In your previous mail you wrote:
This is a late comment but I think it is worth raising it.
=> as the gen-art reviewer of the document I'd like to
understand the comment.
This I-D recommends to log the source port number for
internet-facing servers. But due to the presence of load-balancers
in the path, the "original" source port may be lost. The source
port number that will be passed to the target server may not be
accurate and hence does not meet the initial requirment.
=> where are these load-balancers and as they perform a NAT function
why they don't log mappings they create? Or if they are placed in
front of servers why they are not integrated in the logging system?
Regards
Francis(_dot_)Dupont(_at_)fdupont(_dot_)fr
_______________________________________________
Ietf mailing list
Ietf(_at_)ietf(_dot_)org
https://www.ietf.org/mailman/listinfo/ietf