On Fri, Dec 07, 2001 at 02:47:03PM +0100, G?ran Thyni wrote: > I started thinking about freenet and private (NAT:ed) networks. > Mojo Nation uses a relay service so that client behind NAT-gateways > can participate in the network. Since more and more hosts connects > to the internet that way I think such capabilities in fred would > be a "Good Thing"(tm). >
To beat one-to-many Nat, a node must be smart enough to act as a gateway, and it must be able to route on the physical network using Node ID's, not IP addresses. I.E. it must have a table of Node ID to internal address mappings. All of the nat'd nodes will look to the outside world like they have the same IP address, but that shouldn't matter, because Freenet routing is done based on Node ID's. (I hope). THe gateway recieves incoming traffic, and routes based on its knowledge of Node ID's and internal addresses. To an Internal node on the private network, the outside world looks like it has one IP address, and many Node ID's. THe IP address is the one of the gateway machine, and the gateway machine takes care of attaching the real IP address to the Node ID of the machine in the real world. That said, gateways really suck. They are choke points, vulnerable single points of failure, and an obvious target for an attack. They allow an attacker to multiply his/her efforts by the number of machines behind the gateway, taking out whole chunks of the network instead of just a single machine. Bad juju. David Schutt _______________________________________________ Devl mailing list Devl at freenetproject.org http://lists.freenetproject.org/mailman/listinfo/devl
