nanog mailing list archives

Re: Requirements for IPv6 Firewalls

From: William Herrin <bill () herrin us>
Date: Fri, 18 Apr 2014 18:47:18 -0400

On Fri, Apr 18, 2014 at 6:36 PM, Lee Howard <Lee () asgard org> wrote:

Some operators want NAT.  Some don't.  There are loud voices on both
sides. Consensus seems slightly against.


Hi Lee,

Some operators want NAT. That's it. End of discussion. This isn't a
consensus question. Some operators want NAT. Period. Full stop.
They'll hold off deploying and when IPv6 is sufficiently valuable,
they'll pay someone to give them NAT. Regardless of whether the
consensus of the IETF approves.

These are the folks who made Gauntlet and its transparent proxies the
#1 firewall product back during the bubble. They don't see the
Internet the way you do.

And if there are more of them than you think, IPv6 won't achieve
sufficient value, won't reach critical mass. Then you'll really REALLY
be stuck with NAT.

Regards,
Bill Herrin


-- 
William D. Herrin ................ herrin () dirtside com  bill () herrin us
3005 Crane Dr. ...................... Web: <http://bill.herrin.us/>
Falls Church, VA 22042-3004

Current thread:

Re: Requirements for IPv6 Firewalls, (continued)
- - - Re: Requirements for IPv6 Firewalls Lee Howard (Apr 18)
    - Re: Requirements for IPv6 Firewalls Matt Palmer (Apr 18)
    - Re: Requirements for IPv6 Firewalls Gary Buhrmaster (Apr 18)
    - Re: Requirements for IPv6 Firewalls Eugeniu Patrascu (Apr 18)
    - Re: Requirements for IPv6 Firewalls Matthew Kaufman (Apr 18)
    - Re: Requirements for IPv6 Firewalls Eugeniu Patrascu (Apr 19)
    - Re: Requirements for IPv6 Firewalls William Herrin (Apr 18)
    - Re: Requirements for IPv6 Firewalls William Herrin (Apr 18)
    - Re: Requirements for IPv6 Firewalls Jimmy Hess (Apr 18)
    - Re: Requirements for IPv6 Firewalls Lee Howard (Apr 18)
    - Re: Requirements for IPv6 Firewalls William Herrin (Apr 18)
    - Re: Requirements for IPv6 Firewalls George Herbert (Apr 18)
    - Re: Requirements for IPv6 Firewalls Lee Howard (Apr 21)
    - Re: Requirements for IPv6 Firewalls George Herbert (Apr 21)
  - Re: Requirements for IPv6 Firewalls Sander Steffann (Apr 17)
    - Re: Requirements for IPv6 Firewalls Brandon Ross (Apr 17)
    - Re: Requirements for IPv6 Firewalls Matthew Kaufman (Apr 17)
    - Re: Requirements for IPv6 Firewalls Timothy Morizot (Apr 17)
    - Thank you Comcast Michael T. Voity (Apr 17)
    - Re: Thank you Comcast Mehmet Akcin (Apr 17)
    - Re: Thank you Comcast Doug Barton (Apr 17)

(Thread continues...)