[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]
Re: draft-durand-v6ops-natv4v6v4
On Mar 11, 2008, at 14:21, Dan Wing wrote:
Another approach to avoid the NAT-behind-NAT situation is to have the
deeper NAT function as a bridge.
I am interpreting the "Double IPv4->IPv4->IPv4 NAT" scenario as one
where the ISP assigns only one RFC1918 IPv4 address to each customer
site, which are then expected to use IPv4/NAT to share that address
for more than host on the customer network.
If ISP's are willing to assign a sufficiently large number of RFC1918
IPv4 addresses to each customer site that all the nodes can be
addressed within the ISP's routing realm and protected from the WAN by
stateful filtering IPv4 firewalls instead of NAT, then this *isn't*
the "Double IPv4->IPv4->IPv4 NAT" scenario described in the draft, but
rather another one that doesn't seem covered in the current text.
--
james woodyatt <jhw@apple.com>
member of technical staff, communications engineering