[e2e] 100% NAT - a DoS proof internet

alok alokdube at hotPOP.com
Tue Feb 21 22:18:48 PST 2006


Yes but I do not understand why there is a double association between a
"$who and $where"

For example if I wish to talk to "Tim" via my cell phone, I would simply
look for the name "Tim"

It would also need a change in the way end hosts make associations as of
date,
Last I checked, sockets use "IPs" to identify end points. It does not have a
default "gethostbyname()" in it.

Back in the dial up days I remember I used to get a nice name as:

Ppp1.ispras.myisp.com

In more modern DSL days, simply giving my name street address/my telephone
directory entry as my port identifier (we get our DSL over our POTS) would
not be so bad would it? 

But would any OS stack out there support this sort of a transaction, based
completely on "$who-->send data" instead of the recursive "$who-->$where and
then send data"?


-----Original Message-----
From: Joe Touch [mailto:touch at ISI.EDU] 
Sent: Wednesday, February 22, 2006 11:37 AM
To: alok
Cc: 'Jon Crowcroft'; end2end-interest at postel.org
Subject: Re: [e2e] 100% NAT - a DoS proof internet

Since that's basically what we already do in many apps, how would this help?

It's not enough to do that lookup in the endsystems, it has to happen
along the path, i.e., those IDs need to be in the packets. However, that
just invites NA(P)T designers to evolve to NAPNT (add name translation).

Yes, there are many ways to define away the problem:
	- NAT host to NAT host using a non-NAT host somewhere
		which won't exist if NATs are pervasive
	- NAT host to NAT host using a non-translated ID
		which means at least one of the hosts is not NAT'd
		(not 'translated ID') anymore

Joe


alok wrote:
> Hi,
> 
> Well, I meant something on the lines of modifying send() and recv () in
the
> sockets as:
> 
> Send($remote_servername,"foo bar")
> 
> Instead of:
> 
> Send($remote_ip,"foo bar")
> 
> Always make associations based on name rather than IP.
> 
> Of course it means one would have to modify every stack out there, but
> things like skype etc could simply embed the method into their dlls etc
when
> installed.
> 
> -----Original Message-----
> From: end2end-interest-bounces at postel.org
> [mailto:end2end-interest-bounces at postel.org] On Behalf Of Joe Touch
> Sent: Wednesday, February 22, 2006 4:38 AM
> To: Jon Crowcroft
> Cc: alok; end2end-interest at postel.org
> Subject: Re: [e2e] 100% NAT - a DoS proof internet
> 
> 
> 
> Jon Crowcroft wrote:
>>> glib.
>>>
>>> a nat could keep an algorithmic state variable but not maintain an
> externally detectable
>>> mapping from localt o globalraeachable adress (read my orignal email in
> this thread)
>>> OR
>>> it could keep state about actual e2e flows.
> 
> Sure.
> 
>>> completely different things 
> 
> Except that state is state ;-) I read the suggestion as "stateless", not
> "avoiding explicit per-connection state".
> 
> Joe




More information about the end2end-interest mailing list