ietf
[Top] [All Lists]
<prev [Date] next>
[Advanced]
 <prev [Thread] next>

Re: Domain Centric Administration, RE: draft-ietf-v6ops-natpt-to-historic-00.txt

2007-07-03 09:57:42
from [Joel Jaeggli] [Permanent Link] 
Keith Moore wrote:


word I hear is that Vista's enabling of such technologies is causing
problems for enterprise networks because their traffic filters and
intrusion detectors aren't set up to handle them.


It is trivial to filter teredo (knock down udp 3544) and I think you can
rest assured that enterprises are having no trouble doing so.
Organizations with internal default deny policies break teredo just like
they do everything else (I'm not advocating a position, just making an
observation).

If you want to selectively apply policy to packets inside encapsulated
teredo connections between clients you're going to have to do some work
(this applies generically to any tunneled protocol).

http://tools.ietf.org/html/draft-hoagland-v6ops-teredosecconcerns-00#section-3

joelja



_______________________________________________
Ietf mailing list
Ietf(_at_)ietf(_dot_)org
https://www1.ietf.org/mailman/listinfo/ietf




_______________________________________________
Ietf mailing list
Ietf(_at_)ietf(_dot_)org
https://www1.ietf.org/mailman/listinfo/ietf
[More with this subject...]
<Prev in Thread] Current Thread [Next in Thread>
Previous by Date:  RE: Domain Centric Administration, RE: draft-ietf-v6ops-natpt-to-historic-00.txt, Hallam-Baker, Phillip
Next by Date:  Re: Domain Centric Administration, RE: draft-ietf-v6ops-natpt-to-historic-00.txt, Jun-ichiro itojun Hagino
Previous by Thread:  Re: Domain Centric Administration, RE: draft-ietf-v6ops-natpt-to-historic-00.txt, Keith Moore
Next by Thread:  Re: Domain Centric Administration, RE: draft-ietf-v6ops-natpt-to-historic-00.txt, Jun-ichiro itojun Hagino
Indexes:  [Date] [Thread] [Top] [All Lists]