Re: [BEHAVE] Lack of need for 66nat : Long term impact to applicationdevelopers

From: Fred Baker <fred at cisco.com>
To: "<michael.dillon at bt.com>" <michael.dillon at bt.com>
Cc: iab at ietf.org, ietf at ietf.org, iesg at ietf.org
Date: Sat, 29 Nov 2008 16:35:19 -0800
In-reply-to: <C0F2465B4F386241A58321C884AC7ECC09A02E6E at E03MVZ2-UKDY.domain1.systemhost.net>
References: <C0F2465B4F386241A58321C884AC7ECC09A02E6E at E03MVZ2-UKDY.domain1.systemhost.net>

Did you review the slides I discussed during the behave working groupmeeting as to what I view as the principal value of the technology? Ifnot, may I suggest that you obtain them from

    ftp://ftpeng.cisco.com/fred/gse/behave-nat66-gse.pdf

At this point, given the amount of discussion that has happened thatpresumes that "we", for some definition of that term, are wise, smart,and good, and everyone else (in your email, those thieving greedyvendors), without taking into account the written statements or thediscussion that happened in the working group meeting (which is theemail address you conveniently dropped from the thread), I am at aloss for words.

Take time to find out what I took time to tell people about mymotivations. Then, and only then, sit in judgement.

As a matter of fact, the IETF is looking very hard at solutions to theproblem I raise and has for the past several years been veryexplicitly reaching out to operators and others. A GSE/8+8 approach,which is the root of several proposed solutions in that area, can'twork without the components fundamental to it, one of which is a NAT.

On Nov 26, 2008, at 1:27 AM, <michael.dillon at bt.com> <michael.dillon at bt.com> wrote:

Yeah, but we're trying to get rid of that stuff, or at least
considerably reduce the cost and complexity, because (among other
things) it presents a huge barrier to adoption of new multipartyapps.


Promoters of NAT, particularly vendors, seem to have a two-valued
view of the network in which inside is good and outside is evil.
But network operators, who sit on the outside of the NAT,
do not share that view. In fact, we see a future in which
cloud computing centers within the network infrastructure
will lead to a wide variety of new multiparty applications.
In many cases the network operator also takes management
responsibility for gateway devices, so the idea of evil on
the outside is even further fetched.

That said, if there is to be some form of NAT66 because there
are real requirements elsewhere, it would be preferable if
the defined default state of this NAT66 was to *NOT* translate
addresses. This is not crazy if you see it in the context
of a NAT device which includes stateful firewalling.

I suggest that if part of the problem is an excess of
pressure from vendors, then the IETF could resolve this
by actively seeking greater input from other stakeholders
such as network operators.

--Michael Dillon
_______________________________________________
Ietf mailing list
Ietf at ietf.org
https://www.ietf.org/mailman/listinfo/ietf


_______________________________________________
Ietf mailing list
Ietf at ietf.org
https://www.ietf.org/mailman/listinfo/ietf

References:
- RE: [BEHAVE] Lack of need for 66nat : Long term impact to applicationdevelopers
  - From: michael.dillon

Prev by Date: Re: [BEHAVE] Lack of need for 66nat : Long term impact to applicationdevelopers
Next by Date: Re: The internet architecture
Previous by thread: Re: The internet architecture
Next by thread: Re: [BEHAVE] Lack of need for 66nat : Long term impact to application developers
Index(es):
- Date
- Thread

Note Well: Messages sent to this mailing list are the opinions of the senders and do not imply endorsement by the IETF.

Re: [BEHAVE] Lack of need for 66nat : Long term impact to applicationdevelopers

Note: Messages sent to this list are the opinions of the senders and do not imply endorsement by the IETF.