On Wed, Oct 29, 2003 at 11:03:11AM +0000, Simon Lockhart wrote: > No. > Anything that relies on knowing which host it is talking to by looking at > the source address of packets breaks. > Plenty of UDP based apps work over NAT.
Indeed, and IPSec tunnels are frequently done between routers on networks, rather than individual hosts on networks (at least in most multi-site enterprises i've seen).
