Internal numbers behind NAT should use the ranges allocated by RFC
1918. One of the networks we acquired a year or two back had
randomly chosen to use a rnage allocated to Sun Microsystems for
their internal block, and this worked fine as long as Sun didn't post
urgent Java updates to servers in that block....
David Gillett
On 31 May 2001, at 11:29, [EMAIL PROTECTED] wrote:
> > RFC 1918 && i quote..
> > - For security reasons, many enterprises use application
> > layer gateways to connect their internal network to the
> > Internet. The internal network usually does not have
> > direct access to the Internet, thus only one or more
> > gateways are visible from the Internet. In this case, the
> > internal network can use non-unique IP network numbers.
>
> At no point does it inet_addr this nor does it imply this.. IMHO
> it allows you only to control the internal makeup of your network structure.
>
> All it does other than preserve global ipv4s is, to allow for
> a obvious demarkation from what is global and what is not..
> FWs act as your horizontal and vertical controls.
>
> IMHO anyhow..
>
> Best Regards
> [EMAIL PROTECTED]
>
> Time for a lot more coffee..;-))
-
[To unsubscribe, send mail to [EMAIL PROTECTED] with
"unsubscribe firewalls" in the body of the message.]
