论文信息 - A technique for counting natted hosts

A technique for counting natted hosts

There have been many attempts to measure how many hosts are on the Internet. Many of those end-points, however, are NAT boxes (Network Address Translators), and actually represent several different computers. We describe a technique for detecting NATs and counting the number of active hosts behind them. The technique is based on the observation that on many operating systems, the IP header's ID field is a simple counter. By suitable processing of trace data, packets emanating from individual machines can be isolated, and the number of machines determined. Our implementation, tested on aggregated local trace data, demonstrates the feasibility (and limitations) of the scheme.

Steven M. Bellovin | S. Bellovin

[1] Tony Hain,et al. Architectural Implications of NAT , 2000, RFC.

[2] Hugo Krawczyk,et al. A Security Architecture for the Internet Protocol , 1999, IBM Syst. J..

[3] Matt Holdrege,et al. Protocol Complications with the IP Network Address Translator , 2001, RFC.

[4] Stephen T. Kent,et al. Security Architecture for the Internet Protocol , 1998, RFC.

[5] Stephen E. Deering,et al. Path MTU discovery , 1990, RFC.

[6] Jacques Stern,et al. Secret linear congruential generators are not cryptographically secure , 1987, 28th Annual Symposium on Foundations of Computer Science (sfcs 1987).

[7] Pyda Srisuresh,et al. Traditional IP Network Address Translator (Traditional NAT) , 2001, RFC.

[8] Daniel Senie,et al. Network Address Translator (NAT)-Friendly Application Design Guidelines , 2002, RFC.

[9] David Hucaby,et al. Cisco Field Manual: Router Configuration , 2001 .

[10] Craig Smith,et al. Know Your Enemy : Passive Fingerprinting , 2001 .

[11] Henning Schulzrinne,et al. RTP: A Transport Protocol for Real-Time Applications , 1996, RFC.

[12] Ratul Mahajan,et al. Measuring ISP topologies with rocketfuel , 2002, TNET.

[13] Jon Postel,et al. Internet Protocol , 1981, RFC.

[14] Ratul Mahajan,et al. Measuring ISP topologies with rocketfuel , 2002, SIGCOMM 2002.

[15] James A. Reeds,et al. "Cracking" a Random Number Generator , 1977, Cryptologia.