<html>
  <head>
    <meta http-equiv="Content-Type" content="text/html; charset=UTF-8">
  </head>
  <body>
    <p>It's okay though, because we freed up UDP/53 by moving DNS to
      TCP/443, so then we can move HTTPS to UDP/53.<br>
    </p>
    <div class="moz-cite-prefix">On 2/21/20 6:37 PM, Owen DeLong wrote:<br>
    </div>
    <blockquote type="cite"
      cite="mid:C382D4C4-2368-4BDB-9B13-DC7E68104FAF@delong.com">
      <meta http-equiv="Content-Type" content="text/html; charset=UTF-8">
      First we moved the entire internet to TCP/443.
      <div class=""><br class="">
      </div>
      <div class="">Now we propose moving it all to UDP/53.</div>
      <div class=""><br class="">
      </div>
      <div class="">
        <div class="">
          <div>What’s next? Why not simply eliminate port numbers
            altogether in favor of a single 16-bit client-side unique
            session identifier.</div>
          <div><br class="">
          </div>
          <div>Owen</div>
          <div><br class="">
            <blockquote type="cite" class="">
              <div class="">On Feb 21, 2020, at 15:20 , Matthew Petach
                <<a href="mailto:mpetach@netflight.com" class=""
                  moz-do-not-send="true">mpetach@netflight.com</a>>
                wrote:</div>
              <br class="Apple-interchange-newline">
              <div class="">
                <div dir="auto" class="">
                  <div class=""><br class="">
                    <br class="">
                    <div class="gmail_quote">
                      <div dir="ltr" class="gmail_attr">On Fri, Feb 21,
                        2020, 13:31 Łukasz Bromirski <<a
                          href="mailto:lukasz@bromirski.net" class=""
                          moz-do-not-send="true">lukasz@bromirski.net</a>>
                        wrote:<br class="">
                      </div>
                      <blockquote class="gmail_quote" style="margin:0 0
                        0 .8ex;border-left:1px #ccc
                        solid;padding-left:1ex"><br class="">
                      </blockquote>
                      <blockquote class="gmail_quote" style="margin:0 0
                        0 .8ex;border-left:1px #ccc
                        solid;padding-left:1ex">[...]<br class="">
                        <br class="">
                        Now… once we are aware, the only question is —
                        where we go from here?<br class="">
                        <br class="">
                        — <br class="">
                        ./<br class="">
                      </blockquote>
                    </div>
                  </div>
                  <div dir="auto" class=""><br class="">
                  </div>
                  <div dir="auto" class=""><br class="">
                  </div>
                  <div dir="auto" class="">Well, it's clear the UDP 443
                    experiment wasn't entirely successful.</div>
                  <div dir="auto" class=""><br class="">
                  </div>
                  <div dir="auto" class="">So clearly, it's time to use
                    the one UDP port that is allowed through at the top
                    of everyone's ACL rules, and update QUIC in the next
                    iteration to use UDP/53.</div>
                  <div dir="auto" class=""><br class="">
                  </div>
                  <div dir="auto" class="">*THAT* should solve the whole
                    problem, once and for all.</div>
                  <div dir="auto" class=""><br class="">
                  </div>
                  <div dir="auto" class="">;)</div>
                  <div dir="auto" class=""><br class="">
                  </div>
                  <div dir="auto" class="">Matt</div>
                  <div dir="auto" class=""><br class="">
                  </div>
                </div>
              </div>
            </blockquote>
          </div>
          <br class="">
        </div>
      </div>
    </blockquote>
  </body>
</html>