On Nov 1, 2010, at 12:54 PM, Roger Marquis wrote: > Christian Huitema wrote: >> Saying that "stateful NAT enables SIP" is only right in some Orwellian >> twist of the word "enables." > > Are you saying the problem here is not that the SIP protocol embeds > network layer information in the data portion as a (ineffective) security > check?
SIP is not the problem. SIP works like it needs to work. It's insane to think that the routing of call voice data should have to go through the point from which the calls are controlled, or via any other route than the most direct one. The problem is the NAT that prevents the call data from being routed via the most efficient path. > Or are you saying that any protocol, no matter how badly written, > should be allowed through firewalls with a minimum of checks? you are not qualified to decide whether a protocol is badly designed. Keith _______________________________________________ nat66 mailing list [email protected] https://www.ietf.org/mailman/listinfo/nat66
