[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]

Re: Edits to Teredo Security concerns

To: Jim Hoagland <jim_hoagland@symantec.com>, Suresh Krishnan <suresh.krishnan@ericsson.com>, v6ops@ops.ietf.org
Subject: Re: Edits to Teredo Security concerns
From: Rémi Denis-Courmont <rdenis@simphalempin.com>
Date: Sun, 8 Jul 2007 12:03:34 +0300
In-reply-to: <C2B3BD2A.3B5BA%jim_hoagland@symantec.com>
Organization: Remlab.net
References: <C2B3BD2A.3B5BA%jim_hoagland@symantec.com>
User-agent: KMail/1.9.7

Le vendredi 6 juillet 2007, vous avez écrit :
> I think perhaps I should say what the goal is with inspection:  to be
> able to apply the same content inspection as is done for native IPv4
> or IPv6 to Teredo.  This content inspection could be done in a
> firewall, IDS, router, etc.  Content in this case meaning the layer
> 3+ part of the communication (as opposed to tunnel overhead).
>
> This inspection requires the ability to find the content.  That is
> straightforward for native IPv4 or IPv6, but is expensive to do for
> Teredo tunneled content.

Thanks for the clarification. I think my confusion is a testimony to the 
need to clarify the document anyway.

Regards,

-- 
Rémi Denis-Courmont
http://www.remlab.net/

Attachment: signature.asc
Description: This is a digitally signed message part.

Follow-Ups:
- RE: Edits to Teredo Security concerns
  - From: Christian Huitema <huitema@windows.microsoft.com>

References:
- Re: Edits to Teredo Security concerns
  - From: Jim Hoagland <jim_hoagland@symantec.com>

Prev by Date: Re: Edits to Teredo Security concerns
Next by Date: RE: Edits to Teredo Security concerns
Previous by thread: Re: Edits to Teredo Security concerns
Next by thread: RE: Edits to Teredo Security concerns
Index(es):
- Date
- Thread