[41387] in North American Network Operators' Group
Re[3]: Where NAT disenfranchises the end-user ... )
daemon@ATHENA.MIT.EDU (Richard Welty)
Fri Sep 7 15:58:37 2001
Date: Fri, 7 Sep 2001 15:59:41 -0400 (Eastern Daylight Time)
From: Richard Welty <rwelty@averillpark.net>
To: Jon Mansey <jon_mansey@verestar.com>, nanog@merit.edu
MIME-Version: 1.0
Content-Type: TEXT/PLAIN; CHARSET=US-ASCII
Content-Disposition: INLINE
In-Reply-To: <a0510032bb7bed2959e7a@[10.200.186.50]>
Message-Id: <E15fRlO-0006hT-00@krusty-motorsports.com>
Errors-To: owner-nanog-outgoing@merit.edu
On Fri, 7 Sep 2001 12:44:21 -0700 Jon Mansey <jon_mansey@verestar.com> wrote:>
> NM, along with IPsec are examples of apps that dont play well here,
> but thats the point, they are apps that have not been written with
> the real world in mind, ie that a good proportion of the edge these
> days is behind NAT.
data communications security types would argue that NAT breaks data
integrity and authentication features that are rather important.
end-to-end characteristics are probably more crucial in this context
than any other.
richard
--
Richard Welty Averill Park Networking
rwelty@averillpark.net 518-573-7592
