DL> Port/Overload NAT for IPv4 (NAT:P) has security benefits
> in that it requires explicit configuration to allow for
> inbound unsolicited transport connections (via port forwarding)
> to 'inside' hosts.
Perhaps you missed this statement from
<http://www.ietf.org/internet-drafts/draft-mrw-behave-nat66-01.txt>
NAT66 devices that comply with
this specification MUST NOT perform port mapping.
Nope, that's why I was specific in saying 'IPv4' above. I was trying to
provide an example for how NAT that do port overloading in IPv4 have
implicit security benefits.
-Darrel
_______________________________________________
Ietf mailing list
Ietf(_at_)ietf(_dot_)org
https://www.ietf.org/mailman/listinfo/ietf