| The transition from IPv4 to IPv6 is a long process in the early days of which IPv6-over-IPv4 tunnel technology has been widely used.This paper researches IPv6-over-IPv4 tunnel discovery and use technology. On the basis of analysing the IPv6-over-IPv4 tunnel technology, combining network charging and guarding technique,makes use of passive detection to discover the IPv6-over-IPv4 tunnel in the network where the controlled host is.This paper researches the communication concealment during the network controling and guarding, analyzes the concealment of the IPv6-over-IPv4 tunnel encapsulation and puts forward the thought of making use of the IPv6-over-IPv4 tunnel encapsulation to resolve the concealment problem of target address.This paper designe and carry out TDT(TPv6-over-IPv4 Tunnel Discovery Tools) inside the target network, TDT have three modules:â‘ the type analysis of the target network module,â‘¡hijack module of IPv6-over-IPv4 tunnel communication inside the target network andâ‘¢IPv6-over-IPv4 tunnel discovery module of the target network.Thereinto, moduleâ‘ realize discovering of IPv6 hosts within the link, discovering of IPv6 routers and key information of routers in the link, discovering of active IPv4 hosts in the subnet and comprehensive csan tools with IPv6/IPv4 double stacks node discovery function. This module is suitable for networkscaning during the current Internet transition period and can circulate alone.Moduleâ‘¡has carried out communication hijack under the switchable Ethernet environment and can also circulate alone.Moduleâ‘¢depends on the former two moduls and has discovered IPv6-over-IPv4 tunnels from the communication streams between double stacks hosts or between double stacks host and the gateways in the hijacked target network.In the thought of tunnel encapsulation, this paper has design a concealment communication system based on the EPv6-over-IPv4 tunnel encapsulation technology. This system can conceal the destination address of the communication nodes more effectively. It is a new method of concealing about destination addresses.Finally, this paper simply expatiates on the IPv6-over-IPv4 tunnel discovery network environment, tests TDT in the experimental network and verifies the possibility of methods and the serviceability of tools carried out. |