[171087] in North American Network Operators' Group
Re: Requirements for IPv6 Firewalls
daemon@ATHENA.MIT.EDU (Brandon Ross)
Thu Apr 17 22:32:47 2014
Date: Thu, 17 Apr 2014 22:32:18 -0400 (EDT)
From: Brandon Ross <bross@pobox.com>
To: Timothy Morizot <tmorizot@gmail.com>
In-Reply-To: <CAFy81rkaY5OEQyuCEnHHYpUvC_Lb3Kh5gqZ6aZ7qKcZ9UoFNCQ@mail.gmail.com>
Cc: NANOG list <nanog@nanog.org>
Errors-To: nanog-bounces+nanog.discuss=bloom-picayune.mit.edu@nanog.org
On Thu, 17 Apr 2014, Timothy Morizot wrote:
> On Apr 17, 2014 7:52 PM, "Matthew Kaufman" <matthew@matthew.at> wrote:
>>
>> While you're at it, the document can explain to admins who have been
> burned, often more than once, by the pain of re-numbering internal services
> at static addresses how IPv6 without NAT will magically solve this problem.
>
> If you're worried about that issue, either get your own end user
> assignment(s) from ARIN or use ULA internally and employ NAT-PT (prefix
> translation) at the perimeter. That's not even a hard question.
Until you responded, Timothy, I didn't realize that Matthew was being
sarcastic.
--
Brandon Ross Yahoo & AIM: BrandonNRoss
+1-404-635-6667 ICQ: 2269442
Skype: brandonross
Schedule a meeting: http://www.doodle.com/bross
