Transport

General

See HTTP / HTTPS, IRC, etc.

NCP

• https://en.wikipedia.org/wiki/Network_Control_Program - preceded the Transmission Control Protocol (TCP) as a transport layer protocol used during the early ARPANET. NCP was a simplex protocol that utilized two port addresses, establishing two connections, for two-way communications. An odd and an even port were reserved for each application layer application or protocol. The standardization of TCP and UDP reduced the need for the use of two simplex ports for each application down to one duplex port

UDP

See also DNS

• http://en.wikipedia.org/wiki/User_Datagram_Protocol

• How unreliable is UDP? [1]

• http://en.wikipedia.org/wiki/Reliable_User_Datagram_Protocol

• https://github.com/UnionPacific/udp-repeater - a general purpose, configurable UDP forwarding/repeating daemon for Linux. It is useful for repeating one-way streams of data from a single sender to multiple receivers, and for forwarding UDP traffic to different receivers based upon source or destination IP addresses or UDP ports.

UPnP

See also Networked media#UPnP / DNLA

• http://upnp.org/specs/arch/UPnP-arch-DeviceArchitecture-v1.1.pdf

• http://upnp.org/specs/gw/UPnP-gw-InternetGatewayDevice-v2-Device.pdf

• PDF: Universal Plug and Play: Dead simple or simply deadly? - Armijn Hemel, April 7, 2006

• UPnP Hacks: IGD hacking

• https://en.wikipedia.org/wiki/Universal_Plug_and_Play - a set of networking protocols that permits networked devices, such as personal computers, printers, Internet gateways, Wi-Fi access points and mobile devices to seamlessly discover each other's presence on the network and establish functional network services for data sharing, communications, and entertainment. UPnP is intended primarily for residential networks without enterprise-class devices.The UPnP technology was promoted by the UPnP Forum, a computer industry initiative to enable simple and robust connectivity to stand-alone devices and personal computers from many different vendors. The Forum consisted of over eight hundred vendors involved in everything from consumer electronics to network computing. Since 2016, all UPnP efforts are now managed by the Open Connectivity Foundation (OCF).

UPnP assumes the network runs Internet Protocol (IP) and then leverages HTTP, on top of IP, in order to provide device/service description, actions, data transfer and eventing. Device search requests and advertisements are supported by running HTTP on top of UDP (port 1900) using multicast (known as HTTPMU). Responses to search requests are also sent over UDP, but are instead sent using unicast (known as HTTPU).

Conceptually, UPnP extends plug and play—a technology for dynamically attaching devices directly to a computer—to zero configuration networking for residential and SOHO wireless networks. UPnP devices are "plug and play" in that, when connected to a network, they automatically establish working configurations with other devices.UPnP is generally regarded as unsuitable for deployment in business settings for reasons of economy, complexity, and consistency: the multicast foundation makes it chatty, consuming too many network resources on networks with a large population of devices; the simplified access controls don't map well to complex environments; and it does not provide a uniform configuration syntax such as the CLI environments of Cisco IOS or JUNOS.

• http://blogs.computerworld.com/malware-and-vulnerabilities/21717/check-your-router-now-lex-luthor-does

• https://github.com/gryphius/port-forward - a simple command line utility to forward ports from your router to a host in the LAN.For this to work, the UPnP feature must be enabled on your router.

• https://github.com/kaklakariada/portmapper - Java tool for managing port forwardings via UPnP

• MiniUPnP - software which supports the UPnP Internet Gateway Device (IGD) specifications. NAT-PMP and PCP support was added to MiniUPnPd. For client side NAT-PMP support, use libnatpmp. The MiniUPnP daemon (MiniUPnPd) supports OpenBSD, FreeBSD, NetBSD, DragonFly BSD, (Open)Solaris and Mac OS X in combination with pf or ipfw (ipfirewall) or ipf and Linux with netfilter. The MiniUPnP client (MiniUPnPc) and MiniSSDPd are portable and should work on any POSIX system. MiniUPnPc also works under MS Windows and AmigaOS (version 3 and 4).
  • https://github.com/miniupnp/miniupnp

• pwnat - NAT to NAT client-server communication. A tool that allows any number of clients behind NATs to communicate with a server behind a separate NAT with *no* port forwarding *no* DMZ setup, and *no* 3rd party involvement. The server does not need to know anything about the clients trying to connect. Simply put, this is a proxy server that works behind a NAT, even when the client is behind a different NAT, without any 3rd party or network changes. There is no middle man, no proxy, no 3rd party, no UPnP/STUN/ICE required, no spoofing, and no DNS tricks. More importantly, the client can then connect to any host or port on any remote host or to a fixed host and port decided by the server. Researched and developed by Samy Kamkar. Read the paper, "Autonomous NAT Traversal", joint work with Christian Grothoff, Nathan S. Evans, and Andreas Müller published by IEEE at the IEEE P2P'10 Conference (bib, pdf) pwnat is based off of the UDP tunneling software by Daniel Meekins, udptunnel, and my original chownat.
  • https://github.com/samyk/pwnat

TCP

See also HTTP, SSH, Gopher

• TCP Port Scanner in Bash

traceroute -m 100 216.81.59.173
traceroute -m 120 216.81.59.173

• http://www.catonmat.net/blog/tcp-traceroute/

• http://internetcensus2012.bitbucket.org/paper.html

• http://pagekite.net/

• http://web.mit.edu/remy/

• http://datatracker.ietf.org/wg/mptcp/
  • http://multipath-tcp.org/ - linux
  • http://www.networkworld.com/news/2013/091913-ios7-multipath-273995.html - ios7

• RFC 1180 - TCP/IP tutorial - [2]

• https://github.com/royhills/tcp-scan

Tunnelling

• https://github.com/anderspitman/awesome-tunneling - List of ngrok alternatives and other ngrok-like tunneling software and services. Focus on self-hosting.

• https://github.com/apenwarr/sshuttle - Transparent proxy server that works as a poor man's VPN. Forwards over ssh. Doesn't require admin. Works with Linux and MacOS. Supports DNS tunneling.

• Localtunnel allows you to easily share a web service on your local development machine without messing with DNS and firewall settings. Localtunnel will assign you a unique publicly accessible url that will proxy all requests to your locally running webserver. [3]

• https://github.com/darkk/redsocks - allows you to redirect any TCP connection to SOCKS or HTTPS proxy using your firewall, so redirection is system-wide. Why is that useful? I can suggest following reasons: you use tor and don't want any TCP connection to leak. you use DVB ISP and this ISP provides internet connectivity with some special daemon that may be also called "Internet accelerator" and this accelerator acts as proxy. Globax is example of such an accelerator.

• https://github.com/ekzhang/bore - A modern, simple TCP tunnel in Rust that exposes local ports to a remote server, bypassing standard NAT connection firewalls.

Multipath

• MultiPath TCP - MPTCP, is an effort towards enabling the simultaneous use of several IP-addresses/interfaces by a modification of TCP that presents a regular TCP interface to applications, while in fact spreading data across several subflows. Benefits of this include better resource utilization, better throughput and smoother reaction to failures. Slides - explaining MultiPath TCP - are available in .pdf and .pptx format. You can also have a look at our Google Techtalk about MPTCP, or the MultiPath TCP tutorial given by Olivier Bonaventure at the IETF87.

• OpenMPTCProuter - Internet connection bonding - Home - use MultiPath TCP (MPTCP) to really aggregate multiple Internet connections and OpenWrt.
  • https://github.com/Ysurac/openmptcprouter

SCTP

• https://en.wikipedia.org/wiki/Stream_Control_Transmission_Protocol - a computer networking communications protocol which operates at the transport layer and serves a role similar to the popular protocols TCP and UDP. It is standardized by IETF in RFC 4960. SCTP provides some of the features of both UDP and TCP: it is message-oriented like UDP and ensures reliable, in-sequence transport of messages with congestion control like TCP. It differs from those protocols by providing multi-homing and redundant paths to increase resilience and reliability. In the absence of native SCTP support in operating systems, it is possible to tunnel SCTP over UDP, as well as to map TCP API calls to SCTP calls so existing applications can use SCTP without modification. The reference implementation was released as part of FreeBSD version 7. It has since been widely ported.

• What went wrong: SCTP - [4]

• Why was SCTP Selected for WebRTC’s Data Channel? - [5]

DCCP

• https://en.wikipedia.org/wiki/Datagram_Congestion_Control_Protocol

• https://www.anmolsarma.in/post/dccp/ [6]

PGM

• https://en.wikipedia.org/wiki/Pragmatic_General_Multicast - a reliable multicast computer network transport protocol. PGM provides a reliable sequence of packets to multiple recipients simultaneously, making it suitable for applications like multi-receiver file-transfer.Multicast is a network addressing method for the delivery of information to a group of destinations simultaneously using the most efficient strategy to deliver the messages over each link of the network only once, creating copies only when the links to the multiple destinations split (typically network switches and routers). However, like the User Datagram Protocol, multicast does not guarantee the delivery of a message stream. Messages may be dropped, delivered multiple times, or delivered out of order. A reliable multicast protocol, like PGM, adds the ability for receivers to detect lost and/or out-of-order messages and take corrective action (similar in principle to TCP), resulting in a gap-free, in-order message stream.

• RFC 3208 - PGM Reliable Transport Protocol Specification

• Google Code Archive - Long-term storage for Google Code Project Hosting.

• PGM Router Assist - Cisco Systems

Other

• http://notcp.io/ [7]

• Secure Socket Funneling (SSF) is a network tool and toolkit. It provides simple and efficient ways to forward data from multiple sockets (TCP or UDP) through a single secure TLS link to a remote computer. [8]

• https://github.com/zrm/snow [9]

• https://github.com/tylertreat/comcast - Simulating shitty network connections so you can build better systems.

• https://github.com/fastos/tcpdive

• https://github.com/pi-hole/pi-hole [10] [11]
  • How a Single Raspberry PI made my Home Network Faster [12]

• http://www.openonload.org - a high performance network stack from Solarflare that dramatically reduces latency and cpu utilisation, and increases message rate and bandwidth. OpenOnload runs on Linux and supports TCP/UDP/IP network protocols with the standard BSD sockets API, and requires no modifications to applications to use. It achieves performance improvements in part by performing network processing at user-level, bypassing the OS kernel entirely on the data path. Networking performance is improved without sacrificing the security and multiplexing functions that the OS kernel normally provides.

QUIC

• https://www.chromium.org/quic

• https://blog.apnic.net/2017/12/12/internet-protocols-changing/

• https://en.wikipedia.org/wiki/QUIC

• https://github.com/n0-computer/dumbpipe - an example to use iroh-net to create a dumb pipe to connect two machines with a QUIC connection.