[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]
Re: on NAT-PT
>>> To minimize the problems associated with NAPT-PT, the following=20
>>> actions are recommended: =20
>>> 1. Separate the DNS ALG from the NAPT-PT node.=20
>> (1) is not correct. NAT-PT RFC does not specify where to place =
>>DNS-ALG.
>> DNS-ALG and NAT-PT translation part can reside on different boxes.
>> when there's only one IPv4 address available to the site, there's no
>> other choice than to collocate DNS-ALG and the translation part.
>> (RFC2766 seems to talk about this situation only, which might be
>> the source of the confusion)
>JW: OK... What would be your (text) suggestion; forgetting this
>recommendation? Alain D. commented in his mail that the DNS-ALG part in
>the "v6 to v4" case needs to removed from the NAT-PT document.
depends on what do you really mean by "separate". if you mean that
DNS-ALG functionality has to reside onto separate box from NAT-PT
translation functionality, it is already part of NAT-PT spec (so
you can drop this bullet).
it looks that you mean something else, like avoiding the use of
DNS-ALG from NAT-PT (= alter NAT-PT spec). i don't see real technical
ground for that.
itojun