[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]

Re: Review: draft-ietf-v6ops-nap-01.txt

To: v6ops@ops.ietf.org
Subject: Re: Review: draft-ietf-v6ops-nap-01.txt
From: Tim Chown <tjc@ecs.soton.ac.uk>
Date: Fri, 19 Aug 2005 08:16:11 +0100
In-reply-to: <00bd01c5a48c$6e67cbc0$0401a8c0@mtc.ki.se>
Mail-followup-to: v6ops@ops.ietf.org
References: <000e01c5a467$9afa7860$56646e0a@china.huawei.com> <00bd01c5a48c$6e67cbc0$0401a8c0@mtc.ki.se>
User-agent: Mutt/1.4i

On Fri, Aug 19, 2005 at 10:05:38AM +0300, Eric Klein wrote:
> 
> Part of what this draft was written to explain is that the concept of NAT as
> a security tool was very limited, and one that is better served by
> firewalls. The second concept of topology hiding (often confused with
> security) is one of the inherent features IPv6 by the use of Site-Local
> addresses.

I don't think 'site locals' (ULAs) hide topology, since ULA subnetting will
invariably mirror global subnetting.

One of the things that worries me about this draft is the suggestion to use
host based routing for topology hiding, or indeed permanent use of MIPv6,
as neither seems particularly attractive just to serve that purpose.

-- 
Tim/::1

Follow-Ups:
- Re: Review: draft-ietf-v6ops-nap-01.txt
  - From: Mark Smith <ipng@69706e6720323030352d30312d31340a.nosense.org>

References:
- RE: Review: draft-ietf-v6ops-nap-01.txt
  - From: chenhongfei <chenhongfei@huawei.com>
- Re: Review: draft-ietf-v6ops-nap-01.txt
  - From: "Eric Klein" <ericlklein@softhome.net>

Prev by Date: Re: Review: draft-ietf-v6ops-nap-01.txt
Next by Date: Re: New draft: "Link Adaptation for IPv6-in-IPv4 Tunnels"
Previous by thread: Re: Review: draft-ietf-v6ops-nap-01.txt
Next by thread: Re: Review: draft-ietf-v6ops-nap-01.txt
Index(es):
- Date
- Thread