[40621] in North American Network Operators' Group
Re: NOC servers with public/private ip address
daemon@ATHENA.MIT.EDU (Jeff Gehlbach)
Wed Aug 15 11:07:56 2001
Date: Wed, 15 Aug 2001 11:07:21 -0400
From: Jeff Gehlbach <jeffg@empire.com>
To: Valdis.Kletnieks@vt.edu
Cc: "Christopher A. Woodfield" <rekoil@semihuman.com>,
nanog@merit.edu
Message-ID: <20010815110721.C15067@empire.com>
Mime-Version: 1.0
Content-Type: text/plain; charset=us-ascii
Content-Disposition: inline
In-Reply-To: <200108151501.f7FF1Nb21614@foo-bar-baz.cc.vt.edu>; from Valdis.Kletnieks@vt.edu on Wed, Aug 15, 2001 at 11:01:23AM -0400
Errors-To: owner-nanog-outgoing@merit.edu
On Wed, Aug 15, 2001 at 11:01:23AM -0400, Valdis.Kletnieks@vt.edu wrote:
> Whether to number your management network with a /24 out of RFC1918
> space, or a /2something out of your own address space, and how heavily
> firewalled/isolated to make it, will depend on your paranoia level and
Using a NAT in a NOC situation makes audit trails harder to maintain,
as all administrative connections to your network devices will appear
to come from (one of) the address(es) of the NAT device.
--
Jeff Gehlbach, Concord Communications <jgehlbach@concord.com>
Senior Professional Services Consultant, Atlanta
ph. 678.265.6067 fax 770.384.0183
