CN1529480B - IP network protocol conversion method - Google Patents

IP network protocol conversion method Download PDF

Info

Publication number
CN1529480B
CN1529480B CN2003101007194A CN200310100719A CN1529480B CN 1529480 B CN1529480 B CN 1529480B CN 2003101007194 A CN2003101007194 A CN 2003101007194A CN 200310100719 A CN200310100719 A CN 200310100719A CN 1529480 B CN1529480 B CN 1529480B
Authority
CN
China
Prior art keywords
ipv6
ipv4
address
message
tunnel
Prior art date
Legal status (The legal status is an assumption and is not a legal conclusion. Google has not performed a legal analysis and makes no representation as to the accuracy of the status listed.)
Expired - Fee Related
Application number
CN2003101007194A
Other languages
Chinese (zh)
Other versions
CN1529480A (en
Inventor
蔡一兵
石晶林
刘敏
李忠诚
Current Assignee (The listed assignees may be inaccurate. Google has not performed a legal analysis and makes no representation or warranty as to the accuracy of the list.)
Institute of Computing Technology of CAS
Original Assignee
Institute of Computing Technology of CAS
Priority date (The priority date is an assumption and is not a legal conclusion. Google has not performed a legal analysis and makes no representation as to the accuracy of the date listed.)
Filing date
Publication date
Application filed by Institute of Computing Technology of CAS filed Critical Institute of Computing Technology of CAS
Priority to CN2003101007194A priority Critical patent/CN1529480B/en
Publication of CN1529480A publication Critical patent/CN1529480A/en
Application granted granted Critical
Publication of CN1529480B publication Critical patent/CN1529480B/en
Anticipated expiration legal-status Critical
Expired - Fee Related legal-status Critical Current

Links

Images

Landscapes

  • Data Exchanges In Wide-Area Networks (AREA)

Abstract

The invention relates to technique of converting network protocols for IPV6 message passing through IPV4NATs when IPV4 and IPV6 coexisted period. The method solves following issues mainly: providing common IPV6 address configuration, and message communication between hosts supporting both IPV6/IPV4 protocols as well as host supporting both IPV6/IPV4 protocols and IPV6 host for one or more hosts supporting both IPV6/IPV4 protocols located behind IPV4 NATs. In order to passing through IPV4NATs, IPV6 message is packeted in IPV4-UDP message. Characters of the method are: (1) assigned IPV6 addressis general IPV6 address without need of including external IPV4 address of captured host and parameters of external ports, without need of applying to IANA for special prefix; (2) obtaining IPV4 address of IPV6 access router through Web mode; (3) supporting IPV6 message pass through various typed IPV4NATs.

Description

A kind of method of IP network protocol conversion
Technical field
The present invention relates to the computer network communication technology field, particularly a kind of IPV6 message penetrates the IPV4NATs method.A kind of IPV6 (IPV6, Internet Protocol Version 6, the 6th edition Internet protocol) message penetrates IPV4 NATs (IPV4NATs, Internet Protocol Version 4Network Address Translators, the 4th edition IP network address translator) method is the procotol switch technology in a kind of IPV4 and IPV6 coexistence period.This method mainly solves following problem: for provide general purpose I PV6 address configuration at the two protocol hosts of the IPV6/IPV4 of one or more IPV4NATs back, support between the two protocol hosts of IPV6/IPV4, IPV6 message communication between the two protocol hosts of IPV6/IPV4 and the IPV6 main frame.In order to penetrate IPV4NATs, the IPV6 message is encapsulated in IPV4-UDP (IPV4-UDP, IPV4 User Datagram Protocol, the IPV4 User Datagram Protoco (UDP)) message.
Background technology
Coexist period at IPV4 and IPV6, for the IPV6 message intercommunication problem between the IPV6 main frame that solves IPV6 main frame in the IPV4 network and IPV6 network, people propose numerous solutions, as 6to4 agreement, ISATAP agreement (ISATAP, Intrasite automatic tunnelAddressing Protocol, inner collection automatic tunnel address protocol) or the like.The common feature of these agreements is that the IPV6 message is encapsulated into the IPV4 message, transmits the IPV6 message by the IPV4 network.But adopt said method can't solve the IPV6 message and penetrate IPV4 NATs problem.This problem specifically describes: be positioned at the two protocol hosts of IPV6/IPV4 of IPV4 NATs back, by IPV4 NATs and IPV4 network, and transmit the IPV6 message between the IPV6 main frame mutually; Perhaps be positioned at the two protocol hosts of IPV6/IPV4 of IPV4 NATs back,, and between the two protocol hosts of the IPV6/IPV4 of IPV4 NATs back, transmit the IPV6 message mutually by IPV4 NATs and IPV4 network.
Stipulate according to the IPV4 agreement: the TCP message is encapsulated in the IPV4 message, the protocol field value of IPV4 stem need be made as 6; The UDP message is encapsulated in the IPV4 message, the protocol field value of IPV4 stem need be made as 17; The IPV6 message is encapsulated in the IPV4 message, the protocol field value of IPV4 stem need be made as 41.It is 6 or 17 IPV4 message that typical IPV4 NATs only transmits IPV4 stem protocol field value, and the transportation protocol field value is not 41 IPV4 message, so the IPV6 message that is encapsulated among the IPV4 can't penetrate typical IPV4 NATs.
In order to realize that the IPV6 message penetrates IPV4 NATs, MS proposes the Teredo agreement, and this agreement basic skills is that the IPV6 message is encapsulated in IPV4 UDP message, realizes that by the carrying of UDP message the IPV6 message penetrates IPV4 NATs.By till the present patent application phase, also among improving, Microsoft is in the draft stage to the Teredo agreement that IETF (Internet Engineering Task Force, Internet engineering duty group) submits to the Teredo agreement; Microsoft has disposed the Teredo agreement at Windows XP simultaneously.
By till the present patent application, the Teredo agreement distributes IPV6 address---the Teredo address of specific format need for two protocol hosts of IPV4 NATs back.The Teredo address comprises the fixedly prefix that a length is 32 bits, this fixedly prefix legal use on the internet must obtain IANA (IANA, The Internet Assigned Numbers Authority, the Internet appointment mechanism) approval.The Teredo address also comprises external IP V4 address and the outside udp port information that IPV4 NATs distributes simultaneously, and the latter is the parameter of a dynamic change, and this will cause the Teredo address to have dynamic.This specific character will use to mobile IPV6, based on the higher layer applications of DNS, bring adverse effect based on the security mechanism of IPV6 address filtering.Remove in addition, by till the present patent application, the Teredo agreement does not provide the support of IPV6 message communication of two protocol hosts of the IPV4 NATs back that is positioned at symmetric NAT type.
The method that the present invention proposes, give IPV4 NATs back two protocol hosts distribution be general purpose I PV6 address, need in the IPV6 address, not comprise the external IP V4 address and the outside udp port information of distributing by IPV4 NATs, support comprehensively mobile IPV6 use, based on the higher layer applications of DNS, based on the security mechanism of IPV6 address filtering.Owing to do not comprise particular prefix, do not need application special prefix to IANA mechanism yet.Remove in addition, the invention provides connective support of IPV6 two protocol hosts of various types of IPV4 NATs back---promptly between pair protocol hosts and the IPV6 main frame, the IPV6 message communication between two protocol host and the two protocol host.Based on the principle of the invention, realized that the IPV6 message penetrates IPV4 NATs relevant device principle prototype.
Summary of the invention
The object of the present invention is to provide a kind of IPV6 message to penetrate IPV4 NATs method.
Technical scheme of the present invention:
For provide general purpose I PV6 address configuration at the two protocol hosts of the IPV6/IPV4 of one or more IPV4 NATs back, support between the two protocol hosts of IPV6/IPV4, IPV6 message communication between the two protocol hosts of IPV6/IPV4 and the IPV6 main frame, these method concrete steps are as follows:
Step 1: based on the IPV6 network insertion router parameter configuration of WEB mode;
Step 2: set up the IPV4 UDP tunnel between two protocol hosts and the NAR;
Step 3: the IPV6 message communication between the main frame.
Step 1 wherein---based on the IPV6 network insertion router parameter configuration of WEB mode: IPV6 network insertion router is with facility information, comprise following content: IPV4 address, device name, equipment location, service rate, be published to NARP, select for the user.
Step 1 wherein---based on the IPV6 network insertion router parameter configuration of WEB mode: the user adopts the WEB mode to dispose the IPV4 address parameter of NAR, and the IPV4 address parameter of NAR is saved in the communicate configuration file of two protocol hosts.
Wherein step 2---set up IPV4 UDP tunnel between two protocol hosts and the NAR, two protocol hosts and NAR set up before the IPV4 UDP tunnel, the IPV4 address that obtains NAR from two protocol host communicate configuration files.Wherein step 2---set up IPV4 UDP tunnel between two protocol hosts and the NAR, IPV6 network insertion router is caught the outside udp port and the IPV4 address parameter of two protocol hosts from the UDP message that two protocol hosts send; Distribute to a two general purpose I PV6 of protocol host addresses then; Distribute to two idle udp ports of protocol host number simultaneously, this port numbers is used to set up the IPV4 UDP tunnel between two protocol hosts and the NAR; At last the mapping relations between three kinds of parameters are kept in the IPV4 UDP tunnel mapping relations file of IPV6 network insertion router.
Step 2 wherein---set up IPV4 UDP tunnel between two protocol hosts and the NAR, what IPV6 network insertion router was distributed to two protocol hosts is general purpose I PV6 address, this address is a routable in the IPV6 network, belong to the IPV6 address of IPV6 network insertion router routed domain, need in the IPV6 address, not comprise the external IP V4 address and the outside udp port information of distributing, not need to comprise the particular address prefix yet by IPV4 NATs.
Step 3---the IPV6 message communication between the main frame wherein, IPV6 network insertion router is received behind IPV6 network side IPV6 message always, according to the destination address in the message, search corresponding UDP tunnel in the IPV4 UDP tunnel mapping relations file of from step 2, setting up, if have the correspondence mappings relation, then the IPV6 message be forwarded to the indicated UDP tunnel of this mapping.
Step 3---the IPV6 message communication between the main frame wherein, IPV6 network insertion router is distributed to two protocol hosts in the step 2 is a routable in the IPV6 network, belong to the general purpose I PV6 address of IPV6 network insertion router routed domain, when carrying out the IPV6 message communication between the main frame, this address is made up the IPV6 message as source address in the IPV6 message or destination address, meet IPV6 message routing addressing principle, this message finally can addressing arrive IPV6 main frame or IPV6 couple in router.
1, general introduction
The present invention relates to the IPV6 message and penetrate IPV4 NATs communication means.Provide between two protocol hosts, the IPV6 message interoperability support between two protocol host and the IPV6 main frame, wherein two protocol hosts can be positioned at NAT territory or IPV4 network.
The present invention compares with the Teredo agreement, have following characteristics: 1, the IPV6 address of Fen Peiing is general purpose I PV6 address, need in the IPV6 address, not comprise IPV4 NATs and distribute to external IP V4 address and the outside port parameter that two protocol hosts use, not need yet to the specific prefix of IANA mechanism application.2, obtain the IPV4 address of service of IPV6 couple in router by the WEB mode.3, support the IPV6 message to penetrate all kinds IPV4 NATs.
2, network topology structure explanation
The present invention mainly comprises three kinds of functional units, and functional definition is as follows:
● IPV6 network insertion router: router, finish centralized management of IPV4 UDP tunnel and IPV6 network insertion service function.
● network insertion router omniselector: www server is used to preserve IPV6 network insertion router device information.
● the host computer tunnel manager: IPV4 UDP tunnel maintenance software is installed on two protocol hosts.
For convenience, below abbreviate IPV6 network insertion router as NAR (NetworkAccess Router), abbreviate network insertion router omniselector as NARP (Network AccessRouter Pilot), abbreviate the host computer tunnel manager as HTM (Host Tunnel Manager), abbreviate the IPV4 network address translater as IPV4 NATs (IPv4 network addresstranslators)
Description of drawings
Fig. 1 is network topology structure of the present invention and IPV4 UDP tunnel establishment procedure figure;
Fig. 2 is IPV6 message communication figure between of the present invention pair of protocol host and the IPV6 main frame;
Fig. 3 be of the present invention between two protocol hosts in different N AT territory the logical figure of IPV6 message;
Fig. 4 be of the present invention the NAT territory and between the two protocol hosts of IPV4 network IPV6 message communication figure;
Fig. 5 is the IPV6 network insertion router parameter configuration figure based on the WEB mode of the present invention.
The network topology structure relevant with the inventive method seen accompanying drawing 1.
The network that in Fig. 1, has three kinds of character:
● the NAT territory, the main frame that is positioned at this territory distributes private ip V4 address by IPV4 NATs;
● the IPV4 network, the main frame that is positioned at this network has publicly-owned IPV4 address;
● the IPV6 network, the main frame that is positioned at this network has the IPV6 address.
Wherein IPV4 NATs is positioned at NAT territory and IPV4 network integration place, has private ip V4 address and publicly-owned IPV4 address; NAR is positioned at IPV4 network and IPV6 network integration place, has publicly-owned IPV4 address and IPV6 address. NARP has publicly-owned IPV4 address, is arranged in the IPV4 network. HTM is installed on two protocol hosts, and this main frame is positioned at NAT territory or IPV4 network.
In order to realize that the IPV6 message penetrates IPV4 NATs, the present invention includes following three committed steps: set up IPV4 UDP tunnel; The IPV6 network insertion Router Parameters configuration of the IPV6 message communication between two protocol hosts, the IPV6 main frame, Base on Web mode. The specific embodiment is as follows:
3, the IPV4 UDP tunnel between the two protocol hosts of foundation and the NAR
The method specific descriptions of setting up IPV4 UDP tunnel between two protocol hosts and the NAR are as follows, and flow process is referring to accompanying drawing 1. Detailed process is shown in the arrow of numeral among the figure.
(1) the two protocol hosts that are positioned at the NAT territory insert (the two protocol hosts that are positioned at the IPV4 network directly insert the IPV4 network) behind the IPV4 network by IPV4 NATs, and HTM accesses NARP, obtains the IPV4 address of NAR, is saved in the communication configuration file of HTM.
(2) HTM sends UDP tunnel resource request message according to the IPV4 address of the NAR in the communication configuration file that is kept at HTM to UDP monitoring service port corresponding to NAR.
(3) after NAR receives this request, from the UDP message that HTM sends, catch IPV4 NATs and distribute to the parameter that two protocol hosts use: comprise IPV4 address and udp port number; Distribute to then two IPV6 addresses of protocol host, this address belongs to IPV6 network insertion router routed domain, but in the IPV6 network route; Distribute to simultaneously two idle udp ports of protocol host number, this port numbers is used for setting up the IPV4 UDP tunnel between two protocol hosts and the NAR; At last the mapping relations between three kinds of parameters are kept in the IPV4 UDP tunnel mapping relational file of IPV6 network insertion router.
(4) NAR sends to HTM with corresponding IPV4 UDP tunnel mapping Relation Parameters among the NAR (3), and HTM adds three parameters in the communication configuration file of HTM to.
(5) between HTM and the NAR according to the IPV4 NATs type testing algorithm in the appendix, IPV4 NATs type is tested. NAR passes to HTM with test result, and HTM adds this parameter to the communication configuration file of HTM.
(6) Dynamic Maintenance UDP tunnel between HTM and the NAR, HTM wraps to be maintained in mapping among the IPV4 NATs by regular transmission Hello, and the transmission cycle is less than the mapping life span of IPV4 NATs.
4, IPV6 message communication between the main frame
4.1, IPV6 message communication between two protocol host and the IPV6 main frame
At two protocol hosts in NAT territory with between the IPV6 of IPV6 network main frame, will carry out the IPV6 message communication, at first need to set up the IPV4 UDP tunnel between two protocol hosts and the NAR. Two protocol hosts send the IPV6 message to the IPV6 main frame that is positioned at the IPV6 network, and the IPV6 message penetrates IPV4 NATs and IPV4 network by IPV4 UDP tunnel, arrive NAR, and NAR is forwarded to the IPV6 network, is routed automatically to corresponding IPV6 main frame; The IPV6 main frame sends to the IPV6 message of two protocol hosts, is routed automatically to NAR in the IPV6 network, and NAR by the UDP tunnel, penetrates IPV4 network and IPV4 NATs with the IPV6 message, transmits to arrive two protocol hosts.
Specifically be divided into two kinds of situations: two protocol hosts send the IPV6 messages to IPV6 main frame transmission IPV6 message and IPV6 main frame to two protocol hosts. Referring to accompanying drawing 2. Detailed process is shown in the arrow of numeral among the figure.
4.1.1 two protocol hosts send the IPV6 message to the IPV6 main frame
(1) HTM of the two protocol hosts IPV6 message that will need to send is encapsulated in the IPV4 UDP message, and wherein the source address of IPV6 message is the IPV6 address that IPV6 network insertion router distributes, and destination address is the IPV6 host address in the IPV6 network.
(2) the IPV4 UDP message that has encapsulated the IPV6 message is forwarded to the IPV4 network by IPV4 NATs, arrives NAR.
(3) after NAR receives, from IPV4 UDP message, take out the IPV6 message, directly be forwarded to the IPV6 network.
(4) because the IPV6 address of this message meets IPV6 message routing addressing principle, this message is sent to purpose IPV6 main frame by the IPV6 route system the most at last.
4.1.2IPV6 main frame sends the IPV6 message to two protocol hosts
(5) the IPV6 main frame sends the IPV6 message to two protocol hosts in the IPV6 network, and source address is the IPV6 address of IPV6 main frame in the IPV6 message, and destination address is the IPV6 address of two protocol hosts.
(6) the IPV6 message is sent to NAR by the IPV6 route system.
(7) after NAR receives the IPV6 message,, from IPV4 UDP tunnel mapping relations file, search corresponding UDP tunnel,, then the IPV6 message is encapsulated in the IPV4 UDP message, transmit the IPV4 network if there is the correspondence mappings relation according to the destination address in the message.Wherein the source port number of IPV4 UDP message use is that NAR distributes to the parameter that two protocol hosts use, and IPV4 address, source is the IPV4 address of NAR; Destination slogan and purpose IPV4 address are that IPV4 NATs distributes to the parameter that two protocol hosts use.
(8) the IPV4 UDP message that comprises the IPV6 message arrives IPV4 NATs, is forwarded to two protocol hosts by IPV4 NATs.The HTM of two protocol hosts takes out the IPV6 message from IPV4 UDP message.
Two protocol hosts of IPV4 network and between the IPV6 of IPV6 network main frame, carry out the method for IPV6 message communication and process and above similar.
4.2, between two protocol hosts in different N AT territory the IPV6 message communication
Between two protocol hosts in different N AT territory, to carry out the IPV6 message communication, at first need to set up the UDP of the IPV4 separately tunnel between two protocol hosts and the NAR.By IPV4 UDP tunnel separately, penetrate IPV4 NATs and IPV4 network between two protocol hosts,, realize IPV6 message intercommunication between two protocol hosts by NAR forwarding capability and IPV6 network routing addressing function separately.Wherein the IPV4 NATs with the two protocol host correspondences of transmit leg is called source IPV4 NATs, and NAR is called source NAR; The IPV4 NATs of the two protocol host correspondences of recipient is called purpose IPV4 NATs, and NAR is called purpose NAR.Referring to accompanying drawing 3.Detailed process is shown in the arrow of numeral among the figure.
Detailed process is as follows:
(1) HTM of the two protocol hosts IPV6 message that will need to send is encapsulated in the IPV4 UDP message, and wherein the source address of IPV6 message is the IPV6 address that IPV6 network insertion router distributes, and destination address is the IPV6 address of the two protocol hosts of purpose.
(2) the IPV4 UDP message that has encapsulated the IPV6 message is forwarded to the IPV4 network by source IPV4 NATs, arrives source NAR.
(3) after source NAR receives, from IPV4 UDP message, take out the IPV6 message, directly be forwarded to the IPV6 network.
(4) because the IPV6 address of this message meets IPV6 message routing addressing principle, this message is sent to purpose NAR by the IPV6 route system the most at last.
(5) after purpose NAR receives the IPV6 message, according to the destination address in the message, from IPV4 UDP tunnel mapping relations file, search corresponding UDP tunnel, if there is the correspondence mappings relation, then the IPV6 message is encapsulated in the IPV4 UDP message, transmits the IPV4 network.Wherein the source port number of IPV4UDP message use is that purpose NAR distributes to the parameter that two protocol hosts use, and IPV4 address, source is the IPV4 address of purpose NAR; Destination slogan and purpose IPV4 address are that purpose IPV4 NATs distributes to the parameter that two protocol hosts use.
(6) the IPV4 UDP message that comprises the IPV6 message arrives purpose IPV4 NATs, is forwarded to the two protocol hosts of purpose by purpose IPV4NATs.The HTM of the two protocol hosts of purpose takes out the IPV6 message from IPV4 UDP message.
4.3, the NAT territory and between the two protocol hosts of IPV4 network the IPV6 message communication
Between two protocol hosts in NAT territory and two protocol hosts, to carry out the IPV6 message communication, at first need to set up the UDP of the IPV4 separately tunnel between two protocol hosts and the NAR at the IPV4 network.By IPV4 UDP tunnel separately, penetrate IPV4NATs and IPV4 network between two protocol hosts,, realize IPV6 message intercommunication between two protocol hosts by NAR forwarding capability and IPV6 network routing addressing function separately.Wherein the NAR with the two protocol host correspondences of transmit leg is called source NAR; The NAR of the two protocol host correspondences of recipient is called purpose NAR.
Specifically be divided into two kinds of situations: the two protocol hosts that are positioned at the NAT territory send the IPV6 message to the two protocol hosts that are positioned at the IPV4 network; The two protocol hosts that are positioned at the IPV6 network send the IPV6 message to the two protocol hosts that are positioned at the NAT territory.Introduce the processing method and the process of first kind of situation below, detailed process is shown in the arrow of numeral among Fig. 4.Second kind of situation is similar.
(1) the IPV6 message that is arranged in the HTM of two protocol hosts in NAT territory and will needs to send is encapsulated in the IPV4UDP message, wherein the source address of IPV6 message is the IPV6 address that IPV6 network insertion router distributes, and destination address is the IPV6 address of the two protocol hosts of purpose.
(2) the IPV4 UDP message that has encapsulated the IPV6 message is forwarded to the IPV4 network by IPV4 NATs, arrives source NAR.
(3) after source NAR receives, from IPV4 UDP message, take out the IPV6 message, directly be forwarded to the IPV6 network.
(4) because the IPV6 address of this message meets IPV6 message routing addressing principle, this message is sent to purpose NAR by the IPV6 route system the most at last.
(5) after purpose NAR receives the IPV6 message, according to the destination address in the message, from IPV4 UDP tunnel mapping relations file, search corresponding UDP tunnel, if there is the correspondence mappings relation, then the IPV6 message is encapsulated in the IPV4 UDP message, transmits the IPV4 network.Wherein the source port number of IPV4UDP message use is that purpose NAR distributes to the parameter that two protocol hosts use, and IPV4 address, source is the IPV4 address of purpose NAR; Destination slogan and purpose IPV4 address are the parameters that the two protocol hosts of purpose use.
(6) the IPV4UDP message that comprises the IPV6 message arrives the two protocol hosts of purpose.The HTM of the two protocol hosts of purpose takes out the IPV6 message from IPV4 UDP message.
5, based on the IPV6 network insertion router parameter configuration of WEB mode
In the IPV4 UDP tunneling process of setting up between two protocol hosts and the NAR, two protocol hosts need be known the IPV4 address of service of IPV6 network insertion router at the IPV4 network side.The user can dispose this parameter at two protocol hosts by the manual configuration mode, but inconvenient.
This method proposes to adopt WEB mechanism, helps the user to select IPV6 network insertion router, disposes desired parameters automatically.
The WEB layoutprocedure is divided into following two steps, and detailed process is shown in the arrow of numeral among Fig. 5.
(1) NAR facility registration process: NAR comprises following content with facility information: IPV4 address, device name, equipment location, service rate are published to the NARP---WWW server.
(2) user inquiring process: the user visits NARP by the WEB mode, according to the facility information situation inventory of WEB webpage, selects only NAR, and after click was determined, the IPV4 address with NAR joined two protocol host communicate configuration files automatically.
Appendix---IPV4 NATs type testing algorithm
Handle the security strategy of external IPV4 message according to IPV4 NATs, can be divided into restricted-NAT and cone-NAT; According to the resource allocation policy of IPV4 NATs, can be divided into symmetric NAT and asymmetric NAT to inner IPV4 message; Have four kinds of IPV4 NATs types: cone-asymmetric-nat, restricted-asymmetrict-nat, cone-symmetric-nat, restricted-symetric-nat for this reason.
By following rudimentary algorithm, can judge IPV4 NATs type:
(1) HTM sends the cone-NAT test request message to NAR, and message is encapsulated in the UDP message, and the destination address of UDP message and udp port number are the UDP tunnel private resources that NAR distributes to HTM.
(2) NAR takes out the source address and the source port address of UDP bag, takes out the destination address and the destination interface address of UDP bag; To take out the source address and the source port address of UDP bag, with the NAR another one IPV4 address different cone-NAT test response message content as NAR with taking out destination address; Response message is encapsulated in the UDP message, with the IPV4 address, source of the UDP message of message in response, other IPV4 address, sends to HTM; If HTM receives, then determine HTM in the cone-NAT territory, otherwise jump to step (5).
(3) if HTM does not receive cone-NAT test response message, then HTM sends the restricted-NAT test request message to NAR, message is encapsulated in the UDP message, and the destination address of UDP message and udp port number are the UDP tunnel private resources that NAR distributes to HTM.
(4) NAR takes out the source address and the source port address of UDP bag, take out the destination address and the destination interface address of UDP bag, and the source address and the source port address of the UDP bag of the UDP that in step (2), obtains bag, as the restricted-NAT test response message content of NAR; Response message is encapsulated in the UDP message, to take out purpose udp port number and IPV4 address the source udp port number and the IPV4 ground of the UDP message of message in response, sends to HTM; If HTM receives, confirm that then HTM is in the restricted-NAT territory.
(5) HTM sends symmetric NAT test request message to NAR, and message is encapsulated in the UDP bag, and the destination address of UDP bag is the other IPV4 address of NAR.
(6) NAR takes out the source address and the source port address of UDP bag, takes out the destination address and the destination interface address of UDP bag, as symmetric NAT test response message content; Response message is encapsulated in the UDP message, to take out purpose udp port number and IPV4 address the source udp port number and the IPV4 address of the UDP message of message in response, sends to HTM.
(7) HTM is according to symmetric NAT test response message, the cone-NAT test response message of receiving in the past or restricted-NAT test response message, judgement is identical with the IPV4 address at source port, under destination interface and the IPV4 address different situations, whether the outside port that IPV4 NATs distributes is identical with external IP V4 address.If different, determine that then HTM is in the symmetric-NAT territory; Otherwise, in the asymmetric-NAT territory.

Claims (6)

1. the method for an IP network protocol conversion, this method comprises following functional unit: IPV6 network insertion router is to finish centralized management of IPV4UDP tunnel and IPV6 network insertion service function router; IPV6 network insertion router omniselector is the www server that is used to preserve IPV6 network insertion router device information; The host computer tunnel manager is mounted in the IPV4UDP tunnel maintenance software on two protocol hosts; It is characterized in that, for provide general purpose I PV6 address configuration at the two protocol hosts of the IPV6/IPV4 of one or more IPV4 network address translaters back, support between the two protocol hosts of IPV6/IPV4, IPV6 message communication between the two protocol hosts of IPV6/IPV4 and the IPV6 main frame, these method concrete steps are as follows:
Step 1: based on the IPV6 network insertion router parameter configuration of WEB mode;
Step 2: set up the IPV4UDP tunnel between two protocol hosts and the IPV6 network insertion router; (1) after the two protocol hosts that are positioned at the network address translation territory inserts the IPV4 network by the IPV4 network address translater, host computer tunnel manager accesses IPV6 network insertion router omniselector, after obtaining the IPV4 address of IPV6 network insertion router, to the UDP monitoring service port transmission UDP of IPV6 network insertion router correspondence tunnel resource request message; (2) after IPV6 network insertion router is received this request, from the UDP message that the host computer tunnel manager sends, catch the IPV4 network address translater and distribute to the parameter that two protocol hosts use: comprise IPV4 address and udp port number; Distribute to two IPV6 addresses of protocol host then, this address belongs to IPV6 network insertion router routed domain, but in the IPV6 network route; Distribute to two idle udp ports of protocol host number simultaneously, this port numbers is used to set up the IPV4UDP tunnel between two protocol hosts and the IPV6 network insertion router; At last the mapping relations between three kinds of parameters are kept in the IPV4UDP tunnel mapping relations file of IPV6 network insertion router; (3) the IPV6 network insertion router corresponding IPV4UDP tunnel mapping relations parameter that will obtain sends to the host computer tunnel manager, and the host computer tunnel manager adds three parameters in the communicate configuration file of host computer tunnel manager; (4) between host computer tunnel manager and the IPV6 network insertion router IPV4 network address translater type is tested, IPV6 network insertion router passes to the host computer tunnel manager with test result, and the host computer tunnel manager adds the test result of IPV4 network address translater type to the communicate configuration file of host computer tunnel manager; (5) Dynamic Maintenance UDP tunnel between host computer tunnel manager and the IPV6 network insertion router, the host computer tunnel manager wraps the mapping that is maintained in the IPV4 network address translater by regular transmission Hello, and the transmission cycle is less than the mapping life span of IPV4 network address translater;
Step 3: the IPV6 message communication between the main frame.
2. according to the method for the described IP network protocol conversion of claim 1, it is characterized in that, step 1 wherein---based on the IPV6 network insertion router parameter configuration of WEB mode: IPV6 network insertion router is with facility information, comprise following content: IPV4 address, device name, equipment location, service rate, be published to IPV6 network insertion router omniselector, select for the user.
3. according to the method for the described IP network protocol conversion of claim 1, it is characterized in that, step 1 wherein---based on the IPV6 network insertion router parameter configuration of WEB mode: the user adopts the IPV4 address parameter of WEB mode configuration of IP V6 network insertion router, and the IPV4 address parameter of IPV6 network insertion router is saved in the communicate configuration file of host computer tunnel manager.
4. according to the method for the described IP network protocol conversion of claim 1, it is characterized in that, step 2 wherein---set up IPV4UDP tunnel between two protocol hosts and the IPV6 network insertion router, two protocol hosts and IPV6 network insertion router are set up before the IPV4UDP tunnel, obtain the IPV4 address of IPV6 network insertion router from the communicate configuration file of host computer tunnel manager.
5. according to the method for the described IP network protocol conversion of claim 1, it is characterized in that, step 3---the IPV6 message communication between the main frame wherein, IPV6 network insertion router is received behind IPV6 network side IPV6 message always, according to the destination address in the message, search corresponding UDP tunnel in the IPV4UDP tunnel mapping relations file of from step 2, setting up,, then the IPV6 message is forwarded to the indicated UDP tunnel of this mapping if there is the correspondence mappings relation.
6. according to the method for the described IP network protocol conversion of claim 1, it is characterized in that, step 3---the IPV6 message communication between the main frame wherein, what IPV6 network insertion router was distributed to two protocol hosts in the step 2 is a routable in the IPV6 network, the general purpose I PV6 address that belongs to IPV6 network insertion router routed domain, when carrying out the IPV6 message communication between the main frame, this address is made up the IPV6 message as source address in the IPV6 message or destination address, meet IPV6 message routing addressing principle, this message finally can addressing arrive IPV6 main frame or IPV6 couple in router.
CN2003101007194A 2003-10-08 2003-10-08 IP network protocol conversion method Expired - Fee Related CN1529480B (en)

Priority Applications (1)

Application Number Priority Date Filing Date Title
CN2003101007194A CN1529480B (en) 2003-10-08 2003-10-08 IP network protocol conversion method

Applications Claiming Priority (1)

Application Number Priority Date Filing Date Title
CN2003101007194A CN1529480B (en) 2003-10-08 2003-10-08 IP network protocol conversion method

Publications (2)

Publication Number Publication Date
CN1529480A CN1529480A (en) 2004-09-15
CN1529480B true CN1529480B (en) 2010-04-14

Family

ID=34304082

Family Applications (1)

Application Number Title Priority Date Filing Date
CN2003101007194A Expired - Fee Related CN1529480B (en) 2003-10-08 2003-10-08 IP network protocol conversion method

Country Status (1)

Country Link
CN (1) CN1529480B (en)

Families Citing this family (8)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
CN1756259B (en) * 2004-09-27 2011-04-20 国际商业机器公司 Method and system for using a network address translation (nat) in an IP network
KR100636186B1 (en) 2004-10-28 2006-10-19 삼성전자주식회사 Bidirectional tunnel establishment method and system thereof
CN100454891C (en) * 2005-02-02 2009-01-21 横河电机株式会社 IPv6/IPv4 converter
CN100505684C (en) * 2005-03-29 2009-06-24 国际商业机器公司 Network system, flow equalization method, network monitoring device and host machine
CN1901449B (en) * 2006-07-19 2010-05-12 华为技术有限公司 Network access method and network communication system
CN101123582B (en) * 2007-09-21 2011-08-24 中兴通讯股份有限公司 A communication method between private network terminals
CN101252524A (en) * 2008-04-08 2008-08-27 华为技术有限公司 Apparatus, system and method for transmitting message
CN101610295B (en) * 2009-07-17 2011-11-09 清华大学 Stateless IPv4/IPv6 grouping transformation method using non-specific IPv6 address

Non-Patent Citations (2)

* Cited by examiner, † Cited by third party
Title
汤九斌,杨静宇.IPV6 OVER IPV4隧道原理技术与实现.江苏通信技术18 4.2002,18(4),5-8.
汤九斌,杨静宇.IPV6 OVER IPV4隧道原理技术与实现.江苏通信技术18 4.2002,18(4),5-8. *

Also Published As

Publication number Publication date
CN1529480A (en) 2004-09-15

Similar Documents

Publication Publication Date Title
US7450585B2 (en) Method and system in an IP network for using a network address translation (NAT) with any type of application
US8363663B2 (en) Methods and apparatus for routing data to nodes
US9179447B2 (en) Routing traffic towards a mobile node
CN101447935B (en) Data packet transmitting method, system and equipment thereof
EP1363441A1 (en) Method for reducing the number of global IP addresses required for servers located in private networks
US20100008260A1 (en) Method for configuring control tunnel and direct tunnel in ipv4 network-based ipv6 service providing system
KR20030072927A (en) Network connecting apparatus and method for offering direct connection between network devices existing different private networks
CN101582925B (en) Network address translation method and system
CN104427010A (en) NAT (network address translation) method and device applied to DVPN (dynamic virtual private network)
EP1515505A1 (en) Reachability maintainance of a moving network based on temporary name identifiers
EP1681835A1 (en) System and method for avoiding address conflicts between servers with the same private address in home and visited network
CN101325580B (en) Method for implementing FTP application-layer gateway based on NAT-PT
Bi et al. IPv4/IPv6 transition technologies and univer6 architecture
CN102739809A (en) DNS64 database, server, system and IPv4/IPv6 communication method
CN102938735A (en) Method utilizing router advertisement carrying options to issue network address translator (NAT) 64 address prefix
Chandra et al. A comparative study on IPv4 and IPv6
CN100518147C (en) Method for spanning heterogeneous network mobile telecommunication based on two-way tunnel
CN1529480B (en) IP network protocol conversion method
CN101222495A (en) Method and router for IPv4 network host access to IPv6 network host
CN105391813A (en) Protocol for sessions traversal across firewall securely (SOKS) transparent proxy method and SOKS transparent proxy device
CN100459566C (en) Method for implementing tunnel relay in network for carrying out conversion of network address
CN100334858C (en) Method of breakthrough NAT using dual tunnel mechanism
KR100854681B1 (en) Gateway and method of interoperating between internet protocol-ubiquitous sensor network and simple network management protocol network
Mackay et al. A scenario-based review of IPv6 transition tools
Govil et al. On the investigation of transactional and interoperability issues between IPv4 and IPv6

Legal Events

Date Code Title Description
C06 Publication
PB01 Publication
C10 Entry into substantive examination
SE01 Entry into force of request for substantive examination
C14 Grant of patent or utility model
GR01 Patent grant
CF01 Termination of patent right due to non-payment of annual fee

Granted publication date: 20100414

Termination date: 20191008

CF01 Termination of patent right due to non-payment of annual fee