IMPLEMENTATION OF
INTELLIGENT NETWORK ADDRESS TRANSLATION-ENABLED IP FILTER USING SOCKET AND
POCKET FILTER TECHNOLOGY
BY
TAN SHE LOO
This project studied the Network Address Translation (NAT) separating public and private sector address method. This project will further develop an IP filter within a network address translator to alter the unreliable IP address from access into the computer system based on the rules set by the user dynamically. It basically involves comparing the source IPs, destination IPs and ports against a set of filter set by the user. The input and output rules can be separately setup, determining whether or not a packet will be allowed through the filter, into the kernel’s TCP/IP routines or out onto the network. Output packets going through the NAT will have their source IP address changed, if a mapping rule and space in the table exists, prior to being forwarded. The studied in socket technology is essential to allow the communication between user application (the software) and OS layer to perform IP address translation and packet capturing and filtering. This project allows alleviating network address shortages beside protect the user privacy and prevent intruder from access into one’s computer system.
Full text source:
B. Sc. (Hons) In Computer Systems & Networks
December 2000
Number: 13-14