Re: R41 in draft-ietf-v6ops-cpe-simple-security-07

[james woodyatt <jhw@apple.com>]

On Aug 4, 2009, at 23:44, Rémi Denis-Courmont wrote:
> On Tue, 4 Aug 2009 15:57:34 -0700, james woodyatt <jhw@apple.com>  
> wrote:
> > [...] The point of allowing passive listeners to solicit any-source  
> > incoming flows with something like ALD has *always* been to make  
> > more wasteful techniques like RFC 5389 modulo NAT completely  
> > unnecessary.  Does this need to be spelled out more clearly in the  
> > draft?
>
> From this discussion, I guess so.

Sigh.  Okay, I'll whip something up.

> You might mention that RFC5389 only works for UDP while at it.

Section 2 [page 4] seems to disagree.

> > The on-the-wire protocol described here is changed only slightly  
> > from classic STUN.  The protocol now runs over TCP in addition to  
> > UDP.


--
james woodyatt <jhw@apple.com>
member of technical staff, communications engineering