[134399] in North American Network Operators' Group
Re: NIST IPv6 document
daemon@ATHENA.MIT.EDU (Dobbins, Roland)
Wed Jan 5 17:45:04 2011
From: "Dobbins, Roland" <rdobbins@arbor.net>
To: Nanog Operators' Group <nanog@nanog.org>
Date: Wed, 5 Jan 2011 22:44:51 +0000
In-Reply-To: <AANLkTinVKNQ+TZUt1XvXt97S_RQMmrpWhXy7gT4fbJUr@mail.gmail.com>
Errors-To: nanog-bounces+nanog.discuss=bloom-picayune.mit.edu@nanog.org
On Jan 6, 2011, at 1:02 AM, TJ wrote:
> if you are permitting external hosts the ability to scan your internal n=
etwork in an unrestricted
> fashion
DCN aside, how precisely does one define 'internal network' in, say, the co=
ntext of the production network of a broadband access SP, or hosting/coloca=
tion/VPS/IaaS SP?
Surely you aren't advocating wedging stateful firewalls into broadband acce=
ss networks or in front of servers, with all the DoS chokepoint breakage th=
at implies?
------------------------------------------------------------------------
Roland Dobbins <rdobbins@arbor.net> // <http://www.arbornetworks.com>
Most software today is very much like an Egyptian pyramid, with millions
of bricks piled on top of each other, with no structural integrity, but
just done by brute force and thousands of slaves.
-- Alan Kay
