[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]

[radext] RDTLS #66 (new): NAT nits

To: peterd@iea-software.com
Subject: [radext] RDTLS #66 (new): NAT nits
From: "radext issue tracker" <trac@tools.ietf.org>
Date: Mon, 21 Feb 2011 08:27:06 -0000
Auto-submitted: auto-generated
Cc: radiusext@ops.ietf.org
Reply-to: radiusext@ops.ietf.org

#66: NAT nits

 ''8.2. "Network Address Translation (NAT) is fundamentally incompatible
 with RADIUS.  RADIUS uses the source IP address to determine the shared
 secret for the client, and NAT hides many clients behind one source IP
 address."''

 There are no problems with full cone or ALGs acting as proxies.

 Recommend:

 Some forms of Network Address Translation (NAT) are incompatible with
 RADIUS....

-- 
-------------------------------------+--------------------------------------
 Reporter:  peterd@â                 |       Owner:            
     Type:  defect                   |      Status:  new       
 Priority:  trivial                  |   Milestone:  milestone1
Component:  RDTLS                    |     Version:  1.0       
 Severity:  Active WG Document       |    Keywords:            
-------------------------------------+--------------------------------------

Ticket URL: <https://wiki.tools.ietf.org/wg/radext/trac/ticket/66>
radext <http://tools.ietf.org/radext/>


--
to unsubscribe send a message to radiusext-request@ops.ietf.org with
the word 'unsubscribe' in a single line as the message text body.
archive: <http://psg.com/lists/radiusext/>

Follow-Ups:
- Re: [radext] RDTLS #66 (new): NAT nits
  - From: "radext issue tracker" <trac@tools.ietf.org>
- Re: [radext] RDTLS #66 (new): NAT nits
  - From: Stefan Winter <stefan.winter@restena.lu>

Prev by Date: [radext] RDTLS #65 (new): Multiple dtls sessions in a tuple?
Next by Date: Re: [radext] RDTLS #66 (new): NAT nits
Previous by thread: [radext] RDTLS #65 (new): Multiple dtls sessions in a tuple?
Next by thread: Re: [radext] RDTLS #66 (new): NAT nits
Index(es):
- Date
- Thread