*BSD News Article 73613

Return to BSD News archive 

Path: euryale.cc.adfa.oz.au!newshost.anu.edu.au!harbinger.cc.monash.edu.au!munnari.OZ.AU!news.ecn.uoknor.edu!news.ysu.edu!news.cps.udayton.edu!news.conterra.com!newsfeed.internetmci.com!newsfeed.internetmci.com!info.ucla.edu!agate!conviction.CS.Berkeley.EDU!bmah
From: bmah@conviction.CS.Berkeley.EDU (Bruce A. Mah)
Newsgroups: comp.unix.bsd.freebsd.misc
Subject: Re: NAT (was Re: IP Masquerading in user PPP?)
Date: 13 Jul 1996 14:56:51 GMT
Organization: University of California, Berkeley
Lines: 36
Message-ID: <4s8dfj$p4o@agate.berkeley.edu>
References: <Pine.BSF.3.91.960708224558.170A-100000@darkstar> <4s1fb8$dj@anorak.coverform.lan> <4s47b4$oh3@cronkite.cisco.com>
Reply-To: bmah@CS.Berkeley.EDU
NNTP-Posting-Host: conviction.cs.berkeley.edu
X-Newsreader: TIN [version 1.2 PL2]

Tim Iverson (iverson@cisco.com) wrote:
> In article <4s1fb8$dj@anorak.coverform.lan>,
> Brian Somers <brian@awfulhak.demon.co.uk> wrote:
> |Charles Mott (cmott@srv.net) wrote:
> |: My question is this: is it structurally possible for IP masquerading to be
> |: implemented within user PPP (not pppd)?  If so, I would appreciate some
> |
> |I'm sort of responsible for this at the moment.  I have mucked around with
> |a few "designs", and I think that you're probably right, iijppp is the best
> |place for it.  I havn't examined all the pros & cons yet - I am still at the

> Noooooooo, please not there!  ;-) If you do it, please put this into the
> TCP/IP stack.  If you just put it into PPP, only users of that particular
> PPP flavor can use it.

Noooooooo, please not there either!  :-) 

Putting masquerading in the stack means putting all of the various little
hacks necessary to make applications work in the kernel.  Aside from the
aesthetic issues, it means you get to rebuild your kernel anytime you want
to support a new application that needs special handling.

(I also happen to fall into the "masquerading is evil" camp, but I
figure you probably don't want to hear that argument...)

This has already been beaten half to death on one of the FreeBSD mailing
lists...check the mailing list archives to find out more.

Cheers,

Bruce.

--
Bruce A. Mah		   Graduate Student	          bmah@CS.Berkeley.EDU
		Tenet Group, Computer Science Division
		 University of California at Berkeley