tech-net archive

[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index][Old Index]

Re: stf, security and NAT traversal



On Jan 22, 2008 5:07 PM, David Young <dyoung%pobox.com@localhost> wrote:
> I looked at your patch this weekend, and I think that we should add
> it to NetBSD except for the NAT traversal parts.  The NAT traversal is
> easily replicated using a packet filter.  Also, it seems that the NAT
> traversal feature is a candidate for re-use, even where 6to4 is not used;
> for users' convenience, we could extract the NAT traversal feature into
> a pseudo-interface for re-use, as somebody else suggested some time ago.
>

NAT traversal is only in stf_getsrcifa4() (and a little CHECK_NAT define).
You may want me to provide a patch without it ?

I'll look for a pseudo nat interface solution :)

Regards,
Rodolphe
-- 
int main(int c,char**v){int b,e=(c>>24)+6,g=c==1?1:e>>4;
char*d=c==1?"d3JpdGUgaW4gQw==":g==2?*v:v[c-1];b=c<<6|(*d
+(*d>96?-71:*d>58?-65:*d>47?4:*d>46?16:19));if(*d==61?0:
*d){if((e&=15)>7)putchar((b>>(e-=8))&255); d++;main(((e|
32)<<24)|(b&4095),&d);}return g<2&&c>2?main(--c,v):1;}



Home | Main Index | Thread Index | Old Index