Re: I-D Action:draft-rosenberg-internet-waist-hourglass-00.txt]

To: Christian Huitema <huitema at windows.microsoft.com>
Subject: Re: I-D Action:draft-rosenberg-internet-waist-hourglass-00.txt]
From: Iljitsch van Beijnum <iljitsch at muada.com>
Date: Thu, 14 Feb 2008 15:58:50 +0100
Cc: Harald Alvestrand <harald at alvestrand.no>, "Joel M. Halpern" <jmh at joelhalpern.com>, IETF discussion list <ietf at ietf.org>, Jonathan Rosenberg <jdrosen at cisco.com>, james woodyatt <jhw at apple.com>
Delivered-to: ietfarch-ietf-web-archive at core3.amsl.com
Delivered-to: ietf at core3.amsl.com
In-reply-to: <AFE0AC8DCDE68842B94E8EC69D5F21D639F32DA3CB at NA-EXMSG-W602.wingroup.windeploy.ntdev.microsoft.com>
List-help: <mailto:ietf-request@ietf.org?subject=help>
List-id: IETF-Discussion <ietf.ietf.org>
List-post: <mailto:ietf@ietf.org>
List-subscribe: <http://www.ietf.org/mailman/listinfo/ietf>, <mailto:ietf-request@ietf.org?subject=subscribe>
List-unsubscribe: <http://www.ietf.org/mailman/listinfo/ietf>, <mailto:ietf-request@ietf.org?subject=unsubscribe>
References: <47B2B315.7050107 at gmx.net> <158a01c86e3b$dbd9d0b0$6401a8c0 at china.huawei.com> <47B2F421.2080009 at cisco.com> <47B313F3.2030506 at joelhalpern.com> <47B33A89.7060903 at cisco.com> <47B365D3.7080704 at joelhalpern.com> <2E49B1922C345DE567E5EBDF at B50854F0A9192E8EC6CDA126> <47B44E0A.3040802 at cisco.com> <AFE0AC8DCDE68842B94E8EC69D5F21D639F32DA3CB at NA-EXMSG-W602.wingroup.windeploy.ntdev.microsoft.com>
Sender: ietf-bounces at ietf.org

On 14 feb 2008, at 15:51, Christian Huitema wrote:

> We don't see NAT on IPv6. However, we do see "statefull firewalls",  
> and they have the same practical effect. They block any conversation  
> if it was not originated "from inside the network", and for that  
> they look at TCP and UDP port numbers. In practice, I expect that  
> IPv6 applications will have to be designed to work over UDP & use an  
> IPv6 variation of STUN to "open the firewall". So, even with IPv6,  
> Jonathan's statement is likely to stand.

Disagree. There is no reason why a stateful firewall would have an  
easier time tracking UDP state than any other non-TCP state when there  
is no address translation.
_______________________________________________
Ietf mailing list
Ietf at ietf.org
http://www.ietf.org/mailman/listinfo/ietf

Follow-Ups:
- Re: I-D Action:draft-rosenberg-internet-waist-hourglass-00.txt]
  - From: Spencer Dawkins
- Re: I-D Action:draft-rosenberg-internet-waist-hourglass-00.txt]
  - From: Melinda Shore

References:
- [Fwd: I-D Action:draft-rosenberg-internet-waist-hourglass-00.txt]
  - From: Hannes Tschofenig
- Re: I-D Action:draft-rosenberg-internet-waist-hourglass-00.txt]
  - From: Spencer Dawkins
- Re: I-D Action:draft-rosenberg-internet-waist-hourglass-00.txt]
  - From: Jonathan Rosenberg
- Re: I-D Action:draft-rosenberg-internet-waist-hourglass-00.txt]
  - From: Joel M. Halpern
- Re: I-D Action:draft-rosenberg-internet-waist-hourglass-00.txt]
  - From: Jonathan Rosenberg
- Re: I-D Action:draft-rosenberg-internet-waist-hourglass-00.txt]
  - From: Joel M. Halpern
- Re: I-D Action:draft-rosenberg-internet-waist-hourglass-00.txt]
  - From: Harald Tveit Alvestrand
- Re: I-D Action:draft-rosenberg-internet-waist-hourglass-00.txt]
  - From: Jonathan Rosenberg
- RE: I-D Action:draft-rosenberg-internet-waist-hourglass-00.txt]
  - From: Christian Huitema

Prev by Date: Re: I-D Action:draft-rosenberg-internet-waist-hourglass-00.txt]
Next by Date: Re: I-D Action:draft-rosenberg-internet-waist-hourglass-00.txt]
Previous by thread: RE: I-D Action:draft-rosenberg-internet-waist-hourglass-00.txt]
Next by thread: Re: I-D Action:draft-rosenberg-internet-waist-hourglass-00.txt]
Index(es):
- Date
- Thread

Note Well: Messages sent to this mailing list are the opinions of the senders and do not imply endorsement by the IETF.

Re: I-D Action:draft-rosenberg-internet-waist-hourglass-00.txt]

Note: Messages sent to this list are the opinions of the senders and do not imply endorsement by the IETF.