On 06/25/2014 07:55 AM, Brian Trammell wrote:
Network address translation is simply an expedient technique to
tease a few more bits out of the address space by hiding those bits
in transient state kept along the path. The assumption that it is
somehow hard to store or reconstruct that transient state is simply
incorrect.
As a method for protecting privacy, NAT is privacy theater, full
stop.
I'd go a step further. Given that address translation needs things like
CGN, STUN, uPnP and portforwarding to get the most basic of things
working, I think the whole picture gives you less privacy and security
than a completely untranslated end-to-end world does.
BTW, now that Microsoft is finally feeling some actual pain due to a
lack of new addresses in their azure cloud, perhaps there is some hope
that some big parties are finally starting to move.
BTW2, tbh i think calling it 32 vs 64/128 bits 'internet' will make it
even more confusing. I'd prefer something like 'ye olde obsolete
adressing'.
Jelte