A TCP Authentication Option Extension for NAT Traversal
RFC 6978, “A TCP Authentication Option Extension for NAT Traversal”, is an Experimental document published in July 2013 by J. Touch. The canonical text is published by the RFC Editor.
Abstract
This document describes an extension to the TCP Authentication Option (TCP-AO) to support its use over connections that pass through Network Address Translators and/or Network Address and Port Translators (NATs/NAPTs). This extension changes the data used to compute traffic keys, but it does not alter TCP-AO's packet processing or key generation algorithms.
What “Experimental” means
Describes a specification that is part of a research or development effort, published so the community can gain experience with it.
The canonical text of RFC 6978 is hosted at rfc-editor.org. Available in TXT,HTML.
- RFC 6977 Triggering DHCPv6 Reconfiguration from Relay Agents
- RFC 6979 Deterministic Usage of the Digital Signature Algorithm and Elliptic Curve Digital Signature Algorithm
- RFC 6976 Framework for Loop-Free Convergence Using the Ordered Forwarding Information Base Approach
- RFC 6980 Security Implications of IPv6 Fragmentation with IPv6 Neighbor Discovery
- RFC 6975 Signaling Cryptographic Algorithm Understanding in DNS Security Extensions
- RFC 6981 A Framework for IP and MPLS Fast Reroute Using Not-Via Addresses
- RFC 6974 Applicability of MPLS Transport Profile for Ring Topologies
- RFC 6982 Improving Awareness of Running Code: The Implementation Status Section