nanog mailing list archives
Re: Another LTE network turns up as IPv4-only squat space + NAT
From: Måns Nilsson <mansaxel () besserwisser org>
Date: Thu, 19 Jul 2012 10:50:02 +0200
Subject: RE: Another LTE network turns up as IPv4-only squat space + NAT Date: Wed, Jul 18, 2012 at 10:36:31PM -0400 Quoting Chuck Church (chuckchurch () gmail com):
I disagree. I see it as an extra layer of security. If DOD had a network with address space 'X', obviously it's not advertised to the outside. It never interacts with public network. Having it duplicated on the outside world adds an extra layer of complexity to a hacker trying to access it. It's not a be-all/end-all, but it's a plus. A hacker who's partially in the network may try to access network 'X', but it routes to the outside world, tripping IDSs...
Then DoD should go for using something like the v6 documentation prefix or similar. It both is in many peoples filters and (as referenced here recently) is being used for stuff that "never" (promise! or at least not until we change our minds) is going to need connectivity. I do not see DoD handing back its allocations in the name of promoting unreachability by swapping it for reusable space.. It probably values the uniqueness property of allocated space too much. And rightly so. No, reusing somebody's prefix is A Very Bad Idea. I'm having a very hard time believing the alleged "ok" is anything but cheap talk. -- Måns Nilsson primary/secondary/besserwisser/machina MN-1334-RIPE +46 705 989668 The Osmonds! You are all Osmonds!! Throwing up on a freeway at dawn!!!
Attachment:
signature.asc
Description: Digital signature
Current thread:
- Another LTE network turns up as IPv4-only squat space + NAT Cameron Byrne (Jul 17)
- Re: Another LTE network turns up as IPv4-only squat space + NAT TJ (Jul 17)
- Re: Another LTE network turns up as IPv4-only squat space + NAT Justin M. Streiner (Jul 17)
- Re: Another LTE network turns up as IPv4-only squat space + NAT Andrey Khomyakov (Jul 18)
- Re: Another LTE network turns up as IPv4-only squat space + NAT TJ (Jul 18)
- Re: Another LTE network turns up as IPv4-only squat space + NAT Grant Ridder (Jul 18)
- RE: Another LTE network turns up as IPv4-only squat space + NAT Chuck Church (Jul 18)
- Re: Another LTE network turns up as IPv4-only squat space + NAT Måns Nilsson (Jul 19)
- Re: Another LTE network turns up as IPv4-only squat space + NAT Dobbins, Roland (Jul 25)
- Re: Another LTE network turns up as IPv4-only squat space + NAT bmanning (Jul 19)
- Re: Another LTE network turns up as IPv4-only squat space + NAT Andrey Khomyakov (Jul 18)
- Re: Another LTE network turns up as IPv4-only squat space + NAT joel jaeggli (Jul 25)