RFC1918 addresses to permit in for VPN?

Stephen Sprunk ssprunk at cisco.com
Mon Jan 1 11:18:47 UTC 2001


Thus spake <mdevney at teamsphere.com>
> Using RFC1918 space also gets you an IP range where the outside
> world has no route to it -- Sorry, but no packets are not getting
there,
> ergo no way to hack.
...
> At that point, just by use of simple routing, you've effectively
> eliminated 100% of attacks from the outside, and you only have to
> worry about inside.  The front door is secure, now work on the back
> door.

Being convinced you're secure is the surest way to get yourself hacked.
Perfect security is impossible.

Remember, it's not paranoia when they *are* out to get you.

S

     |          |         Stephen Sprunk, K5SSS, CCIE #3723
    :|:        :|:        Network Design Consultant, GSOLE
   :|||:      :|||:       New office: RCDN2 in Richardson, TX
.:|||||||:..:|||||||:.    Email: ssprunk at cisco.com






More information about the NANOG mailing list