[33132] in North American Network Operators' Group
Re: RFC1918 addresses to permit in for VPN?
daemon@ATHENA.MIT.EDU (Bill Fumerola)
Sat Dec 30 16:05:21 2000
Date: Sat, 30 Dec 2000 15:02:13 -0600
From: Bill Fumerola <billf@FreeBSD.org>
To: "Deron J. Ringen" <djr@eng.bellsouth.net>
Cc: Simon Lyall <simon.lyall@ihug.co.nz>, nanog@merit.edu
Message-ID: <20001230150213.Z72273@elvis.mu.org>
Mime-Version: 1.0
Content-Type: text/plain; charset=us-ascii
Content-Disposition: inline
In-Reply-To: <NEBBLOMNADAAGMHJKLDCCECACHAA.djr@eng.bellsouth.net>; from djr@eng.bellsouth.net on Fri, Dec 29, 2000 at 04:19:23PM -0500
Errors-To: owner-nanog-outgoing@merit.edu
On Fri, Dec 29, 2000 at 04:19:23PM -0500, Deron J. Ringen wrote:
> That makes perfect sense to me...there is not a better way to protect a box
> from a DOS/hack than to only give it a private address. Why expose a box
> to the outside world if there is not a need???
For exactly this reason, people start to use the reserved address space
as a security feature and think "welp, its safe now!".
--
Bill Fumerola / billf@FreeBSD.org
