Skip site navigation (1)Skip section navigation (2) 
Date:      Thu, 15 Mar 2001 02:10:56 -0800
From:      "Ted Mittelstaedt" <tedm@toybox.placo.com>
To:        "Robert Clark" <res03db2@gte.net>
Cc:        "Bob Van Valzah" <Bob@Talarian.Com>, "pW" <packetwhore@stargate.net>, <FreeBSD-Security@FreeBSD.ORG>, <FreeBSD-Questions@FreeBSD.ORG>
Subject:   RE: Racoon Problem & Cisco Tunnel
Message-ID:  <006b01c0ad38$39eed0a0$1401a8c0@tedm.placo.com>
In-Reply-To: <20010313104927.A59404@darkstar.gte.net>
next in thread | previous in thread | raw e-mail | index | archive | help 
>-----Original Message-----
>From: owner-freebsd-questions@FreeBSD.ORG
>[mailto:owner-freebsd-questions@FreeBSD.ORG]On Behalf Of Robert Clark
>
>Ted, do you know of any online guidelines to wrting protocols
>that function well with NAT?
>

The rule of thumb is don't embed port information in the data payload.  But
here's some references:

 K. Egevang, P. Francis, "The IP Network Address Translator(NAT)",
 RFC 1631, May 1994.

 T. Hain, "Architectural Implications of NAT", Internet Draft,July 1998.

 Matt Holdrege, Pyda Srisuresh, "IP Network Address Translator(NAT)
 Protocol Issues", Internet Draft, August 1998.

 Yakov Rekhter, "Implications of NAT’s on the TCP/IParchitecture",
 Internet Draft, August 1998.

 P. Srisuresh, Matt Holdrege, "IP Network Address Translator(NAT)
 Terminology and Considerations", Internet Draft, July 1998.

This list is from a post that Jim Gray made to the Questions list back
in October that was very good.

>
>Or maybe a list of protocols that don't work well with NAT?
>

This is entirely implementation dependent.  For example, Cisco has a list
somewhere on their website that shows the ones they do and don't
support.  I don't know if anyone has made up a list for natd.



Ted Mittelstaedt                      tedm@toybox.placo.com
Author of:          The FreeBSD Corporate Networker's Guide
Book website:         http://www.freebsd-corp-net-guide.com



To Unsubscribe: send mail to majordomo@FreeBSD.org
with "unsubscribe freebsd-questions" in the body of the message

Want to link to this message? Use this URL: <https://mail-archive.FreeBSD.org/cgi/mid.cgi?006b01c0ad38$39eed0a0$1401a8c0>