North American Network Operators Group

Date Prev | Date Next | Date Index | Thread Index | Author Index | Historical

Re: NOC servers with public/private ip address

  • From: Kevin Loch
  • Date: Tue Aug 14 19:20:26 2001

Wojtek Zlobicki wrote:

> Private addressing adds an extra layer of security as well as saving
> valuable IP space.

Be careful not to equate RFC1918 addresses with a security measure.
*Especially* on
publicly accessible routers.

The decision to use 1918 or not should be based upon wether that interface will
send packets to the Internet.  In this case it sounds like it won't so that
would be
a good thing to do.

If you also want that network to be secure, you should implement an appropriate
policy with filters/firewalls/intrusion det./etc.  Hopefully that policy won't
require 1918 addresses
to be effective :)