The Mobile IPv6 protocol takes care of binding addresses between Home Agent and Mobile Node. It also ensures that the Mobile Node is always reachable through Home Agent. Dual Stack Mobile IPv6 [5] is an extension of MIPv6 to support mobility of devices irrespective of IPv4 and IPv6 network. NEPL (NEMO Platform for Linux) [6] is a freely available implementation of DSMIPv6 for Linux platform. The original NEPL release was based on MIPL (Mobile IPv6 for Linux) [7]. In DSMIPv6, all Mobile Nodes has a fixed address, called a Home Address assigned by Home .