RFC1918 addresses to permit in for VPN?
Stephen Sprunk
ssprunk at cisco.com
Mon Jan 1 11:18:47 UTC 2001
Thus spake <mdevney at teamsphere.com>
> Using RFC1918 space also gets you an IP range where the outside
> world has no route to it -- Sorry, but no packets are not getting
there,
> ergo no way to hack.
...
> At that point, just by use of simple routing, you've effectively
> eliminated 100% of attacks from the outside, and you only have to
> worry about inside. The front door is secure, now work on the back
> door.
Being convinced you're secure is the surest way to get yourself hacked.
Perfect security is impossible.
Remember, it's not paranoia when they *are* out to get you.
S
| | Stephen Sprunk, K5SSS, CCIE #3723
:|: :|: Network Design Consultant, GSOLE
:|||: :|||: New office: RCDN2 in Richardson, TX
.:|||||||:..:|||||||:. Email: ssprunk at cisco.com
More information about the NANOG
mailing list