• DocumentCode
    2665609
  • Title

    Automatic VPN client recovery from IPsec pass-through failures

  • Author

    Brustoloni, José Carlos

  • Author_Institution
    Dept. of Comput. Sci., Pittsburgh Univ., PA
  • fYear
    2005
  • fDate
    17-17 Nov. 2005
  • Lastpage
    763
  • Abstract
    Network address translation (NAT) is often used in routers that connect home and small-office networks to the Internet. Unfortunately, NAT may not interoperate well with many protocols, including IPsec, the security protocol suite often used by telecommuters. Many NAT implementations include heuristics commonly known as IPsec pass-through, which may enable NAT to interoperate with IPsec under certain assumptions. We characterize IPsec pass-through´s operation and failure modes, and propose IPsec pass-through automatic client recovery (IPTACR), a novel set of mechanisms that enable VPN clients to recover automatically from IPsec pass-through failures. Experiments show that the proposed mechanisms are effective and impose negligible overhead
  • Keywords
    IP networks; client-server systems; protocols; IPsec pass-through automatic client recovery; IPsec pass-through failures; Internet; network address translation; security protocol; Computer science; IP networks; Internet; Network address translation; Network servers; Payloads; Protocols; Teleworking; Virtual private networks; Web server;
  • fLanguage
    English
  • Publisher
    ieee
  • Conference_Titel
    Local Computer Networks, 2005. 30th Anniversary. The IEEE Conference on
  • Conference_Location
    Sydney, NSW
  • ISSN
    0742-1303
  • Print_ISBN
    0-7695-2421-4
  • Type

    conf

  • DOI
    10.1109/LCN.2005.36
  • Filename
    1550960
    • Link To Document
    https://search.isc.ac/dl/search/defaultta.aspx?DTC=49&DC=2665609