Re: myth of the great transition (was US Defense Department forma lly ad

ietf

Re: myth of the great transition (was US Defense Department forma lly adopts IPv6)

2003-06-18 12:39:57


On Wednesday, June 18, 2003, at 12:59  PM, Hallam-Baker, Phillip wrote:

Not at all.

If you want to address denial of service issues you need protocol
enforcement points.

This sounds like you are equating a NAT box with a firewall, whichseems to be common.


I would like to know:
- Is a NAT box a protocol enforcement point?
- is it an EFFECTIVE protocol enforcement point?
- is a NAT a firewall? (many people seem to think it is ...)
- is a firewall a protocol enforcement point? (yes)
- does a protocol enforcement point, have to include a NAT?
- does an EFFECTIVE one have to include a NAT?

- is it even EASIER to enforce protocol issues with a NAT as opposed toother means?


simon

I really wish that the IETF
had designed a decent NAT box spec


that's an oxymoron.  the basic premis of NAT is fundamnetally broken.


--
www.simonwoodside.com -- 99% Devil, 1% Angel

[More with this subject...]

<Prev in Thread]	Current Thread	[Next in Thread>
Re: myth of the great transition (was US Defense Department forma lly adopts IPv6), (continued) Re: myth of the great transition (was US Defense Department forma lly adopts IPv6), James Seng Re: myth of the great transition (was US Defense Department forma lly adopts IPv6), Stephen Sprunk Re: myth of the great transition (was US Defense Department forma lly adopts IPv6), Michael Thomas Re: myth of the great transition (was US Defense Department forma lly adopts IPv6), Eric Rescorla Re: myth of the great transition (was US Defense Department forma lly adopts IPv6), Michael Thomas Re: myth of the great transition (was US Defense Department forma lly adopts IPv6), Eric Rescorla Re: myth of the great transition, S Woodside Re: myth of the great transition (was US Defense Department forma lly adopts IPv6), Michael Thomas Re: myth of the great transition (was US Defense Department forma lly adopts IPv6), Melinda Shore Re: myth of the great transition (was US Defense Department forma lly adopts IPv6), Kurt Erik Lindqvist Re: myth of the great transition (was US Defense Department forma lly adopts IPv6), S Woodside <= NATs are NOT Firewalls, Tomson Eric \(Yahoo.fr\) Re: NATs are NOT Firewalls, S Woodside Re: NATs are NOT Firewalls, Valdis . Kletnieks Re: NATs are NOT Firewalls, Daniel Senie Re: NATs are NOT Firewalls, Valdis . Kletnieks Re: NATs are NOT Firewalls, Dean Anderson Re: NATs are NOT Firewalls, S Woodside RE: myth of the great transition (was US Defense Department forma lly adopts IPv6), Putzolu, David Re: myth of the great transition (was US Defense Department forma lly adopts IPv6), Keith Moore Re: myth of the great transition, S Woodside

Previous by Date:	Re: myth of the great transition (was US Defense Department forma lly adopts IPv6), Keith Moore
Next by Date:	RE: myth of the great transition (was US Defense Department forma lly adopts IPv6), Putzolu, David
Previous by Thread:	Re: myth of the great transition (was US Defense Department forma lly adopts IPv6), Kurt Erik Lindqvist
Next by Thread:	NATs are NOT Firewalls, Tomson Eric \(Yahoo.fr\)
Indexes:	[Date] [Thread] [Top] [All Lists]