nanog mailing list archives

Previous By Date Next
Previous By Thread Next

RE: RFC1918 addresses to permit in for VPN?

From: Randy Bush <randy () psg com>
Date: Sun, 31 Dec 2000 12:40:50 -0800


That makes perfect sense to me...there is not a better way to protect a
box from a DOS/hack than to only give it a private address.

this is a common fantasy.  changing the its license place does not change
the vulnerability of your car to an accident.

No, but putting your car on a private road that you need to circumvent
several roadblocks to reach IS a pretty good deterrent to its being in an
accident.


that's called a firewall, or in the extreme a disconnected network, not nat.

randy
Previous By Date Next
Previous By Thread Next

Current thread: