[128049] in North American Network Operators' Group
Re: IPv4 Exhaustion...
daemon@ATHENA.MIT.EDU (Steven Bellovin)
Fri Jul 23 14:00:19 2010
From: Steven Bellovin <smb@cs.columbia.edu>
In-Reply-To: <1101219972-1279906580-cardhu_decombobulator_blackberry.rim.net-1881903051-@bda903.bisx.prod.on.blackberry>
Date: Fri, 23 Jul 2010 13:59:41 -0400
To: khatfield@socllc.net
Cc: nanog@nanog.org
Errors-To: nanog-bounces+nanog.discuss=bloom-picayune.mit.edu@nanog.org
On Jul 23, 2010, at 1:36 18PM, khatfield@socllc.net wrote:
> Hello,
> =46rom our past experience this can be accomplished without issue as =
long as you have good log records and tracking in place.
Do the complaints you receive include port numbers? Do you log the =
translation for every TCP connection and UDP exchange? I don't see how =
logs would work without that.
> Ensure you have long-term retention for the logs to cover yourself.
I'd consult a lawyer on that -- are you required to have such logs? Per =
the above, I'm not convinced that it's technically feasible to keep such =
logs for an operation of any size, nor do I think that most complaints =
have the right information (to wit, port numbers) to use them if they do =
exist.
--Steve Bellovin, http://www.cs.columbia.edu/~smb
