Re: Domain Centric Administration, RE: draft-ietf-v6ops-natpt-to-historic-00.txt
"Stephen Sprunk" <stephen@sprunk.org> Wed, 04 July 2007 01:01 UTC
Return-path: <ietf-bounces@ietf.org>
Received: from [127.0.0.1] (helo=stiedprmman1.va.neustar.com) by megatron.ietf.org with esmtp (Exim 4.43) id 1I5tFQ-000435-Ms; Tue, 03 Jul 2007 21:01:36 -0400
Received: from [10.91.34.44] (helo=ietf-mx.ietf.org) by megatron.ietf.org with esmtp (Exim 4.43) id 1I5tFP-00042u-Gu for ietf@ietf.org; Tue, 03 Jul 2007 21:01:35 -0400
Received: from ns2.sea.ygnition.net ([66.135.144.2] helo=ns2.ygnition.com) by ietf-mx.ietf.org with esmtp (Exim 4.43) id 1I5tFL-0002tM-3V for ietf@ietf.org; Tue, 03 Jul 2007 21:01:35 -0400
Received: from ssprunkxp (ip55.post-vineyard.dfw.ygnition.net [24.219.179.55]) by ns2.ygnition.com (8.13.6/8.13.5) with SMTP id l6411MmQ018764; Tue, 3 Jul 2007 18:01:24 -0700
Message-ID: <096f01c7bdd6$cb141350$543816ac@atlanta.polycom.com>
From: Stephen Sprunk <stephen@sprunk.org>
To: Melinda Shore <mshore@cisco.com>, David Morris <dwm@xpasc.com>
References: <C2AF9E85.24BA3%mshore@cisco.com>
Date: Tue, 03 Jul 2007 19:58:13 -0500
MIME-Version: 1.0
Content-Type: text/plain; format="flowed"; charset="iso-8859-1"; reply-type="original"
Content-Transfer-Encoding: 7bit
X-Priority: 3
X-MSMail-Priority: Normal
X-Mailer: Microsoft Outlook Express 6.00.2900.3138
X-MimeOLE: Produced By Microsoft MimeOLE V6.00.2900.3138
X-Spam-Score: 0.1 (/)
X-Scan-Signature: 9466e0365fc95844abaf7c3f15a05c7d
Cc: ietf@ietf.org
Subject: Re: Domain Centric Administration, RE: draft-ietf-v6ops-natpt-to-historic-00.txt
X-BeenThere: ietf@ietf.org
X-Mailman-Version: 2.1.5
Precedence: list
List-Id: IETF-Discussion <ietf.ietf.org>
List-Unsubscribe: <https://www1.ietf.org/mailman/listinfo/ietf>, <mailto:ietf-request@ietf.org?subject=unsubscribe>
List-Post: <mailto:ietf@ietf.org>
List-Help: <mailto:ietf-request@ietf.org?subject=help>
List-Subscribe: <https://www1.ietf.org/mailman/listinfo/ietf>, <mailto:ietf-request@ietf.org?subject=subscribe>
Errors-To: ietf-bounces@ietf.org
Thus spake "Melinda Shore" <mshore@cisco.com> >> I have a lot more trust in the simplicity of a basic NAT in a >> consumer firewall then I do in any firewall which has to >> examine each packet for conformance to complex policy >> rules. > > "Drop all inbound traffic" is complex? AFAIK, there's exactly one consumer CPE device on the market that does IPv6 and it has a configuration option cleverly labelled "Block incoming IPv6 connections" which is checked by default. Perhaps he means Apple is overestimating users' intelligence by giving them a checkbox at all? Leaving it at the default setting is rather complicated, after all... Or perhaps he meant that an IPv4 NAT which has to do stateful packet inspection plus mangling both the packet headers and occasionally mangling packet payloads is less complicated than a IPv6 firewall that just has to do stateful inspection and either drop the packet or forward it without any mangling at all? S Stephen Sprunk "Those people who think they know everything CCIE #3723 are a great annoyance to those of us who do." K5SSS --Isaac Asimov _______________________________________________ Ietf mailing list Ietf@ietf.org https://www1.ietf.org/mailman/listinfo/ietf
- IPv6 transition technologies Jun-ichiro itojun Hagino
- Re: IPv6 transition technologies Paul Hoffman
- Re: IPv6 transition technologies John C Klensin
- Re: IPv6 transition technologies Paul Hoffman
- draft-ietf-v6ops-natpt-to-historic-00.txt Jun-ichiro itojun Hagino
- Re: IPv6 transition technologies Brian E Carpenter
- Re: IPv6 transition technologies Jun-ichiro itojun Hagino
- Domain Centric Administration, RE: draft-ietf-v6o… Hallam-Baker, Phillip
- Re: Domain Centric Administration, RE: draft-ietf… Jun-ichiro itojun Hagino
- RE: Domain Centric Administration, RE: draft-ietf… Hallam-Baker, Phillip
- Re: Domain Centric Administration, RE: draft-ietf… Melinda Shore
- RE: Domain Centric Administration, RE: draft-ietf… Hallam-Baker, Phillip
- Re: Domain Centric Administration, RE: draft-ietf… Melinda Shore
- Re: Domain Centric Administration, RE: draft-ietf… Jeffrey Hutzelman
- Re: Domain Centric Administration, RE: draft-ietf… Brian E Carpenter
- Re: Domain Centric Administration, RE: draft-ietf… John C Klensin
- Re: Domain Centric Administration, RE: draft-ietf… Jeroen Massar
- RE: Domain Centric Administration, RE: draft-ietf… Hallam-Baker, Phillip
- RE: Domain Centric Administration, RE: draft-ietf… Hallam-Baker, Phillip
- Re: Domain Centric Administration, RE: draft-ietf… Douglas Otis
- Re: Domain Centric Administration, RE: draft-ietf… Keith Moore
- Re: Domain Centric Administration, RE: draft-ietf… Keith Moore
- RE: Domain Centric Administration, RE: draft-ietf… Hallam-Baker, Phillip
- Re: Domain Centric Administration, RE: draft-ietf… Keith Moore
- RE: Domain Centric Administration, RE: draft-ietf… Hallam-Baker, Phillip
- Re: Domain Centric Administration, RE: draft-ietf… Mark Andrews
- Re: Domain Centric Administration, RE: draft-ietf… Jun-ichiro itojun Hagino
- RE: Domain Centric Administration, RE: draft-ietf… Jun-ichiro itojun Hagino
- Re: Domain Centric Administration, RE: draft-ietf… David Morris
- Re: Domain Centric Administration, RE: draft-ietf… Mark Andrews
- RE: Domain Centric Administration, RE: draft-ietf… Hallam-Baker, Phillip
- Re: Domain Centric Administration, RE: draft-ietf… Ned Freed
- Re: Domain Centric Administration, RE: draft-ietf… David Conrad
- Re: Domain Centric Administration, RE: draft-ietf… Keith Moore
- Re: Domain Centric Administration, RE: draft-ietf… Mark Andrews
- RE: Domain Centric Administration, RE: draft-ietf… SM
- RE: Domain Centric Administration, RE: draft-ietf… michael.dillon
- Re: Domain Centric Administration, RE: draft-ietf… Melinda Shore
- RE: Domain Centric Administration, RE: draft-ietf… Hallam-Baker, Phillip
- RE: Domain Centric Administration, RE: draft-ietf… Hallam-Baker, Phillip
- Re: Domain Centric Administration, RE: draft-ietf… Marshall Eubanks
- Re: Domain Centric Administration, RE: draft-ietf… Keith Moore
- Re: Domain Centric Administration, RE: draft-ietf… Jun-ichiro itojun Hagino
- Re: Domain Centric Administration, RE: draft-ietf… Keith Moore
- RE: Domain Centric Administration, RE: draft-ietf… Hallam-Baker, Phillip
- Re: Domain Centric Administration, RE: draft-ietf… Joel Jaeggli
- Re: Domain Centric Administration, RE: draft-ietf… Jun-ichiro itojun Hagino
- Re: Domain Centric Administration, RE: draft-ietf… Keith Moore
- Application knowledge of transport characteristic… Dave Crocker
- RE: Domain Centric Administration, RE: draft-ietf… Hallam-Baker, Phillip
- Re: Domain Centric Administration, RE: draft-ietf… Jun-ichiro itojun Hagino
- Re: Domain Centric Administration, RE: draft-ietf… Jun-ichiro itojun Hagino
- Re: Domain Centric Administration, RE: draft-ietf… Jun-ichiro itojun Hagino
- Re: Domain Centric Administration, RE: draft-ietf… Douglas Otis
- RE: Domain Centric Administration, RE: draft-ietf… Christian Huitema
- RE: Domain Centric Administration Hallam-Baker, Phillip
- Re: Domain Centric Administration, RE: draft-ietf… Stephen Sprunk
- RE: Domain Centric Administration, RE: draft-ietf… SM
- Re: Application knowledge of transport characteri… Tom.Petch
- Re: Application knowledge of transport characteri… Dave Crocker
- Re: Application knowledge of transport characteri… Lars Eggert
- Re: Application knowledge of transport characteri… Douglas Otis
- Re: Application knowledge of transport characteri… Michael Tuexen
- Re: Application knowledge of transport characteri… Stephane Bortzmeyer
- Re: Application knowledge of transport characteri… Douglas Otis
- RE: Application knowledge of transport characteri… Hallam-Baker, Phillip
- RE: Domain Centric Administration, RE: draft-ietf… Hallam-Baker, Phillip