[ترجمه مقاله] ارزیابی عملکرد برنامه های کاربردی در تونل زنی دستی 6in4 در محیط های اصلی IPV6/IPv4

Abstract

6in4 is the IPv4 to IPv6 migration technique that uses tunneling to encapsulate IPv6 packets over configured IPv4 communication links. This paper attempts to evaluate and compare performance parameters like Throughput, IP End-to-End Delay and Response Time of different applications running on the internet in IPv4, IPv6 and 6in4 manual tunneling environments. The applications that we are modeling are Database Application, Web Browsing, Video conferencing, Voice Communications and Remote Login. This paper aims to evaluate the performance of these internet applications in three different networks. The results of the study will be important for network administrators and various Internet Service Providers (ISP) for planning of IPv6 migration networks. OPNET Modeler ver. 14.5. has been used for simulation study. The networks that have been modeled consist of different components like client workstations, routers, servers and network backbones.

http://ieeexplore.ieee.org/xpl/articleDetails.jsp?arnumber=6993065

[ترجمه مقاله] مدل کاهشِ مسیر یابی سیلابی( TCP SYN با جعل IP )

Abstract

DDoS attack is considered to be a major threat among security problems in today's Internet. These kinds of attack are potentially severe. They bring down business of company drastically. DDoS attack can easily exhaust the computing and communication resources of its victim within a short period of time. There are attacks exploiting some vulnerability or implementation bug in the software implementation of a service, to bring the server down. Some attacks will use all the available resources at the target machine. This paper deals on attacks that consume all the bandwidth available to the victim machine. While concentrating on the bandwidth attack the TCP SYN flood is the more prominent attack. TCP/IP protocol suite is the most widely used protocol suite for data communication. The TCP SYN flood works by exhausting the TCP connection queue of the host and thus denying legitimate connection requests. There are various methods used to detect and prevent this attack, one of which is to block the packet based on SYN flag count from the same IP address. This kind of prevention methods becomes unsuitable when the attackers use the Spoofed IP address. For the prevention of this kind of attacks, the TCP specific probing is used in the proposed scheme where the client is requested to change the windows size/ cause packet retransmission while sending the ACK in the three way hand shake. This is very useful to find the Spoofed IP Packets/TCP SYN flood and preventing them.

http://ieeexplore.ieee.org/xpl/articleDetails.jsp?arnumber=5972435