Comment by trashb

> The only alternative is to disallow port filtering in core internet infrastructure

I think this is an acceptable alternative. In the same way that your mail service is legally required to deliver your mail as part of their universal service obligation (without reading it).