SUPnP
time for a secure version?
verified port mapping sends a permission request to the origonating machine or dedicated management machine, handled in OS to generate a security request for "Program X" (identified by outgoing port) on Machine Y to talk to Internet (on ports)?