[AusNOG] IPv6 and Xbox1 from NANOG59
Jeremy Visser
jeremy at visser.name
Sun Oct 13 12:50:15 EST 2013
On 13/10/13 09:54, Mark ZZZ Smith wrote:
> So that means Microsoft aren't using IPsec it at all for any form of
> NAT/CGN detection, and are using it purely for it's end-to-end
> security purposes.
That’s correct. If you watched the video, you would have seen where he
said the purpose of IPsec was merely to replace the proprietary
peer-to-peer encryption used by the Xbox 360.
The only reason why he mentioned IPsec at all was for firewalling
purposes — that is, CPE that firewalls all inbound traffic by default
will break the Xbox One and make your customers angry. (So either Don’t
Do It™, or allow unsolicited UDP/500 + ESP.)
More information about the AusNOG
mailing list