From owner-freebsd-net  Tue Jun  2 08:24:08 1998
Return-Path: <owner-freebsd-net@FreeBSD.ORG>
Received: (from majordom@localhost)
          by hub.freebsd.org (8.8.8/8.8.8) id IAA12592
          for freebsd-net-outgoing; Tue, 2 Jun 1998 08:24:08 -0700 (PDT)
          (envelope-from owner-freebsd-net@FreeBSD.ORG)
Received: from gateman.zeus.leitch.com (gateman.zeus.leitch.com [204.187.61.193])
          by hub.freebsd.org (8.8.8/8.8.8) with ESMTP id IAA12513
          for <freebsd-net@FreeBSD.ORG>; Tue, 2 Jun 1998 08:23:59 -0700 (PDT)
          (envelope-from woods@tap.zeus.leitch.com)
Received: from zeus.leitch.com (tap.zeus.leitch.com [204.187.61.10]) by gateman.zeus.leitch.com (8.8.5/8.7.3/1.0) with ESMTP id LAA01152; Tue, 2 Jun 1998 11:22:49 -0400 (EDT)
Received: from brain.zeus.leitch.com (brain.zeus.leitch.com [204.187.61.32]) by zeus.leitch.com (8.7.5/8.7.3/1.0) with ESMTP id LAA15345; Tue, 2 Jun 1998 11:22:53 -0400 (EDT)
Received: (from woods@localhost)
	by brain.zeus.leitch.com (8.8.8/8.8.8) id LAA21260;
	Tue, 2 Jun 1998 11:22:52 -0400 (EDT)
	(envelope-from woods@tap.zeus.leitch.com)
Date: Tue, 2 Jun 1998 11:22:52 -0400 (EDT)
Message-Id: <199806021522.LAA21260@brain.zeus.leitch.com>
MIME-Version: 1.0
Content-Type: text/plain; charset=us-ascii
Content-Transfer-Encoding: 7bit
From: woods@zeus.leitch.com (Greg A. Woods)
To: Chrisy Luke <chrisy@flix.net>
Cc: freebsd-net@FreeBSD.ORG
Subject: Re: ipv6 network addresses
In-Reply-To: Chrisy Luke's message
	of "Tue, June 2, 1998 11:10:02 +0100"
	regarding "Re: ipv6 network addresses"
	id <19980602111002.31706@flix.net>
References: <199806012000.QAA14487@gta.gta.com>
	<19980602092305.52419@flix.net>
	<19980602105525.36962@deepo.prosa.dk>
	<19980602111002.31706@flix.net>
X-Mailer: VM 6.45 under Emacs 20.2.1
Reply-To: freebsd-net@FreeBSD.ORG
Organization: Planix, Inc.; Toronto, Ontario; Canada
Sender: owner-freebsd-net@FreeBSD.ORG
Precedence: bulk
X-Loop: FreeBSD.org

[ On Tue, June 2, 1998 at 11:10:02 (+0100), Chrisy Luke wrote: ]
> Subject: Re: ipv6 network addresses
>
> Philippe Regnauld wrote (on Jun 02):
> > 	Good NAT solutions use a pool of addresses (i.e.: Cisco),
> > 	where hosts seem to come from different addresses each time).
> > 	This also allow for semi-permanent "two-way" setups, allowing
> > 	for example ftp back-connect and other horrible things transparently.
> 
> Where's the FreeBSD implementation then? :-)

Darren Reed's IP-Filter + NAT package does this quite nicely (though
I've never actually proven that there's some "randomness" to the source
address used -- though I'd guess with a sufficiently busy set of
connections it would appear to be random).

-- 
							Greg A. Woods

+1 416 443-1734      VE3TCP      <gwoods@acm.org>      <robohack!woods>
Planix, Inc. <woods@planix.com>; Secrets of the Weird <woods@weird.com>

To Unsubscribe: send mail to majordomo@FreeBSD.org
with "unsubscribe freebsd-net" in the body of the message