ietf
[Top] [All Lists]
<prev [Date] next>
[Advanced]
 <prev [Thread] next>

A little comic relief.... was: RE: NATs as firewalls

2007-03-09 02:22:14
from [Thomas Gal] [Permanent Link] 
I encountered this article, perhaps worth seeing a lay-person's views on
the subject. If not, however, I particularly like the little excerpt
they use to some up NAT discussions:

<http://arstechnica.com/articles/paedia/ipv6.ars>

This is usually when someone brings up NAT. Home routers (and a lot of
enterprise equipment) use a technique called "network address
translation" so that a single IP address can be shared by a larger
number of hosts. The discussion usually goes like this:


    "Use NAT, n00b. All 1337 of my Linux boxes share a single IP and
it's safer, too!"

    "NAT is not a firewall."

    "NAT sucks."

    "You suck."

</http://arstechnica.com/articles/paedia/ipv6.ars>

-Thomas Gal
tgal(_at_)luxtera(_dot_)com

-----Original Message-----
From: bmanning(_at_)karoshi(_dot_)com [mailto:bmanning(_at_)karoshi(_dot_)com] 
Sent: Thursday, March 08, 2007 4:16 AM
To: michael(_dot_)dillon(_at_)bt(_dot_)com
Cc: ietf(_at_)ietf(_dot_)org
Subject: Re: NATs as firewalls

On Thu, Mar 08, 2007 at 11:22:05AM -0000, 
michael(_dot_)dillon(_at_)bt(_dot_)com wrote:


In any case, I don't have any examples to present since most of the
reclamation that has been done over the past few years was done

without

any fanfare. The RIRs and the organizations involved are really the

only

ones who know the details. Bill Manning was somehow involved in
identifying blocks to be reclaimed so he may be able to provide some
illumination without heat.

--Michael Dillon



        predating the existance of ARIN, LACNIC, and AFRINIC, i worked
        with the permission of the then IANA and our team reclaimed 14%
        of the total IPv4 space and put it back into the freepool. We 
        could have done more (estimates of another 6-8% were feasable)
        but we ran out of funds and the IANA ceased being the registry
        of first/last resort.

        Time, processes, administrative thinking, and other factors 
        have changed, which lead me to believe that reclaimation - as
        such - will not happen again to any noticable degree.

--bill

_______________________________________________
Ietf mailing list
Ietf(_at_)ietf(_dot_)org
https://www1.ietf.org/mailman/listinfo/ietf

_______________________________________________
Ietf mailing list
Ietf(_at_)ietf(_dot_)org
https://www1.ietf.org/mailman/listinfo/ietf
[More with this subject...]
<Prev in Thread] Current Thread [Next in Thread>
  • A little comic relief.... was: RE: NATs as firewalls, Thomas Gal <=
Previous by Date:  RE: DNS role (RE: NATs as firewalls, cryptography, and curbing DDoS threats.), Hallam-Baker, Phillip
Next by Date:  Re: FYI: Daylight Savings Time discrepancy, Lars Eggert
Previous by Thread:  RE: Prague, michael.dillon
Next by Thread:  Last Call Comments on draft-housley-tls-authz-07, Eric Rescorla
Indexes:  [Date] [Thread] [Top] [All Lists]