> > DL> Port/Overload NAT for IPv4 (NAT:P) has security benefits > > in that it requires explicit configuration to allow for > > inbound unsolicited transport connections (via port forwarding) > > to 'inside' hosts. > > Perhaps you missed this statement from > <http://www.ietf.org/internet-drafts/draft-mrw-behave-nat66-01.txt> > > NAT66 devices that comply with > this specification MUST NOT perform port mapping. > Nope, that's why I was specific in saying 'IPv4' above. I was trying to provide an example for how NAT that do port overloading in IPv4 have implicit security benefits. -Darrel _______________________________________________ Ietf@xxxxxxxx https://www.ietf.org/mailman/listinfo/ietf