[94445] in North American Network Operators' Group
Re: Google wants to be your Internet
daemon@ATHENA.MIT.EDU (Jeroen Massar)
Mon Jan 22 13:56:09 2007
Date: Mon, 22 Jan 2007 18:49:44 +0000
From: Jeroen Massar <jeroen@unfix.org>
To: Roland Dobbins <rdobbins@cisco.com>
Cc: NANOG <nanog@merit.edu>
In-Reply-To: <DB3C27EA-ABC5-4166-BFA4-9BAE23C03DC7@cisco.com>
Errors-To: owner-nanog@merit.edu
This is an OpenPGP/MIME signed message (RFC 2440 and 3156)
--------------enig2F47D55B2CC05F1EF954F0C3
Content-Type: text/plain; charset=ISO-8859-1
Content-Transfer-Encoding: quoted-printable
Roland Dobbins wrote:
>=20
>=20
> On Jan 22, 2007, at 9:38 AM, Jeroen Massar wrote:
>=20
>> But I guess it is nonsense.
>=20
> This is what ssh tunnels and/or VPN are for, IMHO
[..]
Of course, for protecting them you should use that and firewalls and
other security measures that one deems neccesary.
But which address space do you put in the network behind the VPN?
RFC1918!? Oh, already using that on the DSL link to where you are
VPN'ing in from..... oopsy ;)
That is the case for globally unique addresses and the reason why banks
that use RFC1918 don't like it when they need to merge etc etc etc...
Fortunately, for IPv6 we have ULA's (fc00::/7), that solves that problem.=
/me donates coffee around.
Greets,
Jeroen
--------------enig2F47D55B2CC05F1EF954F0C3
Content-Type: application/pgp-signature; name="signature.asc"
Content-Description: OpenPGP digital signature
Content-Disposition: attachment; filename="signature.asc"
-----BEGIN PGP SIGNATURE-----
Version: GnuPG v1.4.6 (MingW32)
Comment: Jeroen Massar / http://unfix.org/~jeroen/
iHUEARECADUFAkW1B0guFIAAAAAAFQAQcGthLWFkZHJlc3NAZ251cGcub3JnamVy
b2VuQHVuZml4Lm9yZwAKCRApqihSMz58I7+kAJ9RcaWmFwkjgFB43n703m7hJzOz
GQCePjC4sHyt3QKZy75pUHoI/wPs6Jw=
=KG1X
-----END PGP SIGNATURE-----
--------------enig2F47D55B2CC05F1EF954F0C3--
