CGN

Key features

  • • RFC 6888, RFC 4787
  • • GRE tunneling support via built-in NAT (PPTP/GRE ALG)
  • • Full Cone – Ensures transparent peering protocols (torrents, games)
  • • Paired IP address pooling
  • • Hairpinning
  • • Limits – Each pool of IP addresses is individually set to limit
  • • Broadcast Logging
  • • NAT 1: 1 – simplifies routing in the operator’s network

Carrier-grade NAT also known as CGN, CGNAT, large-scale NAT

Spectre DPI Carrier Grade NAT function allows the carrier to share one public IPv4 address with multiple subscribers, prolongs the use of the limited IPv4 addressing space, and simplifies the transition to IPv6 addressing. Since the DPI platform is designed for huge loads with deep traffic analysis, it can easily perform the address translation function (Carrier-Grade NAT), in addition to which, the customer receives a full set of standard DPI tools.

Specifics

Use of Paired IP address pooling function

All the subscriber’s connections from one “gray” internal address are anchored to one external “white” IP-address.

Setting limits on TCP and UDP connections for subscribers

For each IP address pool, number of TCP and UDP connections is limited for the subscriber individually, which allows the carrier to allocate safely resources of addressing space between corporate and private clients. When not activated, connections are closed releasing ports.

Usage of Hairpinning Technology

Subscribers inside NAT intercommunicate not translation addresses. Any machine on the local network outside of NAT can access another machine on the same network at the external address of the router.

Translation logging

Network broadcasts are written to a text file or sent to an external collector via the IPFIX protocol (aka NetFlow v10).

Request free demo