[Info-vax] "Linux Shminux - IPsec is Snake Oil!" VMS Mgmnt
Bob Eager
rde42 at spamcop.net
Mon Apr 13 13:38:06 EDT 2009
On Mon, 13 Apr 2009 16:06:53 UTC, "Richard B. Gilbert"
<rgilbert88 at comcast.net> wrote:
> Bob Eager wrote:
> > On Mon, 13 Apr 2009 14:26:27 UTC, "Richard B. Gilbert"
> > <rgilbert88 at comcast.net> wrote:
> >
> >> A lot of people who are using the RFC-1918 private address spaces
> >> couldn't care less about IPv6. I have ONE valid IP address on the
> >> public side of my router. Everything else is 192.168.1.X.
> >
> > Maybe. Mine is the opposite. Everything has a public IP address.
> >
> >> If Comcast
> >> implements IPv6, and they haven't said a word to their customers about
> >> it yet, we may have to get a new router but I doubt that anything else
> >> will change.
> >
> > My ISP already provides IPv6.
> >
> >> I certainly don't want the Internet to have access to my
> >> systems, now or ever.
> >
> > And NAT may help, but a proper firewall is better.
>
> Well, my router will not pass any incoming packets that are not a
> response to an outgoing packet. Every connection must be initiated from
> inside. It's just as well. My router logs show that somebody probes my
> external address about every fifteen or twenty seconds. Fat lot of good
> it does them!!
Exactly. I have one or two exceptions built in, but they are for
specific external IPs. And for my mail and DNS servers of course.
--
Bob Eager
More information about the Info-vax
mailing list