IETF Logo Mail Archive

Re: increasing DNS message entropy, a solution for NATs

Masataka Ohta <mohta@necom830.hpcl.titech.ac.jp> Thu, 31 July 2008 04:35 UTC

Return-Path: <owner-namedroppers@ops.ietf.org>
X-Original-To: ietfarch-namedroppers-archive-gleetwall6@core3.amsl.com
Delivered-To: ietfarch-namedroppers-archive-gleetwall6@core3.amsl.com
Received: from localhost (localhost [127.0.0.1]) by core3.amsl.com (Postfix) with ESMTP id 96E9B3A6C1D; Wed, 30 Jul 2008 21:35:09 -0700 (PDT)
X-Virus-Scanned: amavisd-new at amsl.com
X-Spam-Flag: NO
X-Spam-Score: 0.196
X-Spam-Level:
X-Spam-Status: No, score=0.196 tagged_above=-999 required=5 tests=[BAYES_00=-2.599, FH_RELAY_NODNS=1.451, HELO_EQ_JP=1.244, RDNS_NONE=0.1]
Received: from mail.ietf.org ([64.170.98.32]) by localhost (core3.amsl.com [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id DOCIbLmAsRzb; Wed, 30 Jul 2008 21:35:08 -0700 (PDT)
Received: from psg.com (psg.com [IPv6:2001:418:1::62]) by core3.amsl.com (Postfix) with ESMTP id 124DA3A67AF; Wed, 30 Jul 2008 21:35:08 -0700 (PDT)
Received: from majordom by psg.com with local (Exim 4.69 (FreeBSD)) (envelope-from <owner-namedroppers@ops.ietf.org>) id 1KOPns-000EEV-Kf for namedroppers-data@psg.com; Thu, 31 Jul 2008 04:30:16 +0000
Received: from [131.112.32.132] (helo=necom830.hpcl.titech.ac.jp) by psg.com with smtp (Exim 4.69 (FreeBSD)) (envelope-from <mohta@necom830.hpcl.titech.ac.jp>) id 1KOPnn-000EDt-RO for namedroppers@ops.ietf.org; Thu, 31 Jul 2008 04:30:14 +0000
Received: (qmail 22611 invoked from network); 31 Jul 2008 05:16:28 -0000
Received: from vaio.hpcl.titech.ac.jp (HELO necom830.hpcl.titech.ac.jp) (131.112.32.134) by necom830.hpcl.titech.ac.jp with SMTP; 31 Jul 2008 05:16:28 -0000
Message-ID: <48913FA1.5010501@necom830.hpcl.titech.ac.jp>
Date: Thu, 31 Jul 2008 13:29:21 +0900
From: Masataka Ohta <mohta@necom830.hpcl.titech.ac.jp>
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 5.1; ja-JP; rv:1.4) Gecko/20030624 Netscape/7.1 (ax)
X-Accept-Language: ja, en
MIME-Version: 1.0
To: Ben Laurie <ben@links.org>
CC: Roy Arends <roy@nominet.org.uk>, namedroppers@ops.ietf.org, Alessandro.Linari@nominet.org.uk
Subject: Re: increasing DNS message entropy, a solution for NATs
References: <OF6B63EC19.5E0A6D58-ON8025748D.003A54A9-C125748D.003E1133@nominet.org.uk> <488517CE.6060404@necom830.hpcl.titech.ac.jp> <4891381B.1070400@links.org>
In-Reply-To: <4891381B.1070400@links.org>
Content-Type: text/plain; charset="us-ascii"
Content-Transfer-Encoding: 7bit
Sender: owner-namedroppers@ops.ietf.org
Precedence: bulk
List-ID: <namedroppers.ops.ietf.org>

Ben Laurie wrote:

>> What? Resolvers behind NAT/PAT are directly talking to authoritative
>> servers?

> Why not?

Because various NAT/PAT gateways put all the possible and impossible
modificaitons on certain, including DNS, packets that there is virtually
no directness expected.

> And on the question of NAT randomness: http://www.links.org/?p=352.

That is one, among so many, example of indirectness of NAT.

						Masataka Ohta



--
to unsubscribe send a message to namedroppers-request@ops.ietf.org with
the word 'unsubscribe' in a single line as the message text body.
archive: <http://ops.ietf.org/lists/namedroppers/>

v2.45.0 | Report a Bug | By Email | System Status