[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]

Re: The argument for writing a general purpose NAT for IPv6

To: IETF V6OPS WG <v6ops@ops.ietf.org>
Subject: Re: The argument for writing a general purpose NAT for IPv6
From: james woodyatt <jhw@apple.com>
Date: Wed, 18 Apr 2007 15:45:40 -0700
In-reply-to: <20070418223532.GG63243@Space.Net>
References: <200704130208.l3D28UWs017668@cichlid.raleigh.ibm.com> <200704182205.03259@auguste.remlab.net> <A9D00A8B-66BD-4BEC-80E3-847EDEEB7AB9@apple.com> <200704182307.32441@auguste.remlab.net> <20070418223532.GG63243@Space.Net>

On Apr 18, 2007, at 15:35, Gert Doering wrote:

I share the sentiment that "unmanaged networks and statefulfirewalls" is a problematic scenario, but it seems that this iswhat we *have* (due to not-so-well informed decision processes).

I don't think I would agree with this characterization of how we havearrived at the present situation. As the authors of draft-ietf-naphave noted, the situation is the result of the most informedcommunity of Internet experts in the world, the IETF, recognizing itsown technical consensus about the need for stateful firewalls inresidential gateways.

If anything, I would have to accept my share of personalresponsibility for my involvement in allowing Apple to ship the firstrelease of firmware for the AirPort Extreme base station *without*the stateful firewall protecting its unmanaged local network. Thiswas clearly an uninformed decision, and Apple was roundly disparagedin the technical press for it-- presumably by well-informed critics.This mistake might have been avoided if I had seen draft-ietf-napsooner than I did.


--
j h woodyatt <jhw@apple.com>

Follow-Ups:
- Re: The argument for writing a general purpose NAT for IPv6
  - From: Gert Doering <gert@space.net>

References:
- Re: IPv6-PMP?
  - From: Thomas Narten <narten@us.ibm.com>
- Re: The argument for writing a general purpose NAT for IPv6
  - From: Rémi Denis-Courmont <rdenis@simphalempin.com>
- Re: The argument for writing a general purpose NAT for IPv6
  - From: james woodyatt <jhw@apple.com>
- Re: The argument for writing a general purpose NAT for IPv6
  - From: Rémi Denis-Courmont <rdenis@simphalempin.com>
- Re: The argument for writing a general purpose NAT for IPv6
  - From: Gert Doering <gert@space.net>

Prev by Date: Re: The argument for writing a general purpose NAT for IPv6
Next by Date: Re: The argument for writing a general purpose NAT for IPv6
Previous by thread: Re: The argument for writing a general purpose NAT for IPv6
Next by thread: Re: The argument for writing a general purpose NAT for IPv6
Index(es):
- Date
- Thread