Section 1: ---------- OLD: Firewalls are specifically out-of-scope for this specification; however, this specification does cover the inherent filtering aspects of NATs which may resemble firewall operation NEW: A comprehensive description of firewall behaviors and associated requirements is specifically out-of-scope for this specification. However, this specification does cover basic firewall aspects present in NATs (see section 5). Section 10, second paragraph: OLD: It is worth nothing... NEW: It is worth noting... Section 4.2.1 ------------- Last paragraph before REQ-3a: Add the following sentence to the end of the paragraph: [RFC 0768] specifies that the source port is set to zero if no reply packet are expected. In this case it does not matter what the NAT maps it to as the source port will not be used. However, many common OS APIs do not allow a user to send from port zero, applications do not use port zero, and the behavior of various existing NATs with regards to a packet with a source of port zero is unknown. This document does not specify any normative behavior for a NAT when handling a packet with a source port of zero which means that applications can not count on any sort of deterministic behavior for these packets. REQ-3a: OLD: ...range 1-1023... NEW: ...range 0-1023... Section 12, REQ-3a: ------------------- OLD: ...range 1-1023... NEW: ...range 0-1023... Section 13, second paragraph: OLD: This document recommends that the timers for mapping be refreshed only on outgoing packets and does not make recommendations about whether or not inbound packets should update the timers. NEW: This document recommends that the timers for mapping be refreshed only on outgoing packets (see REQ-6) and does not make ^^^^^^^^^^^ recommendations about whether or not inbound packets should update the timers. Section 13, third paragraph: ---------------------------- OLD: This document recommends that the NAT filters be specific to the external IP address only and not to the external IP and port. NEW: This document recommends that the NAT filters be specific to the external IP address only (see REQ-8) and not to the external IP ^^^^^^^^^^^ address and UDP port. ^^^^^^^ ^^^ Section 16: ----------- Add "Peter Koch" to the Acknowledgements.