nanog mailing list archives
RE: using ULA for 'hidden' v6 devices?
From: George Bonser <gbonser () seven com>
Date: Thu, 26 Jan 2012 10:00:20 +0000
Use different GUA ranges for internal and external. It's easy enough to get an additional prefix.As others have mentioned, things like management interfaces on accessswitches, printers, and IP phones would be good candidates to hide with ULA. Or non-advertised, filtered GUA. Works just as well either way. Owen
If one is obtaining "another" prefix for local addressing, I see no benefit. I am assuming that anyone that is using ULA is using it for things that don't communicate off the site such as management interfaces of things, etc. This won't be a subnet you are connecting by VPN to another organization, usually, but even if you do the chances of collision is pretty low if you select your nets properly. But for the most absolutely paranoid site, I can see some appeal in using ULA in conjunction with DNS64/NAT64 and see them giving the devices internet access via v4. Not that I agree with the notion, mind you, just that I can see someone looking at that as an appealing solution for some things. Even if someone managed to get through the NAT device via v4, they would have nothing to talk to on the other side as the other side is all v6.
Current thread:
- using ULA for 'hidden' v6 devices? Justin M. Streiner (Jan 25)
- Re: using ULA for 'hidden' v6 devices? Cameron Byrne (Jan 25)
- Re: using ULA for 'hidden' v6 devices? Jay Ford (Jan 25)
- Re: using ULA for 'hidden' v6 devices? Dale W. Carder (Jan 25)
- Re: using ULA for 'hidden' v6 devices? Nick Hilliard (Jan 25)
- Re: using ULA for 'hidden' v6 devices? Dave Pooser (Jan 25)
- Re: using ULA for 'hidden' v6 devices? Justin M. Streiner (Jan 25)
- Re: using ULA for 'hidden' v6 devices? Owen DeLong (Jan 25)
- RE: using ULA for 'hidden' v6 devices? George Bonser (Jan 26)
- Re: using ULA for 'hidden' v6 devices? Owen DeLong (Jan 26)
- Re: using ULA for 'hidden' v6 devices? Jima (Jan 26)
- Re: using ULA for 'hidden' v6 devices? Owen DeLong (Jan 26)
- Re: using ULA for 'hidden' v6 devices? Cameron Byrne (Jan 26)
- Re: using ULA for 'hidden' v6 devices? Nick Hilliard (Jan 25)
- Re: using ULA for 'hidden' v6 devices? Cameron Byrne (Jan 26)
- Re: using ULA for 'hidden' v6 devices? Owen DeLong (Jan 26)
- Re: using ULA for 'hidden' v6 devices? Cameron Byrne (Jan 26)
- Re: using ULA for 'hidden' v6 devices? Douglas Otis (Jan 26)
- RE: using ULA for 'hidden' v6 devices? George Bonser (Jan 26)
- Re: using ULA for 'hidden' v6 devices? Chuck Anderson (Jan 26)