nanog mailing list archives

Re: NAT etc. (was: Spam Control Considered Harmful)

From: Havard.Eidnes () runit sintef no
Date: Sat, 01 Nov 1997 21:11:53 +0100

Security based on IP address.


Here I disagree, not only for the obvious reason that
forgery is easy, but also because basing anything on IP
address that does not involve looking back up through the
DNS (which is also not yet safe) is incompatible with NAT.


...which brings me to think if it isn't so that Secure DNS (at
least as currently specified) and widespread deployment of NAT
boxes which fiddle with the contents of DNS reply/request packets
isn't exactly a properly working combination.  As I understand it
you can have NAT or Secure DNS with e.g. signed A records but you
can't (easily?) have both.

(Which brings us even further afield from the original subject... ;-)

Regards,

- Håvard

Current thread:

Re: moving to IPv6, (continued)
- - - Re: moving to IPv6 Gary E. Miller (Nov 07)
    - Re: moving to IPv6 Vadim Antonov (Nov 07)
    - Re: moving to IPv6 Randy Bush (Nov 07)
    - Re: moving to IPv6 Paul Ferguson (Nov 07)
    - Re: moving to IPv6 Winfried Haug (Nov 09)
    - Re: moving to IPv6 Sean M. Doran (Nov 11)
    - Re: moving to IPv6 Sean M. Doran (Nov 11)
- Re: Spam Control Considered Harmful Bill Becker (Nov 01)
  - Re: Spam Control Considered Harmful Greg A. Woods (Nov 01)
- Re: Spam Control Considered Harmful Sean M. Doran (Nov 01)
  - Re: NAT etc. (was: Spam Control Considered Harmful) Havard . Eidnes (Nov 01)
    - Re: NAT etc. (was: Spam Control Considered Harmful) Paul A Vixie (Nov 01)
    - Re: NAT etc. (was: Spam Control Considered Harmful) bmanning (Nov 01)
    - Re: NAT etc. (was: Spam Control Considered Harmful) Greg A. Woods (Nov 01)
    - Re: NAT etc. (was: Spam Control Considered Harmful) Eric M. Carroll (Nov 01)
    - Re: NAT etc. (was: Spam Control Considered Harmful) Paul A Vixie (Nov 01)
    - Message not available
    - Re: NAT etc. (was: Spam Control Considered Harmful) Jay R. Ashworth (Nov 01)
    - Re: NAT etc. (was: Spam Control Considered Harmful) Paul A Vixie (Nov 01)
    - Message not available
    - Re: NAT etc. (was: Spam Control Considered Harmful) Jay R. Ashworth (Nov 02)
    - Re: NAT etc. (was: Spam Control Considered Harmful) Alan Hannan (Nov 02)
    - Message not available
    - Re: NAT etc. (was: Spam Control Considered Harmful) Jay R. Ashworth (Nov 03)

(Thread continues...)