NAT traversal improvements, pt. 3: looking ahead

Tailscale's recent blog post explores ongoing improvements in NAT traversal, focusing on enhancing direct connectivity between devices by addressing challenges such as locked-down networks that require relays like Tailscale's DERP. While DERP reliably forwards encrypted packets over TCP, it is not optimized for performance, prompting discussions about using a UDP-based relay to improve throughput and reduce latency in challenging connectivity scenarios. As peer-to-peer communication becomes mainstream due to tools like WebRTC and VPNs, there is a shift in equipment defaults and enterprise policies, paving the way for easier NAT traversal. Tailscale's multi-strategy approach, including STUN, hole punching, and DERP relays, aims to make VPN networking more reliable, envisioning a future where encrypted packets take the most direct path possible. The blog also highlights the potential impact of IPv6 adoption in simplifying connectivity issues by allowing peers to communicate directly without NAT. The overarching trend indicates a move towards more efficient, peer-to-peer, and direct connectivity, with Tailscale continuing to refine its solutions to ensure seamless communication in varied network environments.