Traceroute using address request messages
First Claim
Patent Images
1. An apparatus, comprising:
- a processor; and
a memory coupled to the processor comprising instructions executable by the processor, the processor operable when executing the instructions to;
generate a plurality of messages each having a header and a payload, wherein each header includes a different lifetime value;
generate a Simple Traversal of User Datagram Protocol (UDP) Through Network Address Translators (NATs) (STUN) request;
manipulate the STUN request to generate a plurality of different instances of the STUN request and insert each STUN request instance into a different one of the messages;
send the plurality of messages to a remote endpoint, each of the messages addressed to a valid port on a destination address of the messages;
receive back a plurality of error responses identifying the presence of routers located between an originating endpoint of the messages and the remote endpoint;
receive back a STUN response from a STUN server operating on the destination indicating completion of a traceroute to the remote endpoint; and
correlate each of the error responses as well as the STUN response with a respective one of the messages.
1 Assignment
0 Petitions
Accused Products
Abstract
In one embodiment, an endpoint sends messages containing Simple Traversal of User Datagram Protocol (UDP) Through Network Address Translators (NATs) (STUN) requests to traceroute a path to the remote endpoint. The traceroute may be completed through security devices such as NATs and firewalls. Receipt of a STUN response from the remote endpoint signals that one of the traceroute packets reached the remote endpoint whereas the other traceroute packets have elicited error responses from intermediary, on-path routers, allowing these routers to be identified.
-
Citations
18 Claims
-
1. An apparatus, comprising:
-
a processor; and a memory coupled to the processor comprising instructions executable by the processor, the processor operable when executing the instructions to; generate a plurality of messages each having a header and a payload, wherein each header includes a different lifetime value; generate a Simple Traversal of User Datagram Protocol (UDP) Through Network Address Translators (NATs) (STUN) request; manipulate the STUN request to generate a plurality of different instances of the STUN request and insert each STUN request instance into a different one of the messages; send the plurality of messages to a remote endpoint, each of the messages addressed to a valid port on a destination address of the messages; receive back a plurality of error responses identifying the presence of routers located between an originating endpoint of the messages and the remote endpoint; receive back a STUN response from a STUN server operating on the destination indicating completion of a traceroute to the remote endpoint; and correlate each of the error responses as well as the STUN response with a respective one of the messages. - View Dependent Claims (2, 3, 4, 5, 6, 7)
-
-
8. A method, comprising:
-
generating a plurality of messages each having a header and a payload, wherein each header includes a different lifetime value; generating a Simple Traversal of User Datagram Protocol (UDP) Through Network Address Translators (NATs) (STUN) request; manipulating the STUN request to generate a plurality of different instances of the STUN request and inserting each STUN request instance into a different one of the payloads; sending the plurality of messages to a remote endpoint, each of the messages addressed to a valid port on a destination address of the messages; receiving back a plurality of error responses identifying the presence of routers located between an originating endpoint of the messages and the remote endpoint; receiving back a STUN response from a STUN server operating on the destination indicating completion of a traceroute to the remote endpoint; and correlating each of the error responses as well as the STUN response with a respective one of the messages. - View Dependent Claims (9, 10, 11, 12)
-
-
13. An apparatus, comprising:
-
means for generating a plurality of messages each having a header and a payload, wherein each header includes a different lifetime value; means for generating a Simple Traversal of User Datagram Protocol (UDP) Through Network Address Translators (NATs) (STUN) request; means for manipulating the STUN request to generate a plurality of different instances of the STUN request and inserting each STUN request instance into a different one of the payloads; a network interface configured to transmit the plurality of messages and receive back a STUN response from a STUN server operating on the destination as well as a plurality of error responses from routers located between an originating endpoint of the messages and a remote endpoint; and means for correlating each of the error responses as well as the STUN response with a respective one of the messages. - View Dependent Claims (14, 15, 16, 17, 18)
-
Specification