Font Size: a A A

The Design And Implementation On DNS-based Address Hopping System

Posted on:2017-02-13Degree:MasterType:Thesis
Country:ChinaCandidate:J H LiuFull Text:PDF
GTID:2348330518993443Subject:Computer Science and Technology
Abstract/Summary:
In recent years,as the rapid develop of the Internet,the limited IPv4 address space is beiing depleted.In order to prevent insufficient IP address space have a negative impact on the further development of the Internet,IPv6 era is coming.Compared to IPv4,IPv6 is not just a simple upgrade of protocol,IPv6 enhance the operability and the manageability of IP network and fully meet the future development needs on tri-network amalgamation.However,with the deepening development of IPv6 technology,users can avoid network monitoring by using new features of IPv6 which undoubtedly bring new problems and challenges to network security information governance.There is an urgent need to study more complex and more advanced network protection technologies.In recent years,the address hopping technology has aroused concern of both network offensive and defensive.It appears hop agents attacks,Trojan port hopping attacks,protocol attacks and other attacks.There are also some active defense strategies,such as address hopping and port hopping.The originally idea of IPv6 addresses hopping technology is derived from the frequency hopping communications technology of military communication.This paper addresses the IPv6 transition technology as a starting point to enhance network protection technology.Utilize dynamic DNS name server to implement real IP address hopping to random IP address.Use NAT to map hopping address to real address and implement IPv6 address hopping system based on DNS.This system can effectively hide the real web server IP and avoid malicious directional scanning attacks.Firstly,this paper briefly introduces the related research on IPv6 address hopping technology,including DNS,NAT and existing address hopping technologies.Then it introduces the overall design of IPv6 address hopping system based on DNS and focuses on the detailed design and implementation of two main modules:DNS address hopping module and NAT address translation module.Finally,this paper sets up experimental environment based on the overall framework of IPv6 address hopping system and performed functional experiments and feasibility experiments to verify the validity of the system.
Keywords/Search Tags:IPv6, DNS, NAT, IP Hopping
Related items