On Oct 10, 2014, at 4:13 AM, Baldur Norddahl <[email protected]> wrote:
> My colleges wanted to completely drop using public IP addressing in the > infrastructure. Your colleagues are wrong. Again, see RFC6752. > I am wondering if all the nay sayers would not agree that is it better to > have a single public loopback address shared between all my interfaces, than > to go with private addressing completely? This is a false dichotomy. > Because frankly, that is the alternative. It isn't the only alternative. The *optimal* alternative is to use publicly-routable link addresses, and then protect your infrastructure using iACLs, GTSM, CoPP, et. al. ---------------------------------------------------------------------- Roland Dobbins <[email protected]> // <http://www.arbornetworks.com> Equo ne credite, Teucri. -- Laocoön
