Andrew White wrote
The problem with these people's arguments is that it's not the address
range
that gives the security, it's the fact that you have an isolated network
connected to the global network via only a proxy (NAT) and firewall.
You can use any address range you like inside the NAT.
Christian Huitema wrote:
This would work, and would be acceptiable to most people if there was
a simple rule that worked, and would continue to work as the network
grows.
My concern is that an 'approximately unique' local address could at
some point become less than unique and could
Christian Huitema wrote:
Andrew, the draft has provision for both registered unique local
addresses and probably unique local addresses. The registered unique
addresses are not valid on the Internet, but they definitely will not
collide with other addresses.
I am still have 2 concerns with