Re: A simple question

On Wed, 23 Apr 2003, Tim Chown wrote:

On Wed, Apr 23, 2003 at 08:28:28AM +0300, Pekka Savola wrote:


Who said IPv6 addresses based on MAC addresses should be used on servers?

We certainly don't.  Manually configuring is the thing.


although not with <prefix>::1, at least pick a random-ish 64-bit host
part to make the port scanners have to work rather harder...


Yep.  For example, we use a very simple numbering which makes all the
hosts within a site unique (so, there will not be an address collision
even if server A is moved from link 1 to link 2 where server B is).

Works Just Great (tm).  (Except implementation support could be better 
:-).

-- 
Pekka Savola                 "You each name yourselves king, yet the
Netcore Oy                    kingdom bleeds."
Systems. Networks. Security. -- George R.R. Martin: A Clash of Kings

<Prev in Thread]	Current Thread	[Next in Thread>
Re: A simple question, (continued) Re: A simple question, Stephen Sprunk Re: A simple question, Stephen Sprunk Re: A simple question, Joe Abley Re: A simple question, Paul Vixie Re: A simple question, Keith Moore Re: A simple question, Paul Vixie Re: A simple question, Dean Anderson Re: A simple question, David Morris Re: A simple question, Pekka Savola Re: A simple question, Tim Chown Re: A simple question, Pekka Savola <= Re: A simple question, Margaret Wasserman Re: A simple question, Stephen Sprunk Re: A simple question, Eliot Lear Re: A simple question, Michael Thomas Re: A simple question, Matt Crawford Re: A simple question, Valdis . Kletnieks Re: A simple question, Matt Crawford Re: A simple question, Mark . Andrews Re: A simple question, Robert Elz Re: A simple question, Keith Moore

Previous by Date:	Re: A simple question, Tim Chown
Next by Date:	Re: A simple question, Spencer Dawkins
Previous by Thread:	Re: A simple question, Tim Chown
Next by Thread:	Re: A simple question, Margaret Wasserman
Indexes:	[Date] [Thread] [Top] [All Lists]