tech-net archive

[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index][Old Index]

Re: stf, security and NAT traversal

On Jan 22, 2008 5:07 PM, David Young <> wrote:
> I looked at your patch this weekend, and I think that we should add
> it to NetBSD except for the NAT traversal parts.  The NAT traversal is
> easily replicated using a packet filter.  Also, it seems that the NAT
> traversal feature is a candidate for re-use, even where 6to4 is not used;
> for users' convenience, we could extract the NAT traversal feature into
> a pseudo-interface for re-use, as somebody else suggested some time ago.

NAT traversal is only in stf_getsrcifa4() (and a little CHECK_NAT define).
You may want me to provide a patch without it ?

I'll look for a pseudo nat interface solution :)

int main(int c,char**v){int b,e=(c>>24)+6,g=c==1?1:e>>4;
*d){if((e&=15)>7)putchar((b>>(e-=8))&255); d++;main(((e|
32)<<24)|(b&4095),&d);}return g<2&&c>2?main(--c,v):1;}

Home | Main Index | Thread Index | Old Index