[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]
Re: draft-ietf-v6ops-nap-00.txt <PROXIES>
Hi Pekka,
On Sun, 3 Apr 2005 20:39:49 +0300 (EEST)
Pekka Savola <pekkas@netcore.fi> wrote:
<snip>
>
> In any case, proxies become a necessity when ULAs are used. The
> situation differs because in v4 you can use NAT ("implicit proxy")
> instead.
>
I've understood that the intended, most common use of ULAs would be to
deploy them in parallel with globals, rather than instead of globals. I
wouldn't think a proxy would be a necessity in that scenario. Or have
I misunderstood what you're saying ?
In a ULA only scenario, a proxy would be necessary to access external
content. It's use as a topology hiding mechanism wouldn't be of much
value though, as the ULA addressed topology would be unreachable over
the public Internet anyway.
(Unless, in the case of a HTTP proxy, the proxy had be missconfigured
and was able to proxy internal intranet sites for external HTTP clients.
Apparently this is how Adrian Lamo exploited Worldcom a few years back.
For details :
http://www.securityfocus.com/news/296
)
Regards,
Mark.
--
The Internet's nature is peer to peer.