192620010

Mobile & Wireless Networking

Lecture 9:
Mobile IP

[Schiller, Section 8.1]

Geert Heijenk

Mobile and Wireless Networking

2013 / 2014
 Outline of Lecture 11

q Mobile IP Basics
q 3 parts of Mobile IP:
q Advertising Care-of Addresses
q Registration
q Tunneling
q Mobile IPv6
q Mobile IPv6 extensions
q Hierarchical Mobile IPv6
q Fast Handover for Mobile IPv6
q Proxy Mobile IPv6

2
Mobile and Wireless Networking
2013 / 2014
 Motivation for Mobile IP RFC 5944

q Routing
q based on IP destination address, network prefix (e.g. 129.13.42)
determines physical subnet
q change of physical subnet implies change of IP address to have a
topological correct address (standard IP) or needs special entries in
the routing tables
q Specific routes to end-systems?
q change of all routing table entries to forward packets to the right
destination
q does not scale with the number of mobile hosts and frequent
changes in the location, security problems
q Changing the IP-address?
q adjust the host IP address depending on the current location
q almost impossible to find a mobile system, DNS updates take too
long time
q TCP connections break, security problems

3
Mobile and Wireless Networking
2013 / 2014
 Example network

HA
(Home Agent) MN
(Mobile Node)

router

home network
Internet foreign
(physical home network network
for the MN)
FA
(Foreign Agent)
router
(current physical network
for the MN)

CN
(Correspondent
router
Node)
4
Mobile and Wireless Networking
2013 / 2014
 Data transfer to the mobile system

HA
2
MN

home network receiver

3
Internet

FA foreign
network

1. Sender sends to the IP address of MN,

HA intercepts packet (proxy ARP)
1 2. HA tunnels packet to Care-of Address
CN
(COA), here FA, by encapsulation
3. FA forwards the packet
sender to the MN

5
Mobile and Wireless Networking
2013 / 2014
 Data transfer from the mobile system

HA
1 MN

home network sender

Internet

FA foreign
network

1. Sender sends to the IP address

of the receiver as usual,
CN
FA works as default router

receiver

6
Mobile and Wireless Networking
2013 / 2014
 Types of Home Networks

Home agent as a separate system on Internet

the home network

Home agent integrated with a router

Internet
on the home network

A virtual home network Internet

7
Mobile and Wireless Networking
2013 / 2014
 Co-located Care-of Address

HA
MN

home network receiver

Internet
foreign
Tunneling network
Standard
Router

CN

sender

8
Mobile and Wireless Networking
2013 / 2014
 Outline of Lecture 11

q Mobile IP Basics
q 3 parts of Mobile IP:
q Advertising Care-of Addresses
q Registration
q Tunneling
q Mobile IPv6
q Mobile IPv6 extensions
q Hierarchical Mobile IPv6
q Fast Handover for Mobile IPv6
q Proxy Mobile IPv6

9
Mobile and Wireless Networking
2013 / 2014
 Agent advertisement

0 7 8 15 16 23 24 31
type code checksum
#addresses addr. size lifetime
router address 1
preference level 1
router address 2
type = 16 preference level 2
length = 6 + 4 * #COAs ...
R: registration required
B: busy, no more registrations
H: home agent type = 16 length sequence number
registration lifetime R B H F M G r T U X I rsv
F: foreign agent
COA 1
M: minimal encapsulation
COA 2
G: GRE encapsulation
r: =0, ignored ...
T: FA supports reverse tunneling
U: UDP tunneling (firewall traversal)
X: support for registration revocation
I: support for regional registration by foreign agent
rsv: =0, ignored

10
Mobile and Wireless Networking
2013 / 2014
 Home Network & Move Detection

q Home Network is detected if:

q Network Prefix IP Source Address advertisement = Network Prefix
Home Address
q Move is detected if:
q No advertisement has been received within Lifetime
q Network Prefixes have changed

q no advertisements --> use promiscuous mode

q assistance from higher / lower layers

11
Mobile and Wireless Networking
2013 / 2014
 Registration

Registration Request

Mobile Foreign Home

Node Agent Agent

Registration Reply

Registration Request

Mobile Home
Node Agent

Registration Reply
Registration Request
Home Mobile
Agent Node
Registration Reply

12
Mobile and Wireless Networking
2013 / 2014
 Mobile IP registration request

0 7 8 15 16 23 24 31
type = 1 S B DM G r T x lifetime
home address
home agent
COA
identification

extensions . . .

S: simultaneous bindings
B: broadcast datagrams
D: decapsulation by MN
M mininal encapsulation
G: GRE encapsulation
r: =0, ignored
T: reverse tunneling requested
x: =0, ignored

13
Mobile and Wireless Networking
2013 / 2014
 Mobile IP registration reply
0 7 8 15 16 31
type = 3 code lifetime
home address
home agent
identification
Example codes: extensions . . .
registration successful
0 registration accepted
1 registration accepted, but simultaneous mobility bindings unsupported
registration denied by FA
65 administratively prohibited
66 insufficient resources
67 mobile node failed authentication
68 home agent failed authentication
69 requested Lifetime too long
registration denied by HA
129 administratively prohibited
131 mobile node failed authentication
133 registration Identification mismatch
135 too many simultaneous mobility bindings

14
Mobile and Wireless Networking
2013 / 2014
 Simultaneous Bindings

q A Mobile Node may register multiple bindings simultaneously

q The Home Agent makes multiple copies of packets destined for
the mobile node, and tunnels a copy to each care-of address
q Simultaneous bindings may be used to
q facilitate seamless hand-off
q avoid too frequent registrations

15
Mobile and Wireless Networking
2013 / 2014
 Tunneling

q Packet destined to the mobile node are routed to the home

network (normal IP operation)
q Home Agent intercepts packets on the home network
q Home Agent encapsulates packets, and tunnels them to the
care-of address
q At the care-of address (either Foreign Agent or co-located), the
packet is decapsulated, and delivered to the mobile node

16
Mobile and Wireless Networking
2013 / 2014
 Packet Interception by Home Agent

q Advertise reachability of Mobile Node Home Address

q Proxy and Gratuitous ARP:
l Home Agent Replies to ARP requests for the Mobile Node (Proxy ARP)
l The Home Agent (or Mobile node) broadcasts a not requested ARP after a
change has occurred (Mobile Node has roamed out (or in)) (Gratuitous ARP)

17
Mobile and Wireless Networking
2013 / 2014
Encapsulation

original IP header original data

new IP header new data

outer header inner header original data

18
Mobile and Wireless Networking
2013 / 2014
 Encapsulation I

Encapsulation of one packet into another as payload

q e.g. IPv6 in IPv4 (6Bone), Multicast in Unicast (Mbone)
q here: e.g. IP-in-IP-encapsulation, minimal encapsulation or GRE (Generic
Record Encapsulation)
IP-in-IP-encapsulation (mandatory, RFC 2003)
q tunnel between HA and COA

ver. IHL DS (TOS) length

IP identification flags fragment offset
TTL IP-in-IP IP checksum
IP address of HA
Care-of address COA
ver. IHL DS (TOS) length
IP identification flags fragment offset
TTL lay. 4 prot. IP checksum
IP address of CN
IP address of MN
TCP/UDP/ ... payload

19
Mobile and Wireless Networking
2013 / 2014
 Encapsulation II

Minimal encapsulation (optional) (RFC 2004)

q avoids repetition of identical fields
q e.g. TTL, IHL, version, DS (RFC 2474, old: TOS)
q only applicable for unfragmented packets, no space left for
fragment identification

ver. IHL DS (TOS) length

IP identification flags fragment offset
TTL min. encap. IP checksum
IP address of HA
care-of address COA
lay. 4 protoc. S reserved IP checksum
IP address of MN
original sender IP address (if S=1)
TCP/UDP/ ... payload

20
Mobile and Wireless Networking
2013 / 2014
 Generic Routing Encapsulation

original
original data
header

GRE original
outer header original data
header header

RFC 2890 new header new data

ver. IHL DS (TOS) length

IP identification flags fragment offset
TTL GRE IP checksum
IP address of HA
Care-of address COA
C KS reserved0 ver. protocol
checksum (optional) reserved1 (optional)
key (optional)
sequence number (optional)
ver. IHL DS (TOS) length
IP identification flags fragment offset
TTL lay. 4 prot. IP checksum
IP address of CN
IP address of MN

TCP/UDP/ ... payload

21
Mobile and Wireless Networking
2013 / 2014
 Mobile IP with reverse tunneling

q Router accept often only topological correct addresses

(firewall!)
q a packet from the MN encapsulated by the FA is now topological
correct
q furthermore multicast and TTL problems solved (TTL in the home
network correct, but MN is too far away from the receiver)
q Reverse tunneling does not solve
q problems with firewalls, the reverse tunnel can be abused to
circumvent security mechanisms (tunnel hijacking)
q optimization of data paths, i.e. packets will be forwarded through
the tunnel via the HA to a sender (double triangular routing)
q The standard is backwards compatible
q the extensions can be implemented easily and cooperate with
current implementations without these extensions
q Agent Advertisements can carry requests for reverse tunneling

22
Mobile and Wireless Networking
2013 / 2014
 Reverse tunneling (RFC 3024)

HA
2
MN

home network sender

1
Internet

FA foreign
network

1. MN sends to FA
3 2. FA tunnels packets to HA
CN by encapsulation
3. HA forwards the packet to the
receiver (standard case)
receiver

23
Mobile and Wireless Networking
2013 / 2014
 Outline of Lecture 11

q Mobile IP Basics
q 3 parts of Mobile IP:
q Advertising Care-of Addresses
q Registration
q Tunneling
q Mobile IPv6
q Mobile IPv6 extensions
q Hierarchical Mobile IPv6
q Fast Handover for Mobile IPv6
q Proxy Mobile IPv6

24
Mobile and Wireless Networking
2013 / 2014
 Mobile IPv6 (RFC 6275)

Mobile IP was developed for IPv4, but IPv6 simplifies the protocols
q security is integrated and not an add-on, authentication of
registration is included
q COA can be assigned via auto-configuration (DHCPv6 is one
candidate), every node has address autoconfiguration
q no need for a separate FA, all routers perform router advertisement
which can be used instead of the special agent advertisement;
addresses are always co-located
q MN can signal a sender directly the COA, sending via HA not
needed in this case (automatic route optimization)
q soft hand-over, i.e. without packet loss, between two subnets is
supported
l MN sends the new COA to its old router
l the old router encapsulates all incoming packets for the MN and
forwards them to the new COA
l authentication is always granted

25
Mobile and Wireless Networking
2013 / 2014
 Outline of Lecture 11

q Mobile IP Basics
q 3 parts of Mobile IP:
q Advertising Care-of Addresses
q Registration
q Tunneling
q Mobile IPv6
q Mobile IPv6 extensions
q Hierarchical Mobile IPv6
q Fast Handover for Mobile IPv6
q Proxy Mobile IPv6

26
Mobile and Wireless Networking
2013 / 2014
 IP Micro-mobility support

q Micro-mobility support:
q Efficient local handover inside a foreign domain
without involving a home agent
q Reduces control traffic on backbone
q Especially needed in case of route optimization

q Hierarchical Mobile IPv6 (HMIPv6)

q Important criteria:
Security Efficiency, Scalability, Transparency, Manageability

27
Mobile and Wireless Networking
2013 / 2014
 Hierarchical Mobile IPv6 (HMIPv6) (RFC 5380)

Operation:
q Network contains mobility anchor point
(MAP) Internet
HA
l mapping of regional COA (RCOA) to link
COA (LCOA)
RCOA
q Upon handover, MN informs
MAP only MAP
l gets new LCOA, keeps RCOA
q HA is only contacted if MAP
binding AR AR
changes update
LCOAnew LCOAold

MN MN

28
Mobile and Wireless Networking
2013 / 2014
 Hierarchical Mobile IPv6 (2)

Advantages:
q Handover requires minimum number
of overall changes to routing tables
q Integration with firewalls / private address support possible

Potential problems:
q Not transparent to MNs
q Handover efficiency in wireless mobile scenarios:
l Complex MN operations
l All routing reconfiguration messages
sent over wireless link

29
Mobile and Wireless Networking
2013 / 2014
 Mobile IPv6 Fast Handovers (1)

Sources of delay in Mobile IPv6 handover:

1. Change of link
2. Movement detection
3. Address acquisition
4. Home agent update
5. Return routability procedure
6. Binding updates

q 4, 5, and 6 can be reduced/eliminated using

Hierarchical Mobile IPv6
(RFC 5380)
q For 2 and 3, a new mechanism is proposed:
Mobile IPv6 Fast Handovers
(RFC 5568)

30
Mobile and Wireless Networking
2013 / 2014
Mobile IPv6 Fast Handovers (2)

q Mobile Node gets address for

(possible) new network from its
current (previous) access
router.
q Handover is initiated on the
previous network Internet
q Previous and New Access
Routers tunnel and buffer
packets
q Handover is completed on new Previous New
network. Access tunnel Access
Router Router

Note: This is still a hard handover,

i.e., mobile node has a link to
only one access router at a MN MN
time.

31
Mobile and Wireless Networking
2013 / 2014
 Mobile IPv6 Fast Handovers: predictive handover
MN PAR NAR
| | |
|------RtSolPr------->| |
|<-----PrRtAdv--------| |
| | |
|------FBU----------->|--------HI--------->|
| |<------HAck---------|
| <--FBack---|--FBack---> |
| | |
disconnect forward |
| packets===============>|
| | |
| | |
connect | |
| | |
|--------- UNA --------------------------->|
|<=================================== deliver packets
| |
RtSolPr - Router Solicitation for Proxy Advertisement
PrRtAdv - Proxy Router Advertisement
FBU Fast Binding Update
HI - Handover Initiate
HAck - Handover Acknowledge
FBack - Fast Binding Acknowledgment
UNA Unsollicited Neighbor Advertisement

32
Mobile and Wireless Networking
2013 / 2014
 Mobile IPv6 Fast Handovers: reactive handover
MN PAR NAR
| | |
|------RtSolPr------->| |
|<-----PrRtAdv--------| |
| | |
disconnect | |
| | |
| | |
connect | |
|-------UNA-----------|--------------------->|
|-------FBU-----------|---------------------)|
| |<-------FBU----------)|
| |----------HI--------->|
| |<-------HAck----------|
| |(HI/HAck if necessary)|
| forward |
| packets(including FBAck)=====>|
| | |
|<=================================== deliver packets
| |
RtSolPr - Router Solicitation for Proxy Advertisement
PrRtAdv - Proxy Router Advertisement
UNA Unsollicited Neighbor Advertisement
FBU Fast Binding Update
HI - Handover Initiate
HAck - Handover Acknowledge
FBack - Fast Binding Acknowledgment

33
Mobile and Wireless Networking
2013 / 2014
 Proxy Mobile IP (PMIPv6)

IETF Network-based Mobility Management protocol

(RFC 5213 / RFC 6543)
Hides IP-layer mobility from Mobile Node (MN)
Mobile access gateway (MAG) emulates MNs home link on
access link
Packet are tunneled between MAG and Local Mobility Anchor
(LMA) using proxy Care-of Address
Handover: New MAG sends Proxy Binding Update (PBU) to
LMA on behalf of MN

34
Mobile and Wireless Networking
2013 / 2014
PMIPv6 domain

35
Mobile and Wireless Networking
2013 / 2014
PMIPv6 message exchange

MN MAGold MAGnew LMA

Disconnect Disconnect

Connect Connect

Rtr Sol
PBU

PBAck

Rtr Adv

36
Mobile and Wireless Networking
2013 / 2014