nanog mailing list archives

Re: RFC 1918

From: "Scott McGrath" <s_mcgrath () bexair com>
Date: Tue, 18 Jul 2000 18:58:07 -0400


been there done that ;~}

While I was at Networkers one of the sessions I attended briefly touched
upon
Cisco's new hack for dealing with this it was a combination of MPLS and NAT
applied at the border router(s) to solve the overlap problem.  I have been
looking for more information because I do have some overlap problems

"Eric A. Hall" wrote:

Imagine that you inherit a network where RFC1918 addresses are used
on most or all  backbone links.


Imagine you inherit two of them, and they're both using 10.1.x.x. That's
the kind of trouble that end-users have as well. When their networks are
running 10.1.1.x and they get ICMP messages from remote networks with
that address, all kinds of problems can occur.

I noticed over the weekend I got a couple of ICMP Redirect messages from
1918 space. Lovely. Somebody doesn't understand how Redirect works,
which is typical of the crap that comes in from 1918 space.

Filtering 1918 isn't just good practice for most of the leaves, it's
mandatory in a lot of cases. No traffic should ever appear on the WAN
link using that address (that would violate the spec, right?) so
anything that does is bad traffic by definition. Filtered. Easy.

When ISPs choose to mark their packets with Internet-illegal addresses,
they are contributing to these problems. Sorry, but you're not supposed
to be using these addresses anyway.

Because it's reasonably  difficult to get real addresses from ARIN


ARIN is absolutely the root cause of the 1918 problem. They're the
principle driver behind the NAT market by extension as well. If it
weren't for their qualification rules, the Internet would work a helluva
lot better.

Imagine that. Management decides to limit address consumption, so the
rats start duplicating addresses, building protocol gateways and
crufting other hacks to get around the restriction. Who'd have thunk
such a thing would happen.

--
Eric A. Hall                                      http://www.ehsco.com/
Internet Core Protocols        http://www.oreilly.com/catalog/coreprot/

Current thread:

Re: RFC 1918, (continued)
- - - Re: RFC 1918 Greg A. Woods (Jul 16)
  - Re: RFC 1918 Michael Shields (Jul 14)
- RE: RFC 1918 rdobbins (Jul 16)
- Re: RFC 1918 Bohdan Tashchuk (Jul 16)
  - Re: RFC 1918 Greg A. Woods (Jul 16)
  - Re: RFC 1918 John Fraizer (Jul 17)
    - Re: RFC 1918 Stephen Kowalchuk (Jul 17)
    - Re: RFC 1918 ww (Jul 17)
    - Re: RFC 1918 Eric A. Hall (Jul 17)
    - Re: RFC 1918 ww (Jul 17)
    - Re: RFC 1918 Scott McGrath (Jul 18)
    - Re: RFC 1918 Stephen Kowalchuk (Jul 17)
    - Re: RFC 1918 ww (Jul 17)
- Re: RFC 1918 Richard A. Steenbergen (Jul 18)
  - Re: RFC 1918 Eric A. Hall (Jul 18)
  - Filtering (was Re: RFC 1918) Valdis . Kletnieks (Jul 18)
    - Re: Filtering (was Re: RFC 1918) Paul Vixie (Jul 19)
- Re: RFC 1918 Richard A. Steenbergen (Jul 18)
  - Re: RFC 1918 Eric A. Hall (Jul 18)
    - Re: RFC 1918 Bill Fumerola (Jul 18)
    - Re: RFC 1918 Shawn McMahon (Jul 19)

(Thread continues...)