[60519] in North American Network Operators' Group
Re: Private port numbers?
daemon@ATHENA.MIT.EDU (Crist Clark)
Wed Aug 13 15:39:10 2003
Date: Wed, 13 Aug 2003 12:38:22 -0700
From: "Crist Clark" <crist.clark@globalstar.com>
Reply-To: Crist.Clark@globalstar.com
Cc: nanog@merit.edu
Errors-To: owner-nanog-outgoing@merit.edu
Iljitsch van Beijnum wrote:
>
> Be damned if you filter, be damned if you don't. Nice choice.
>
> I think it's time that we set aside a range of port numbers for private
> use. That makes all those services that have no business escaping out
> in the open extremely easy to filter, while at the same time not
> impacting any legitimate users.
Cool. So if you use private ports, you'll be totally protected from the
Internet nasties (and the Internet protected from your broken or malicious
traffic) in the same way RFC1918 addressing does the exact same thing now
at the network layer.
I'm sure everyone will filter private ports just as effectively as RFC1918
and martian addresses are filtered at borders now.
Can't wait to read the draft and RFC. Rock on.
--
Crist J. Clark crist.clark@globalstar.com
