[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]

Re: on NAT-PT

To: itojun@iijlab.net
Subject: Re: on NAT-PT
From: Alain Durand <Alain.Durand@Sun.COM>
Date: Fri, 03 Jan 2003 13:32:52 -0800
Cc: v6ops@ops.ietf.org
References: <20021224022552.D39C64B27@coconut.itojun.org>
User-agent: Mozilla/5.0 (X11; U; SunOS sun4u; en-US; rv:1.0.1) Gecko/20020920Netscape/7.0

itojun@iijlab.net wrote:

you have been ignoring my comment (i made this comment months ago)
to use "AD is secure" for the response from DNS-ALG.

Let met get back to this now.

The fundamental issue is that nodes do not know
about the potential presence of a DNS ALG,
so they can not decide if it is OK to do recursive
queries themselves or if they have to use "AD is secure"
and send DNS queries to a trusted recursive resolver.

   - Alain.

Next by Date: co-chair
Next by thread: Re: on NAT-PT
Index(es):
- Date
- Thread