IPsec-Network Address Translation Compatibility Requirements
RFC 3715, “IPsec-Network Address Translation Compatibility Requirements”, is an Informational document published in March 2004 by B. Aboba, W. Dixon. The canonical text is published by the RFC Editor.
Abstract
This document describes known incompatibilities between Network Address Translation (NAT) and IPsec, and describes the requirements for addressing them. Perhaps the most common use of IPsec is in providing virtual private networking capabilities. One very popular use of Virtual Private Networks (VPNs) is to provide telecommuter access to the corporate Intranet. Today, NATs are widely deployed in home gateways, as well as in other locations likely to be used by telecommuters, such as hotels. The result is that IPsec-NAT incompatibilities have become a major barrier in the deployment of IPsec in one of its principal uses. This memo provides information for the Internet community.
What “Informational” means
Published for the general information of the community. It does not define an IETF standard and carries no standards-track status.
The canonical text of RFC 3715 is hosted at rfc-editor.org. Available in TXT,HTML.
- RFC 3714 IAB Concerns Regarding Congestion Control for Voice Traffic in the Internet
- RFC 3716 IETF in the Large: Administration and Execution
- RFC 3713 A Description of the Camellia Encryption Algorithm
- RFC 3717 IP over Optical Networks: A Framework
- RFC 3712 Lightweight Directory Access Protocol : Schema for Printer Services
- RFC 3718 A Summary of Unicode Consortium Procedures, Policies, Stability, and Public Access
- RFC 3711 The Secure Real-time Transport Protocol
- RFC 3719 Recommendations for Interoperable Networks using Intermediate System to Intermediate System