IPsec-Network Address Translation (NAT) Compatibility Requirements
Draft of message to be sent after approval:
From: The IESG <email@example.com> To: IETF-Announce <firstname.lastname@example.org> Cc: Internet Architecture Board <email@example.com>, RFC Editor <firstname.lastname@example.org>, ipsec mailing list <email@example.com>, ipsec chair <firstname.lastname@example.org> Subject: Document Action: 'IPsec-NAT Compatibility Requirements' to Informational RFC The IESG has approved the following document: - 'IPsec-NAT Compatibility Requirements ' <draft-ietf-ipsec-nat-reqts-07.txt> as an Informational RFC This document is the product of the IP Security Protocol Working Group. The IESG contact persons are Russ Housley and Tim Polk. A URL of this Internet-Draft is: http://www.ietf.org/internet-drafts/draft-ietf-ipsec-nat-reqts-07.txt
Technical Summary Perhaps the most common use of IPsec is in providing virtual private networking capabilities. One very popular use of VPNs is to provide telecommuter access to the corporate Intranet. Today NATs are widely deployed in home gateways, as well as in other locations likely to be used by telecommuters, such as hotels. The result is that IPsec-NAT incompatibilities have become a major barrier to deployment of IPsec in one of its principal uses. This draft describes known incompatibilities between NAT and IPsec, and describes the requirements for addressing them. Working Group Summary The IPsec came to consensus on this document. Protocol Quality This document was reviewed by Russell Housley for the IESG.