Traversing X11 clients behind NAT (or X11 end-to-end connectivity)

Łukasz Jernaś deejay1 at srem.org
Mon Mar 24 05:00:07 PDT 2008


Dnia 2008-03-22, So o godzinie 19:33 -0300, Tiago Vignatti pisze:
> Sascha Hlusiak escreveu:
> > Get IPv6, the network of tomorrow -- today. And a firewall is not a thing to 
> > bypass because the admin installed it for a reason.
[...]
> OTHO, several NAT will be replaced
> by firewalls when the migration to IPv6 happen. This is because today
> admins use NAT as a firewall to protect his intranet.

Well, those admins should be shot^H^H^H^H^Hbeaten with a stick really
hard, or moved to an other position - the helldesk propably...

> And about forward ports, this is not so simple. We must assume that our 
> focus is highly NATed environments, or situations where practically 
> every node is behind a NAT. For example, the DSL modem may have a NAT 
> plugged with a wireless access point that also is a NAT. The service 
> provider might add another layer of NAT.

I don't suppose that many such environments exist, especially such where
the service provider NATs his users. (OK, it happends here often, but
well if we call a service provider someone who uses standard WiFi...)

> And, as I said on the other mail, I'm not particulary telling that 
> punching hole would be the best alternative to address this problem of 
> total connectivity. For instance you could imagine some kind of P2P 
> resource-sharing sw exporting X11 clients.

IMHO a better problem to work on would be an automatic migration of
xsessions between servers (eg. when server load > max, but it would
require much more than just )...

Regards,
-- 
Łukasz [DeeJay1] Jernaś
-------------- next part --------------
A non-text attachment was scrubbed...
Name: signature.asc
Type: application/pgp-signature
Size: 197 bytes
Desc: To jest cz??? wiadomo?ci podpisana cyfrowo
URL: <http://lists.x.org/archives/xorg/attachments/20080324/f08119ec/attachment.pgp>


More information about the xorg mailing list