[e2e] 100% NAT - a DoS proof internet

Joe Touch touch at ISI.EDU
Wed Feb 22 07:32:07 PST 2006



Saikat Guha wrote:
> On Tue, 2006-02-21 at 22:07 -0800, Joe Touch wrote:
>> IDs need to be in the packets. However, that
>> just invites NA(P)T designers to evolve to NAPNT (add name translation).
> 
> NATs (not counting firewalls) are used to extend the IPv4 address space.
> The address space for "names" is infinite. Is there a motivation behind
> designing or deploying name-translation devices?

NATs make everything behind them look like one host. That hides the
topology of an enterprise, and defeats incoming services (the latter
exactly what we're trying to undo).

Some people want them for those two reasons.

Joe


More information about the end2end-interest mailing list