Search This Blog

Sunday, July 31, 2005

firewall-wizards digest, Vol 1 #1644 - 5 msgs

Send firewall-wizards mailing list submissions to
firewall-wizards@honor.icsalabs.com

To subscribe or unsubscribe via the World Wide Web, visit
http://honor.icsalabs.com/mailman/listinfo/firewall-wizards
or, via email, send a message with subject or body 'help' to
firewall-wizards-request@honor.icsalabs.com

You can reach the person managing the list at
firewall-wizards-admin@honor.icsalabs.com

When replying, please edit your Subject line so it is more specific
than "Re: Contents of firewall-wizards digest..."

Today's Topics:

1. Re: Internet accessible screened subnet - use public orprivateIPs? (Dale W. Carder)
2. RE: Internet accessible screened subnet - use public
orprivateIPs? (Luis Bruno)
3. RE: Internet accessible screened subnet - use public
orprivateIPs? (Paul D. Robertson)

--__--__--

Message: 1
Date: Wed, 27 Jul 2005 19:22:11 -0500
From: "Dale W. Carder" <dwcarder@doit.wisc.edu>
To: lordchariot@earthlink.net
Cc: firewall-wizards@honor.icsalabs.com
Subject: Re: [fw-wiz] Internet accessible screened subnet - use public orprivateIPs?

Thus spake lordchariot@earthlink.net (lordchariot@earthlink.net) on Mon, Jul 25, 2005 at 08:12:58PM -0400:
>
> What about when IPv6 becomes predominant on the net?

I wouldn't worry about this too much for businesses in the US.

> Am I mistaken that there doesn't seem to be any concept of NAT in the IPv6
> specs?

The idea of ipng was to learn from our mistakes.

However, either 1) NAT for ipv6 will be created, 2) PI address space becomes
a reality, or 3) an elegant to deal with hosts w/ multiple addresses bound to
an interface. Any of those is a long ways off at this point.

You may be interested in reading:
http://www.ietf.org/internet-drafts/draft-ietf-v6ops-nap-01.txt

Dale

----------------------------------
Dale W. Carder - Network Engineer
University of Wisconsin at Madison

--__--__--

Message: 2
Date: Thu, 28 Jul 2005 14:12:49 +0100
Subject: RE: [fw-wiz] Internet accessible screened subnet - use public
orprivateIPs?
From: Luis Bruno <lbruno@republico.estv.ipv.pt>
To: firewall-wizards@honor.icsalabs.com

R. DuFresne wrote:
> On Mon, 25 Jul 2005 lordchariot@earthlink.net wrote:
> > What about when IPv6 becomes predominant on the net?
>
> NATs not the issue with IPv6, retirement will have happened for all
> here long before this happens by all appearances.

As a 23yo computer engineering student, I sure hope I'm not retired
when IPv6 becomes predominant. That would be disappointing.

Cheers,
--
Luis Bruno

--__--__--

Message: 3
Date: Sat, 30 Jul 2005 17:45:32 -0400 (EDT)
From: "Paul D. Robertson" <paul@compuwar.net>
To: Luis Bruno <lbruno@republico.estv.ipv.pt>
Cc: firewall-wizards@honor.icsalabs.com
Subject: RE: [fw-wiz] Internet accessible screened subnet - use public
orprivateIPs?

On Thu, 28 Jul 2005, Luis Bruno wrote:

> > NATs not the issue with IPv6, retirement will have happened for all
> > here long before this happens by all appearances.
>
> As a 23yo computer engineering student, I sure hope I'm not retired
> when IPv6 becomes predominant. That would be disappointing.

It's difficult to predict implementation of v6. One of the more
interesting theories on non-implementation I've heard recently is that at
least one of the major vendors is holding off on adoption because of some
patents filed in preparation for v6- so it may be that there's at least
some pressure to have a 20 year holding pattern.

Personally, I'm not all that sure that we'll see v6 implemented without a
major push from somewhere large (I'd thought the US DoD mandate would
carry it- but that hasn't seemed to happen.) If I were someone like AOL
or China, I'd be looking to go there to help "wall off" my lusers from the
big bad v4 'net with pre-approved v4-v6 proxies for some level of content.

Get a couple of good-sized prefixes and walling stuff off seems like it'd
be pretty easy. Space is relatively expensive though, so it's definately
not in the play range with "real" addresses outside of FreeNet6.

Paul
-----------------------------------------------------------------------------
Paul D. Robertson "My statements in this message are personal opinions
paul@compuwar.net which may have no basis whatsoever in fact."

--__--__--

_______________________________________________
firewall-wizards mailing list
firewall-wizards@honor.icsalabs.com
http://honor.icsalabs.com/mailman/listinfo/firewall-wizards

End of firewall-wizards Digest

1 comment:

Anonymous said...

alprazolam without prescription xanax overdose much - xanax drug screen long