Keith Moore wrote:
Bottom line: in the real world NAT is not used without statefulness.
To make an argument against NAT that holds water you have to explain
where NAT breaks anything (in real world application) that wouldn't
otherwise be broken by the need to keep state.
More bullshit. The degree to which statefulness breaks things is only a
small fraction of the degree to which NAT breaks things.
Can you give us an example? Is there a protocol in use in the real world
which ingress flows can be validated by a state-keeping firewall (at the
network edge) but only without NAT.
Please do be specific. We are network engineers and curious how how the
claimed flow's state is kept and how NAT does not work when added to that.
Roger Marquis
_______________________________________________
nat66 mailing list
[email protected]
https://www.ietf.org/mailman/listinfo/nat66
