On Tue, 19 Aug 2014, Tero Kivinen wrote:
You would need the port number too to support multple clients behind the same NAT router, upon which the attacker can then use multiple ports too.No need for port number. If server is under attack just block / slow down everybody using the same IP-address (or IP-address mask).
Works great with CGN :P Paul _______________________________________________ IPsec mailing list [email protected] https://www.ietf.org/mailman/listinfo/ipsec
