[58010] in North American Network Operators' Group
Re[3]: Get as much IP space as you ever dreamed of, was: Re: Looking to buy IPv4 addresses from class C swamp
daemon@ATHENA.MIT.EDU (Richard Welty)
Tue Apr 29 08:34:16 2003
Date: Tue, 29 Apr 2003 08:32:08 -0400 (EDT)
From: Richard Welty <rwelty@averillpark.net>
To: nanog@merit.edu
In-Reply-To: <064601c32449$35289350$1178510c@tsg1>
Errors-To: owner-nanog-outgoing@merit.edu
On Tue, 27 May 2003 05:03:31 -0700 todd glassey <todd.glassey@worldnet.att.net> wrote:
> What I dont understand is the need to stay 1:1 routable. Most all of you
> larger ISP's could have your own private IP Space by simply running a
> NAT'd
> infrastructure. Why not do it for all your customers?
umm, because there are protocols (like IPSec) which make end-to-end
assumptions that are broken by NAT?
yes, IPSec can be gotten through NAT, in some very specific cases, but i
have a client who is 1) on ameritech DSL (/29 space allocated) and
2) requires a specifc IPSec setup to communicate with one of their vendors,
an IPSec configuration that won't pass through NAT. if Ameritech (the only
viable DSL choice in their area) NATed, they'd be SOL, unable to
communicate with their vendor.
richard
--
Richard Welty rwelty@averillpark.net
Averill Park Networking 518-573-7592
Unix, Linux, IP Network Engineering, Security
