IP Multicasting and Firewalls

[Aleph One <aleph1 () dfw net>]

In light of the recent questions about firewalls and multicasting I think
this may be of interest. I've personally not read it yet.

Aleph One / aleph1 () dfw net
http://underground.org/
KeyID 1024/948FD6B5 
Fingerprint EE C9 E8 AA CB AF 09 61  8C 39 EA 47 A8 6A B8 01 

---------- Forwarded message ----------
Date: Fri, 06 Mar 1998 14:46:39 -0500
From: Internet-Drafts () ns ietf org
To: IETF-Announce:;@ns.ietf.org
Subject: I-D ACTION:draft-finlayson-mcast-firewall-00.txt

A New Internet-Draft is available from the on-line Internet-Drafts directories.

        Title           : IP Multicast and Firewalls
        Author(s)       : R. Finlayson
        Filename        : draft-finlayson-mcast-firewall-00.txt
        Pages           : 6
        Date            : 05-Mar-98
        
Many organizations use a firewall computer that acts as a security gateway
between the public Internet and their private, internal 'intranet'.  In
this document, we discuss the issues surrounding the traversal of IP
multicast traffic across a firewall, and describe possible ways in which a
firewall can implement and control this traversal.  We also explain why
some firewall mechanisms - such as SOCKS - that were designed specifically
for unicast traffic, are less appropriate for multicast.


Internet-Drafts are available by anonymous FTP.  Login with the username
"anonymous" and a password of your e-mail address.  After logging in,
type "cd internet-drafts" and then
        "get draft-finlayson-mcast-firewall-00.txt".
A URL for the Internet-Draft is:
ftp://ftp.ietf.org/internet-drafts/draft-finlayson-mcast-firewall-00.txt

Internet-Drafts directories are located at:

        Africa: ftp.is.co.za
        
        Europe: ftp.nordu.net
                ftp.nis.garr.it
                        
        Pacific Rim: munnari.oz.au
        
        US East Coast: ds.internic.net
        
        US West Coast: ftp.isi.edu

Internet-Drafts are also available by mail.

Send a message to:      mailserv () ietf org.  In the body type:
        "FILE /internet-drafts/draft-finlayson-mcast-firewall-00.txt".
        
NOTE:   The mail server at ietf.org can return the document in
        MIME-encoded form by using the "mpack" utility.  To use this
        feature, insert the command "ENCODING mime" before the "FILE"
        command.  To decode the response(s), you will need "munpack" or
        a MIME-compliant mail reader.  Different MIME-compliant mail readers
        exhibit different behavior, especially when dealing with
        "multipart" MIME messages (i.e. documents which have been split
        up into multiple messages), so check your local documentation on
        how to manipulate these messages.
                
                
Below is the data which will enable a MIME compliant mail reader
implementation to automatically retrieve the ASCII version of the
Internet-Draft.