[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]
Re: have a seat folks...
In message <5.2.0.9.2.20030320144825.04de74b0@mira-sjc5-b.cisco.com>, Fred Bake
r writes:
>fine; a domain that one would limit a site-local prefix to.
Don't advertise the prefix.
The problem with site-local wasn't that restricting access is a bad
idea -- quite the contrary; it's a good idea -- as opposed to the
architectural problems caused by this particular way of doing so.
--Steve Bellovin, http://www.research.att.com/~smb (me)
http://www.wilyhacker.com (2nd edition of "Firewalls" book)