ietf
[Top] [All Lists]
<prev [Date] next>
[Advanced]
 <prev [Thread] next>

RE: [BEHAVE] Can we have on NAT66 discussion?

2008-11-17 12:30:04
from [Darrel Lewis (darlewis)] [Permanent Link] 



DL> Port/Overload NAT for IPv4 (NAT:P) has security benefits
  > in that it requires explicit configuration to allow for
  > inbound unsolicited transport connections (via port forwarding)
  > to 'inside' hosts.

Perhaps you missed this statement from
<http://www.ietf.org/internet-drafts/draft-mrw-behave-nat66-01.txt>

   NAT66 devices that comply with
   this specification MUST NOT perform port mapping.



Nope, that's why I was specific in saying 'IPv4' above.  I was trying to
provide an example for how NAT that do port overloading in IPv4 have
implicit security benefits.


-Darrel
_______________________________________________
Ietf mailing list
Ietf(_at_)ietf(_dot_)org
https://www.ietf.org/mailman/listinfo/ietf
[More with this subject...]
<Prev in Thread] Current Thread [Next in Thread>
Previous by Date:  Re: Audio Streaming - IETF 73 November 16-21, 2008, Joel Jaeggli
Next by Date:  Re: several messages, Rich Kulawiec
Previous by Thread:  RE: [BEHAVE] Can we have on NAT66 discussion?, michael.dillon
Next by Thread:  Re: [BEHAVE] Can we have on NAT66 discussion?, Margaret Wasserman
Indexes:  [Date] [Thread] [Top] [All Lists]