Hi,
Regarding the local addressing debate...
I had the misfortune to having to participate in a discussion where a
multiple-branch (20-30+) enterprise, which has deployed private addresses
and network-to-network VPN's inside it, wants to start using IPv6.
I'm wondering whether there exist any educational material why
RFC1918-like addressing is really *NOT* a good idea (or even, list and
evaluate the tradeoffs), and how to get around it. ("If one can state
clearly arguments why they shouldn't be doing it with IPv4, maybe it's
easier to convince them not to do so with IPv6").
It seems to me that there is a very severe need for a way to enlighten
folks like that if we ever want to be successful..
http://www.cs.utk.edu/~moore/what-nats-break.html is interesting, but not
focused enough for RFC1918-like addressing itself.
I.e., what I'd like to see is whether anyone has written up something
regarding either "why local addressing would be a bad idea with IPv6", or
"why local addressing is a bad idea with IPv4", especially from the
security point-of-view.
btw., one way to probably avoid the two-faced DNS issues with local
addressing is probably to simply use a different naming for internal
commuications like with example.com --> example.internal.
--
Pekka Savola "You each name yourselves king, yet the
Netcore Oy kingdom bleeds."
Systems. Networks. Security. -- George R.R. Martin: A Clash of Kings
--------------------------------------------------------------------
IETF IPv6 working group mailing list
[EMAIL PROTECTED]
Administrative Requests: https://www1.ietf.org/mailman/listinfo/ipv6
--------------------------------------------------------------------
