Firewalls and Internet security: repelling the Wily Hacker, 1994. ,
Traditional IP Network Address Translator (Traditional NAT). IETF Informational document, 2001. ,
DOI : 10.17487/rfc3022
Reasons to Move NAT-PT to Experimental. IETF Draft (work in progress), draft-ietf-v6ops-natpt-to-exprmntl-02, 2005. ,
Interaction of firewalls and network address translators with internet applications, Proceedings of the 8th International Conference on Telecommunications, 2005. ConTEL 2005., 2005. ,
DOI : 10.1109/CONTEL.2005.185907
STUN -Simple Traversal of User Datagram Protocol (UDP) Through Network Address Translators (NATs). IETF proposed standard, 2003. ,
NAT/Firewall NSIS Signaling Layer Protocol (NSLP) IETF draft (work in progress), draft-ietf-nsis-nslp-natfw-08, 2005. ,
DOI : 10.17487/rfc5973
GIST State Machine. IETF draft (work in progress), draft-ietf-nsis-ntlp-statemachine-01, 2005. ,
General Internet Signaling Transport. IETF draft (work in progress), draft-ietf-nsis-ntlp-08, 2005. ,
DOI : 10.17487/rfc5971
Résolution desprobì emes de routage asymétrique et de partage de charge dans les pare-feux, Proceedings of Colloque Francophone sur l'Ingénierie des Protocoles 2005, 2005. ,
Securing Middlebox Discovery for Path-Directed Signaling in the Internet, IEEE ASWN 2005 workshop proceedings, 2005. ,
Path-directed signaling in the Internet, IEEE IPOM 2004 workshop proceedings, 2004. ,
Security Threats for NSIS. IETF Informational document, RFC, vol.4081, 2005. ,
DOI : 10.17487/rfc4081
Security Threats for the NATFW NSLP. Expired IETF draft, draft-fessi-nsis-natfw-threats-02, 2004. ,
NATFW NSLP Intra-Realm Considerations. Expired IETF draft, draft-aoun-nsis-nslp-natfw-intrarealm- 01, 2004. ,
Potential Solutions to the Middlebox discovery problem. Expired IETF draft, draft-aoun-midcom-discovery-01, 2002. ,
Middlebox discovery integration solutions within the Midcom architecture ,
Middlebox communications (MIDCOM) Protocol Evaluation, IETF Informational document RFC, vol.4097, 2005. ,
DOI : 10.17487/rfc4097
COPS applicability as the MIDCOM PROTOCOL. Expired IETF draft, draft-aoun-midcom-cops-02, 2002. ,
Applicability of MEGACO to Middlebox Control. Expired IETF draft, draft-sct-midcom-megaco-02, 2002. ,
Media Gateway Control Protocol (MGCP) Version 1.0. IETF informational document, 2003. ,
Gateway Control Protocol Version 1. IETF Standards Track document, 2003. ,
DOI : 10.17487/rfc3525
Protocol Complications with the IP Network Address Translator, IETF Informational document, vol.3027, 2001. ,
DOI : 10.17487/rfc3027
URL : http://citeseerx.ist.psu.edu/viewdoc/summary?doi=10.1.1.172.2925
Middleboxes: Taxonomy and Issues. IETF Informational document, 2002. ,
DOI : 10.17487/rfc3234
Basic Transition Mechanisms for IPv6 Hosts and Routers. IETF draft (work in progress), draft-ietf-v6ops-mech-v2-07, 2005. ,
Nat Behavioral Requirements for Unicast UDP. IETF draft (work in progress), draft-ietf-behave-nat-udp-00, 2005. ,
Traversal Using Relay NAT (TURN) IETF draft (work in progress), draft-rosenberg-midcom-turn-06, 2004. ,
Best Current Practices for NAT Traversal for SIP. IETF draft (work in progress), draft-ietf-sipping-nat-scenarios-01, 2004. ,
IETF draft (work in progress), draft-aoun-mgcp-nat-package-02, 2003. ,
A Two-Level Architecture for Internet Signaling. IETF draft (expired), draft-braden-2level-signaling-01.txt, 2002. ,
Resource ReSerVation Protocol (RSVP) ? Version 1 Functional Specification, 1997. ,
DOI : 10.17487/rfc2205
IP Router Alert Option. IETF Standards Track document, RFC 2113, 1997. ,
DOI : 10.17487/rfc2113
IPv6 Router Alert Option. IETF Standards Track document , RFC 2711, 1999. ,
DOI : 10.17487/rfc2711
On the Impact of IP Option Processing, 2003. ,
On the Impact of IP Option Processing -Part 2, 2004. ,
End-to-end measurements on performance penalties of IPv4 options, IEEE Global Telecommunications Conference, 2004. GLOBECOM '04., 2004. ,
DOI : 10.1109/GLOCOM.2004.1378221
Customer Support Bulletin, MLT), 2001. ,
Host Identity Protocol Architecture. IETF draft (work in progress), draft-ietf-hip-arch-02, 2004. ,
The Kerberos Network Authentication Service (V5) IETF Standards Track document, 2005. ,
Framework for session set-up with media authorization . IETF Standards Track document, 2003. ,
RTP: A Transport Protocol for Real-Time Applications. IETF Standards Track document, 2005. ,
Requirements for internet hosts ? communication layers. IETF Standards Track document, RFC 1122, 1989. ,
Definition of the Differentiated Services Field (DS Field) in the IPv4 and IPv6 Headers, 1998. ,
DOI : 10.17487/rfc2474
Internet Protocol, Version 6 (IPv6) Specification). IETF Standards Track document, RFC 2460, 1998. ,
DOI : 10.17487/rfc1883
Security Architecture for the Internet Protocol, 1998. ,
The TLS Protocol Version 1.0. IETF Standards Track, RFC 2246, 1999. ,
Network Ingress Filtering: Defeating Denial of Service Attacks which employ IP Source Address. IETF Best Current Practices document, RFC 2827, 2000. ,
Ingress Filtering for Multihomed Networks. IETF Best Current Practices document, 2004. ,
DOI : 10.17487/rfc3704
Interactive Connectivity Establishment (ICE): A Methodology for Network Address Translator (NAT) Traversal for Multimedia Session Establishment Protocols. IETF draft (work in progress), draft-ietf-mmusic-ice-03, 2004. ,
The Alternative Network Address Types (ANAT) Semantics for the Session Description Protocol (SDP) Grouping Framework. IETF Standards Track document, 2005. ,
Negotiation of NAT-Traversal in the IKE. IETF Standards Track document, 2005. ,
UDP Encapsulation of IPsec ESP Packets. IETF Standards Track document, 2005. ,
Real Time Control Protocol (RTCP) attribute in Session Description Protocol (SDP). IETF Standards Track document, 2003. ,
NAT/Firewall NSLP Intra-Realm Considerations . Expired IETF draft, draft-aoun-nsis-nslp-natfw-intrarealm-01, 2004. ,
Lightweight Directory Access Protocol (v3): Technical Specification . IETF Standards Track document, 2002. ,
DOI : 10.17487/rfc3377
URL : http://citeseerx.ist.psu.edu/viewdoc/summary?doi=10.1.1.169.3939
Cryptographic Message Syntax (CMS) IETF Standards Track document, RFC, vol.3852, 2004. ,
DOI : 10.17487/rfc4853
Protecting multiple contents with the Cryptographic Message Syntax (CMS) ,
DOI : 10.17487/rfc4073
509 Extensions for IP Addresses and AS Identifiers. IETF Standard Track document, 2004. ,
A DNS RR for specifying the location of services (DNS SRV) IETF Standards Track document, RFC 2782, 2000. ,
Public Key Cryptography for Initial Authentication in Kerberos. IETF Draft (work in progress), draft-ietf-cat-kerberos-pk-init-29, 2005. ,
Network Address Translation -Protocol Translation (NAT- PT). IETF Standards Track document, RFC 2766, 2000. ,
DOI : 10.17487/rfc2766
Generic Security Service Application Program Interface Version 2, Update 1. IETF Standards Track document, RFC 2743, 2000. ,
DOI : 10.17487/rfc2743
The Kerberos Version 5 Generic Security Service Application Program Interface (GSS-API) Mechanism: Version 2. IETF Standards Track document, 2005. ,
Addition of Kerberos Cipher Suites to Transport Layer Security (TLS). IETF Standards Track document, RFC 2712, 1999. ,
Pre-Shared Key Ciphersuites for Transport Layer Security (TLS) IETF draft (work in progress), draft-ietf-tls-psk-09, 2005. ,
Unix network programming, ACM SIGCOMM Computer Communication Review, vol.20, issue.2, 2004. ,
DOI : 10.1145/378570.378600
Kerberized Internet Negotiation of Keys (KINK) IETF draft (work in progress), draft-ietf-kink-kink-07, 2005. ,
Distributed firewalls, Login, pp.37-39, 1999. ,
Implementing a distributed firewall, Proceedings of the 7th ACM conference on Computer and communications security , CCS '00 ,
DOI : 10.1145/352600.353052
Default Address Selection for Internet Protocol version 6 (IPv6) IETF Standards Track document, 2003. ,
Security Considerations for IP Fragment Filtering, 1995. ,
DOI : 10.17487/rfc1858
Protection Against a Variant of the Tiny Fragment Attack. IETF Informational document, RFC 3128, 2001. ,