[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]

Re: have a seat folks...

To: Fred Baker <fred@cisco.com>
Subject: Re: have a seat folks...
From: "Steven M. Bellovin" <smb@research.att.com>
Date: Thu, 20 Mar 2003 18:12:14 -0500
Cc: Randy Bush <randy@psg.com>, Thomas Narten <narten@us.ibm.com>, iesg@ietf.org, iab@iab.org
In-reply-to: Your message of "Thu, 20 Mar 2003 14:48:44 PST." <5.2.0.9.2.20030320144825.04de74b0@mira-sjc5-b.cisco.com>

In message <5.2.0.9.2.20030320144825.04de74b0@mira-sjc5-b.cisco.com>, Fred Bake
r writes:
>fine; a domain that one would limit a site-local prefix to.

Don't advertise the prefix.

The problem with site-local wasn't that restricting access is a bad 
idea -- quite the contrary; it's a good idea -- as opposed to the 
architectural problems caused by this particular way of doing so.

		--Steve Bellovin, http://www.research.att.com/~smb (me)
		http://www.wilyhacker.com (2nd edition of "Firewalls" book)

References:
- Re: have a seat folks...
  - From: Fred Baker <fred@cisco.com>

Prev by Date: Re: have a seat folks...
Next by Date: Re: have a seat folks...
Previous by thread: Re: have a seat folks...
Next by thread: Re: have a seat folks...
Index(es):
- Date
- Thread