Friday, May 22, 2009

How Network Address Translation (NAT) Works

nat router diagram

Network Address Translation helps improve security by reusing IP addresses. The NAT router translates traffic coming into and leaving the private network.

If you are reading this article, you are most likely connected to the Internet and viewing it at the HowStuffWorks Web site. There's a very good chance that you are usingNetwork Address Translation(NAT) right now.

The Internet has grown larger than anyone ever imagined it could be. Although the exact size is unknown, the current estimate is that there are about 100 million hosts and more than 350 million users actively on the Internet. That is more than the entire population of the United States! In fact, the rate of growth has been such that the Internet is effectively doubling in size each year.

So what does the size of the Internet have to do with NAT? Everything! For a computer to communicate with other computers and Web servers on the Internet, it must have an IP address. An IP address (IP stands for Internet Protocol) is a unique 32-bit number that identifies the location of your computer on a network. Basically, it works like your street address -- as a way to find out exactly where you are and deliver information to you.

When IP addressing first came out, everyone thought that there were plenty of addresses to cover any need. Theoretically, you could have 4,294,967,296 unique addresses (232). The actual number of available addresses is smaller (somewhere between 3.2 and 3.3 billion) because of the way that the addresses are separated into classes, and because some addresses are set aside for multicasting, testing or other special uses.

With the explosion of the Internet and the increase in home networks and business networks, the number of available IP addresses is simply not enough. The obvious solution is to redesign the address format to allow for more possible addresses. This is being developed (called IPv6), but will take several years to implement because it requires modification of the entire infrastructure of the Internet.

This is where NAT (RFC 1631) comes to the rescue. Network Address Translation allows a single device, such as a router, to act as an agent between the Internet (or "public network") and a local (or "private") network. This means that only a single, unique IP address is required to represent an entire group of computers.

But the shortage of IP addresses is only one reason to use NAT. In this edition of HowStuffWorks, you will learn more about how NAT can benefit you. But first, let's take a closer look at NAT and exactly what it can do...


What Does NAT Do?

NAT is like the receptionist in a large office. Let's say you have left instructions with the receptionist not to forward any calls to you unless you request it. Later on, you call a potential client and leave a message for that client to call you back. You tell the receptionist that you are expecting a call from this client and to put her through.

The client calls the main number to your office, which is the only number the client knows. When the client tells the receptionist that she is looking for you, the receptionist checks a lookup table that matches your name with your extension. The receptionist knows that you requested this call, and therefore forwards the caller to your extension.

Developed by Cisco, Network Address Translation is used by a device (firewallrouter or computer) that sits between an internal network and the rest of the world. NAT has many forms and can work in several ways:

  • Static NAT - Mapping an unregistered IP address to a registered IP address on a one-to-one basis. Particularly useful when a device needs to be accessible from outside the network.


In static NAT, the computer with the IP address of 192.168.32.10 will always translate to 213.18.123.110.

  • Dynamic NAT - Maps an unregistered IP address to a registered IP address from a group of registered IP addresses.


In dynamic NAT, the computer with the IP address 192.168.32.10 will translate to the first available address in the range from 213.18.123.100 to 213.18.123.150.

  • Overloading - A form of dynamic NAT that maps multiple unregistered IP addresses to a single registered IP address by using different ports. This is known also as PAT (Port Address Translation), single address NAT or port-level multiplexed NAT.


In overloading, each computer on the private network is translated to the same IP address (213.18.123.100), but with a different port number assignment.

  • Overlapping - When the IP addresses used on your internal network are registered IP addresses in use on another network, the router must maintain a lookup table of these addresses so that it can intercept them and replace them with registered unique IP addresses. It is important to note that the NAT router must translate the "internal" addresses to registered unique addresses as well as translate the "external" registered addresses to addresses that are unique to the private network. This can be done either through static NAT or by using DNS and implementing dynamic NAT.


The internal IP range (237.16.32.xx) is also a registered range used by another network. Therefore, the router is translating the addresses to avoid a potential conflict with another network. It will also translate the registered global IP addresses back to the unregistered local IP addresses when information is sent to the internal network.


The internal network is usually a LAN (Local Area Network), commonly referred to as the stub domain. A stub domain is a LAN that uses IP addresses internally. Most of the network traffic in a stub domain is local, so it doesn't travel outside the internal network. A stub domain can include both registered and unregistered IP addresses. Of course, any computers that use unregistered IP addresses must use Network Address Translation to communicate with the rest of the world.

In the next section we'll look at the different ways NAT can be configured.

0 comments  

Friday, May 1, 2009

Emerging Web site technologies enable two-way communication


One of the most important marketing tools for most businesses is undergoing significant change.

Since the emergence of the World Wide Web, the Internet has been considered "interactive marketing." However, the typical business is approaching the Web more like a static brochure than an opportunity to have a dynamic conversation with visitors.

Savvy Web marketers are harnessing emerging "Web 2.0" technologies to forge closer relationships with customers, prospects and employees. They are doing this by embracing the concept of "distributed authoring," which makes it possible for Web users to add and edit content online. This establishes trusting relationships by helping them connect, collaborate and share knowledge and insights.

Several emerging technologies are gaining momentum:

  • Blogs. Most blogs are online journals that marketers are using to keep customers and prospects up to date on industry news, trends, tips and special offers. Many organizations that publish a newsletter now include much of that same content in their blog. Why wait to send customers valuable insights?

Because most blogs offer readers the opportunity to post comments, they provide an opportunity for two-way communication that tells Web users their input is valued. Blogs typically have a conversational tone, which brings a brand closer to the market and creates a sense of fellowship.

Additionally, blogs help improve a Web site's search engine performance, particularly if the content is relevant and has sufficient keyword density.

  • Really Simple Syndication. Usually shortened to "RSS," Really Simple Syndication is a tool that has gained momentum as a result of the overwhelming volume of new content hitting Web sites everyday.

Basically, RSS helps Web users track new Web content that is of interest to them without taking the time to search for it everyday. Instead, links to news, blog posts and Web site updates that they care about are delivered directly to their desktop.

By giving Web users the ability to subscribe to receive updates, RSS rewards marketers for providing great Web content. Whether advertising, customer relationship management, direct marketing, internal communications or public relations, RSS returns the power of information delivery back to the hands of marketers.

One of the reasons that RSS has been compared favorably to the use of e-mail is that it is completely opt-in with no possibility of forcing someone to receive an RSS feed they didn't request.

  • Wikis. The popularity of Wikipedia, the online encyclopedia that is completely generated by Web users, has prompted marketers to explore how to harness the power of community building and collaboration.

Using wikis, end users can now collaboratively produce how-to guides and tips and tricks associated with a company's offerings. In fact, they will whether the company is ready or not. Rather than resist, companies can join in the conversation and perhaps even use a wiki for product design collaboration with consumers. At a minimum, wikis enable greater collaboration within the marketing department while more progressive organizations will use wikis to engage the audience directly.

  • Tagging. Tagging is assigning "keywords" to categorize content, such as the photos on Flickr or bookmarks on del.icio.us. Consumers of the content -- and not just the originator -- participate in defining how the content is described. Both the author and Web users assign the tags by what makes sense to them with more popular content being displayed more prominently based on user interaction and feedback.

Searching tags enable users to re-find information of interest and also allows other users to discover new content online.

From a marketing perspective, tagging is an opportunity to listen to the market. Marketers already have a position in their minds for their offerings. But true positioning only exists in the customer's mind. Search engine keyword counts and popular tags are windows into understanding the customer's perspective, which can help better serve end users with high value offerings.

  • Podcasting. The popularity of iPods has contributed to the rise of online audio and video clip postings, called podcasts. Similar to blogs, podcasts are typically published by individuals on subjects of niche interest. They are disseminated through individual Web sites, RSS feeds and social networking sites such as Apple's iTunes.

Marketers can use podcasts to reach highly targeted niche audiences, which can strengthen the organization's positioning as a thought leader and provide an opportunity to describe the related products and services being offered. Podcasts can also be used internally for training or orientation. Recording the information and sharing it internally ensures the message is delivered consistently.

By harnessing these and other emerging technologies, marketers can move their Web sites into the 21st Century. Instead of using the Web primarily to disseminate information, leading organizations are using social networking technologies to facilitate conversations among Web users and the organization. The place a company should start is to ask whether its Web site is truly a two-way communication channel.


0 comments  

Subscribe to: Posts (Atom)