CGN fixed/hashed nat question
Simon Perreault
simon.perreault at viagenie.ca
Wed Jan 23 15:54:45 UTC 2013
Le 2013-01-23 16:37, William Herrin a écrit :
>> NAT traversal using port prediction is a Worst Current Practice.
>
> In fact, were someone to use those "worst current practices" to build
> some generic p2p VPN software, even old games could leverage it to
> allow someone behind a CGN to host.
Have a look at this:
http://tools.ietf.org/html/draft-ietf-behave-lsn-requirements
These are the IETF's requirements for CGNs. The intent is to provide
guidelines to vendors so that their CGNs can be as harmless as possible.
A CGN that obeys these requirements will allow NAT traversal by virtue
of having an Endpoint-Independent Mapping behaviour. That is the BCP.
Not port prediction.
Simon
More information about the NANOG
mailing list