CG-NAT —
network address translation
15 years of expertise in the market
+1500 installations worldwide
No connection to equipment suppliers
Compliance with industry standards
CG-NAT
Carrier Grade NAT from VAS Experts is an effective service for ISPs that has been successfully deployed in over 1500 networks. The service provides the ability to use a public IP address instead of a private one and to use Dual Stack v4-v6 to eliminate NAT44 limitations.
CG-NAT from VAS Experts is designed specifically for ISPs. With a wide range of features, the solution can be easily integrated into various expanding networks and adapted to their needs.
CG-NAT from VAS Experts is designed specifically for ISPs. With a wide range of features, the solution can be easily integrated into various expanding networks and adapted to their needs.
Carrier Grade NAT (or Large Scale NAT, LSN) benefits to the operator
01
The ability to provide multiple subscribers with Internet access via a single public IPv4 address without degrading the connection quality. Thanks to this, a single public IP address can be used to host up to 100 private addresses (1:10)
This allows a single public IP address to be used to accommodate
up to 100 private addresses (1:10)
02
Create conditions for a comfortable transition to IPv6 by supporting Dual Stack v4-v6. The network will support both versions of the protocol to ensure smooth operation and a smooth transition to IPv6.
The network will support both versions of the protocol to ensure smooth operation and a smooth transition to IPv6
03
Possibility to increase the time of IPv4 application and reduce the cost of IPv4-addresses acquisition by 90%. This is especially relevant in conditions of IPv4-address shortage on the market
This is especially true in the context of a shortage of
IPv4 addresses on the market
Features
Full Cone NAT
Full Cone NAT allows packets received from any system to be sent over an external TCP/UDP port. Thanks to this technology, the ISP can provide transparency of peer-to-peer protocols (P2P, games)
Hairpinning
Within NAT, subscribers can directly access each other's public addresses
To access each other's public addresses without forwarding packets outside the device
Limits on TCP and UDP connections
Each IP address pool has an individual limit on TCP and UDP connections for clients. The limits are set manually. This allows the operator to efficiently allocate resources among subscribers. If a connection is inactive, it is automatically closed, freeing the port
Paired IP address pooling
Ensures that connections from a private address are linked to a public IP address
Broadcast journaling
Network broadcasts can be recorded as a text file and can be transferred to an external collector via IPFIX (NetFlow v10)
LACP
With Link Aggregation Control Protocol, you can link physical ports into a single logical cahannel
Advantages of CG-NAT from VAS Experts
1/7
Capacity
Supports up to 128 million sessions simultaneously on each AIC and handles traffic up to 120 Gbps
2/7
Predictability
Full Cone and HairPinning are responsible for predictable NAT behavior. Public IP ports are evenly distributed among subscribers thanks to user-based quota allocation
3/7
ALG support
ALGs support the operability of FTP, TFTP, RTSP, PPTP, SIP, ICMP, H.323, ESP, MGCP and DNS protocols. This enables operators to keep services and users connected and ensure application integrity
4/7
Built-in DDoS protection
The CG-NAT solution provides protection against high traffic volumes during DDoS attacks. This ensures uninterrupted operation of resources to handle client traffic and protects against service disruptions
.
5/7
VLAN and On-Stick support
VLAN support reduces the number of ports in the equipment and makes NIC utilization more efficient. You can identify inbound and outbound traffic by VLAN ID instead of NIC and use a common NIC for inbound and outbound traffic
6/7
Scalability
Dynamic scaling allows you to increase throughput as the number of subscribers and traffic volume increases by increasing server performance or growing the number of virtual NATs
7/7
High availability
The Active-Standby and Active-Active standby modes allow two devices to be used. If one of them fails, traffic is transferred to the second one without loss
.
VAS Experts supports
two types of network
address translation
01
CG-NAT (NAT44)
Used for simultaneous provisioning of a public IPv4 address to multiple clients, extends the ability to utilize the IPv4 address space
02
BiNAT (NAT 1:1)
Allows you to provide static public IP address service without changing the settings on the CPE by translating private address ports to a shared public address
Our customers
CG-NAT.
Order a consultation
Technical realization
| 01 |
Turn on the DPI SCAT in a "burst" pattern to realize the CG-NAT function |
| 02 |
Install a backup platform to provide fault tolerance |
| 03 |
Get a SCAT DPI BRAS or COMPLETE license for CG-NAT connection |
| 04 |
The performance of the address translation function depends on the hardware platform and the SCAT DPI software license (6 to 200 Gbps) |
| Option | Characteristics |
|---|---|
|
Capacity
|
Throughput up to 200 Gbps
|
|
Modes
|
NAT44, NAT 1:1
|
|
Routing
|
BGP, OSPF
|
|
ALG
|
FTP, DNS, PPTP, ICMP, IPSec, SIP, RTSP
|
|
Logging
|
IPFIX (NetFlow v10), local files
|
|
Safety
|
Limiting the number of ports per user, Mini-Firewall for public IPs
|
Implementation options
Advantages of CG-NAT based on SCAT
01
Fully compliant with RFC 6888 and RFC 4787 standards
02
Allows you to utilize the available IPv4 address space
03
Supports up to 128 million sessions simultaneously
04
Tunneling between networks provides a smooth transition to IPv6
05
Dynamic scaling promotes capacity growth without temporarily stopping traffic
06
DDoS protection due to the ability to limit the number of TCP and UDP ports
07
DDoS protection due to the ability to limit the number of TCP and UDP ports
Our customers
CG-NAT
Order a consultation
Related solutions VasExperts
View allStingray Service Gateway
A feature-rich platform based on Deep Packet Inspection technology
QoE
Software for collecting statistics and information on how clients evaluate the quality of services
BRAS/BNG
Function of the SCAT platform for authorization and termination of IPoE/PPPoE subscribers. The solution allows the provider to
Our customers