On Tue, May 30, 2000 at 02:02:25PM -0600, Mullins, Ron wrote: > 1. Do these private address increase security in any way?
NAT does, yes. But do not overestimate this. > 2. Since we use NAT, no 11.x.x.x addresses get to the net, so is there any > reason to switch, other than recommended convention? Yes, because there are a lot of ways these addresses could be leaked. I do not know your setup but common places would be email headers and http requests. > 3. Why are they "non-routing"? Or do my specs need an upgrade...and I'm > talking glasses. I haven't seen anything other than "you should..." in the > HOWTOs. A lot of routes on the internet do refuse to route these addresses. Just try a traceroute 10.1.1.1 for instance. > 4. (possibly redundant) Does using a non-private IP behind a NAT break > anything? (besides actually getting to real 11.x.x.x) See above. Hope this helps. Michael -- Michael Meskes [email protected] Go SF 49ers! Go Rhein Fire! Use Debian GNU/Linux! Use PostgreSQL!
