windows oriented mobile ip solution

11

Windows Oriented Windows Oriented Mobile IP solutionMobile IP solution

For transparent routing of IP For transparent routing of IP datagram's to Windows datagram's to Windows oriented mobile nodesoriented mobile nodes..

22

Technical adviser:Technical adviser:Danny ZadokDanny Zadok

Academic adviser:Academic adviser:Dr. Yuval EloviciDr. Yuval Elovici

Project team:Project team:Ira ZaitsevIra Zaitsev

Amir PatokaAmir PatokaArie KozakArie Kozak

44

Public Safety organizations are one of Public Safety organizations are one of Motorola biggest consumers which have Motorola biggest consumers which have mobile platform (cars with Pocket PCs) that mobile platform (cars with Pocket PCs) that travel to the scene of events (crime scenes, travel to the scene of events (crime scenes, fires …). fires …).

In case of a public disaster event the usual In case of a public disaster event the usual provider infrastructure usually collapse due provider infrastructure usually collapse due to overwhelming demand or damage to overwhelming demand or damage physical infrastructure, in those cases there physical infrastructure, in those cases there is a need to switch to the backup Public is a need to switch to the backup Public Safety organization infrastructure (which is Safety organization infrastructure (which is usually slower) without noticing the change.usually slower) without noticing the change.

Current situationCurrent situation

55

Current situation – (cont.)Current situation – (cont.)

Our goal is to facilitate in mobile node Our goal is to facilitate in mobile node (Pocket PC, Laptop) to roam in the (Pocket PC, Laptop) to roam in the world, attaching themselves to world, attaching themselves to different points to the internet while different points to the internet while maintaining the appearance of maintaining the appearance of always being in the home network.always being in the home network.

66

Problem domainProblem domain

IP (Internet Protocol ) requires the location of IP (Internet Protocol ) requires the location of any host connected to the Internet to be any host connected to the Internet to be uniquely identified by an assigned IP uniquely identified by an assigned IP address. address.

This raises one of the most important issues This raises one of the most important issues in mobility, because when a host moves to in mobility, because when a host moves to another physical location, it has to change another physical location, it has to change its IP address. its IP address.

However, the higher level protocols require However, the higher level protocols require IP address of a host to be fixed for IP address of a host to be fixed for identifying connections. identifying connections.

Problem domain – (cont.)Problem domain – (cont.)

InternetServer

Gateway A171.68.0.0

Gateway C140.31.0.0

“Connect to171.68.69.2”

•Gateway A replies to Host B with an ICMP unreachable

Where is 171.68.69.2???

140.31.70.1?171.68.69.2 Client

88

Proposed solutionProposed solution

The Mobile Internet Protocol (Mobile IP) is an extension to The Mobile Internet Protocol (Mobile IP) is an extension to the Internet Protocol proposed by the Internet the Internet Protocol proposed by the Internet Engineering Task Force (IETF) that addresses this issue.Engineering Task Force (IETF) that addresses this issue.

It is a standard communications protocol that is designed to It is a standard communications protocol that is designed to allow mobile device users to move from one network to allow mobile device users to move from one network to another while maintaining a permanent IP address. another while maintaining a permanent IP address.

99

System ArchitectureSystem Architecture

MN

Client Home Network

IP: A

MN

Foreign Network

IP: B

Internet

Internet

IP: H

Database

Mobile IP introduces the following new functional entities:

Mobile Node - A host or router that changes its point of attachment from one network or sub network to another.

Home Agent - A router on a mobile node's home network which tunnels datagrams for delivery to the mobile node when it is away from home, and maintains current location information for the mobile node.

1010

System Architecture – (cont.)System Architecture – (cont.)

Mobile Node ->Remote Application

Remote App Home Network

Home IP: AMN

Foreign Network

IP: BInterne

tInterne

t

IP: H

IP: R

Src:A Dest:R

Src:B Dest:H Src:A Dest:R

Src:A Dest:R

1111

Remote Application -> Mobile Node

Remote App Home Network

Home IP: AMN

Foreign Network

IP: BInterne

tInterne

t

IP: H

IP: R

Src:R Dest:A

Src:H Dest: B Src:R Dest:A

Src:R Dest:ASrc:R Dest:A

Src:H Dest: B Src:R Dest:A

System Architecture – (cont.)System Architecture – (cont.)

1212

TechnologiesTechnologies

NDIS (Network Driver Interface NDIS (Network Driver Interface Specification) .Specification) .

Windows CE API for Mobile Node Windows CE API for Mobile Node implementation.implementation.

Win32 API for HA implementation.Win32 API for HA implementation.

DHCP protocol for IP allocation.DHCP protocol for IP allocation.

ICMP protocol for HA advertisement.ICMP protocol for HA advertisement.

DB for HA using SQLServer.DB for HA using SQLServer.

1414

Main Functional RequirementsMain Functional Requirements

Home Agent AdvertisementHome Agent Advertisement: In order : In order to allow Mobile Node to determine to allow Mobile Node to determine whether it is in Home network or whether it is in Home network or Foreign network. Foreign network.

Our HA will advertise himself by MN Our HA will advertise himself by MN request. request.

Broadcast or multicast

with TTL = 1

Advertisement

message

Mobile

Node

1515

Main Functional Requirements – Main Functional Requirements – (cont.)(cont.)

RegistrationRegistration: Every Mobile Node that resides in the : Every Mobile Node that resides in the foreign network needs to register with HA.foreign network needs to register with HA.

1616


DeregistrationDeregistration: when MN returns home, it : when MN returns home, it need to deregister himself. need to deregister himself.

1717


Datagram tunnelingDatagram tunneling: when MN is in the : when MN is in the foreign networked, in order to hide his real foreign networked, in order to hide his real source IP, all the datagrams from/to him source IP, all the datagrams from/to him to/from Application should be tunneled . to/from Application should be tunneled .

1818


Home-IP allocationHome-IP allocation: HA will have a : HA will have a pool of available Home IP's. Each pool of available Home IP's. Each time HA receives a registration time HA receives a registration request with Home IP 0.0.0.0 it request with Home IP 0.0.0.0 it assigns one of the available IPs in assigns one of the available IPs in the pool to a Mobile Node that sent the pool to a Mobile Node that sent the request. the request.

2020

Non functional requirements - Non functional requirements - Performance constraintsPerformance constraints

Home Agent recovery (restart) less than 1 minute in Home Agent recovery (restart) less than 1 minute in case of failure.case of failure.System reliability – works 99.9% of the time.System reliability – works 99.9% of the time.Registration/deregistration time: 1sec + network Registration/deregistration time: 1sec + network latency.latency.Packet transmission time: 10msec + network latency.Packet transmission time: 10msec + network latency.Packet loss is not exceeded more than by 2% the Packet loss is not exceeded more than by 2% the original.original.Maximum number of supported Mobile Nodes per Maximum number of supported Mobile Nodes per Home Agent is 1000.Home Agent is 1000.Simplest installation: any configuration values with Simplest installation: any configuration values with default values won’t participate in installation default values won’t participate in installation process and will be set to default.process and will be set to default.Maximum number of network interfaces per Mobile Maximum number of network interfaces per Mobile Node supported by system is 4.Node supported by system is 4.

2121

Non functional requirements - Non functional requirements - SE Project ConstraintsSE Project Constraints

The Mobile node might not run on the The Mobile node might not run on the university network due to firewall university network due to firewall limitations. limitations. Home Agent will not run on the university Home Agent will not run on the university network due to NAPT and Firewall network due to NAPT and Firewall limitations during final presentation, but limitations during final presentation, but on the remote network.on the remote network.

2222

Major Use-CasesMajor Use-Cases

2323

Major Use-Cases – (cont.)Major Use-Cases – (cont.)

Installation of the system on Mobile Node:Installation of the system on Mobile Node:Primary Actor: Administrator.Primary Actor: Administrator.Precondition: Windows Mobile/XP, support for Precondition: Windows Mobile/XP, support for

NDIS.NDIS.Post condition: the host now supports Mobile Post condition: the host now supports Mobile

IP.IP.Main scenario:Main scenario:

1.1. Running the installation program for the driver.Running the installation program for the driver.2.2. Installing the service.Installing the service.3.3. Configuring the service (Use Case 2).Configuring the service (Use Case 2).4.4. Registering the Mobile Node to the Home Agent.Registering the Mobile Node to the Home Agent.

2424


Configuring the serviceConfiguring the service ::Primary Actor: Administrator.Primary Actor: Administrator.Precondition: configuration/installation program is running.Precondition: configuration/installation program is running.Post condition: the service is configured.Post condition: the service is configured.Main scenario:Main scenario:1.1. Configuration of networks’ priorities.Configuration of networks’ priorities.2.2. Configuration of encapsulation method (optional).Configuration of encapsulation method (optional).3.3. Configuration of Home Address (default automatic).Configuration of Home Address (default automatic).4.4. Configuration of Home Agent IP, Home Network IP Configuration of Home Agent IP, Home Network IP

address and ports.address and ports.5.5. Security configuration (keys, SPI, algorithms, etc).Security configuration (keys, SPI, algorithms, etc).6.6. Networking configuration: delays, rates, etc. for each Networking configuration: delays, rates, etc. for each

network.network.Note: sometimes the configuration of service will require Note: sometimes the configuration of service will require

reconfiguration of Home Agent (for the associated reconfiguration of Home Agent (for the associated information). information).

2525


Configuring Home AgentConfiguring Home Agent ::Primary Actor: Administrator.Primary Actor: Administrator.Precondition: Home Agent is installed/installing.Precondition: Home Agent is installed/installing.Postcondition: Home Agent is configured.Postcondition: Home Agent is configured.Main scenario:Main scenario:1.1. Configuring registration table of supported Mobile Configuring registration table of supported Mobile

Nodes (Home Address, Security data, networking, etc.).Nodes (Home Address, Security data, networking, etc.).2.2. Defining range of IP’s for supplying Home IP to Mobile Defining range of IP’s for supplying Home IP to Mobile

NodesNodes3.3. Provide possibility to allocate/free each Home IP.Provide possibility to allocate/free each Home IP.4.4. Defining logging level.Defining logging level.5.5. Configuration of different delays, rates, networking Configuration of different delays, rates, networking

parameters.parameters.Note: sometimes the configuration of Home Agent will Note: sometimes the configuration of Home Agent will

require reconfiguration of Mobile Node (for the require reconfiguration of Mobile Node (for the associated information).associated information).

2626


Displaying current state of Home AgentDisplaying current state of Home Agent ::Primary Actor: Administrator.Primary Actor: Administrator.Precondition: Home Agent is installed and running.Precondition: Home Agent is installed and running.Post condition: User receives the information of Post condition: User receives the information of

current network state.current network state.Main scenario:Main scenario:1.1. User prompts for type of information he wants: User prompts for type of information he wants:

which mobile nodes currently connected which mobile nodes currently connected (registered), with what care-of-address, (registered), with what care-of-address, registration life-time, different statistics and registration life-time, different statistics and logging.logging.

2.2. Requested information is displayed.Requested information is displayed.

2727


Forward tunnelingForward tunneling ::Primary Actor: Remote Application.Primary Actor: Remote Application.Secondary Actor: User Application.Secondary Actor: User Application.Precondition: System is installed and configured and Precondition: System is installed and configured and

there is a network link for both Home Agent and there is a network link for both Home Agent and Mobile Node.Mobile Node.

Postcondition: The packet arrives at the destination Postcondition: The packet arrives at the destination (User Application).(User Application).

Main scenario:Main scenario:1.1. Remote application sends a packet.Remote application sends a packet.2.2. The packet is intercepted by the Home Agent The packet is intercepted by the Home Agent

encapsulated and tunneled to the Mobile Node.encapsulated and tunneled to the Mobile Node.3.3. Finally, the packet is decapsulated by the Mobile Finally, the packet is decapsulated by the Mobile

Node and passed to the User Application.Node and passed to the User Application.

2828


Reverse tunnelingReverse tunneling ::Primary Actor: User Application.Primary Actor: User Application.Secondary Actor: Remote Application.Secondary Actor: Remote Application.Precondition: System is installed and configured there is a Precondition: System is installed and configured there is a

network link for both Home Agent and Mobile Node.network link for both Home Agent and Mobile Node.Post condition: The packet arrives at the destination (Remote Post condition: The packet arrives at the destination (Remote

Application) with source IP equal to Home Address.Application) with source IP equal to Home Address.Main scenario:Main scenario:1.1. User application sends a packet.User application sends a packet.2.2. The packet is intercepted by the Mobile Node The packet is intercepted by the Mobile Node

encapsulated and tunneled to the Home Agent.encapsulated and tunneled to the Home Agent.3.3. Finally, the packet is decapsulated by Home Agent and Finally, the packet is decapsulated by Home Agent and

sent to destination.sent to destination.

2929


Attachment NotificationAttachment Notification ::Primary Actor: Internet Service Provider.Primary Actor: Internet Service Provider.Precondition: System is installed.Precondition: System is installed.Post condition: Mobile Node has a virtual Post condition: Mobile Node has a virtual

network with his home network.network with his home network.Main scenario:Main scenario:1.1. Internet Service Provider notifies on a Internet Service Provider notifies on a

new address or a new gateway.new address or a new gateway.2.2. Mobile Node registers himself with the Mobile Node registers himself with the

Home Agent.Home Agent.

3030

RisksRisks

In case we don't find an open UDP port in the In case we don't find an open UDP port in the university network we will need two cellular university network we will need two cellular provider modems.provider modems.Availability of a Pocket PC with four network Availability of a Pocket PC with four network interfaces questionable. Capacity test will be done interfaces questionable. Capacity test will be done in worst case on laptop.in worst case on laptop.Testing the system inner network communication Testing the system inner network communication with inputs outside the specification (Robustness with inputs outside the specification (Robustness testing) is difficult due to non existing tools to feed testing) is difficult due to non existing tools to feed the system with improper inputs, which will the system with improper inputs, which will require changing working system components to require changing working system components to faulty ones. Robustness testing could be done with faulty ones. Robustness testing could be done with recording inputs through sniffer programs and recording inputs through sniffer programs and sending a modified recorded datagram.sending a modified recorded datagram.Failing to live up to nonfunctional performance Failing to live up to nonfunctional performance requirement on common platforms will demand requirement on common platforms will demand adding constraints on components running adding constraints on components running platform to high end ones. platform to high end ones.

windows oriented mobile ip solution

Documents