On 2009-01-02 09:59, Scott Brim wrote:
> Excerpts from RJ Atkinson on Wed, Dec 31, 2008 02:37:07PM -0500:
>> (NAT/NAPT or LocatorRewriting or pick a another name) performed
>> inside a site's border router can enable a site to multi-home
>> effectively without any de-aggregation (i.e. without any impact on
>> the DFZ RIB or DFZ FIB). Existing mechanisms that enable
>> distributed firewalls to share session state would clearly also work
>> to share NAT session state among a set of site border routers, if
>> that were desired.
>
> Multihoming on different providers? If an endpoint appears to have
> two different addresses due to being NATted onto two different
> providers, and routing changes so that packets switch from flowing
> through one provider to flowing through the other one, connections
> break.
Certainly. So if you were product manager for a highly reliable
distributed application, I'm sure you would insist that it was
coded to detect permanent transport failures and try alternative
addresses. That may not be elegant computer science but it's one
way that the Internet routes around damage.
Brian
_______________________________________________
rrg mailing list
[email protected]
https://www.irtf.org/mailman/listinfo/rrg
