[arin-ppml] IPv6 Non-connected networks

Chris Engel cengel at sponsordirect.com
Mon Mar 29 10:39:18 EDT 2010

Owen DeLong wrote:

> You are assuming a lot more about human behavior by less
> qualified individuals than is required in my assertion that
> people should properly configure their firewalls. If I have
> to tolerate NAT and it's damage because you can't reliably
> avoid mistakes that fail open on your firewalls, then, you
> need to allow for a way to reimburse my costs that come from
> your even less qualified end users that also happen to be my
> customers.


Who am I to tell you how to bill your customers? If you want to bill some sort of "NAT surcharge" into your fees or (a probably more reasonable way to recoup costs) charge support by the minute/hour then go for it if your business model supports it. I certainly don't tell you how to bill.

However, I don't see how that situation is any different then supporting a customer who isn't technicaly profficient ("um... what's my IP address? A command prompt...what is that?") or speaks slowly, or maybe has a language barrier...or maybe has something else going on thier network that interferes with your equipment.... all of which would cause you more time/effort in support then you would ordinarly need to (I've done plenty of support calls in my day). Should none of those people be allowed use of the internet because they would cost more support time then others?

Furthermore, I would think the answer to your situation would be rather straightforward. If you are the designer of the equipment/software that you are working with... why wouldn't you design in a special diagnostic mode on your phone that sent out a unique number/code for the particular phone issued to that customer inside each packet sent....and then build a tool that could work with a packet sniffer to examine the packets you were recieving to see if any of them corresponded to that phone? That should tell you definitively whether you were getting any of those packets regardless of what was happening with the packet headers (and presumably even independant of whatever protocol they might be running under).

Turning the arguement around on you... why should NAT be disallowed on the entire internet simply because you can't be bothered to build in more robust diagnostic tools on the equipment that you want to sell?

Christopher Engel

More information about the ARIN-PPML mailing list