multiple prefixes
Lorenzo Colitti
lorenzo at google.com
Tue Feb 12 09:50:14 CET 2013
On Tue, Feb 12, 2013 at 5:38 PM, Doug Barton <dougb at dougbarton.us> wrote:
>
>> Take out the costs that are due to stateful inspection (and remember,
>> translation is more expensive than forwarding) and leave the rest.
>>
>
> I'm pretty sure you're wrong about almost all of what you wrote above in
> regards to NPT, and that you're applying an anti-NAT prejudice because it
> looks similar.
"I'm pretty sure you're wrong"? That's pretty convincing :-)
> > Higher cost and a higher
> > barrier to entry for application developers as they each have to
> > re-learn NAT traversal (and no, NAT traversal is *not* the same as
> > traversing a stateful firewall - that's easier).
>
> Please demonstrate how these costs pertain to NPT. To the application
> there shouldn't be any difference between operating in an NPT environment
> than operating on GUAs. (This response also applies to your comment about
> skype.)
An example I have direct experience of is the code that does connection
establishment libjingle, used by Google video chat. Being able to rely on
the fact that the IPv6 address assigned to your interface is, in fact, your
IPv6 address greatly simplifies the code. By comparison, firewall traversal
is trivial.
-------------- next part --------------
An HTML attachment was scrubbed...
URL: http://lists.cluenet.de/pipermail/ipv6-ops/attachments/20130212/7c026454/attachment.html
More information about the ipv6-ops
mailing list