Re: [fw-wiz] Nat Limitations?
- From: "Dale W. Carder" <dwcarder@xxxxxxxxxxxxx>
- Date: Tue, 09 Oct 2007 11:57:15 -0500
First off, you may want to check out a couple of "resnet"
mailing lists that exist. I think educause hosts one.
On Oct 9, 2007, at 8:03 AM, jason@xxxxxxxxxx wrote:
So, in building it we want to make it as portable as possible. As
such,
NAT comes to mind so we don't have to re-number it if a different
provider
takes it.
You could also acquire globally routable provider-independent address
space and an AS number. Then you could peer w/ one or more isp's
as well.
It also has a number of other advantages which I'm sure are
well known.
And a number of disadvantages that are well known.
* It's harder to handle RIAA complaints since everything comes from a
different public address.
ONLY interact with the RIAA via their laywers talking to your
laywers. You are not their agent.
* Rate limiting (packet shaping) is currently done at the ISP for
these
buildings. We'll have to move that inside (more $$) or do protocol
shaping instead of by IP address.
I would recommend you do the rate limiting yourself. More $$
upfront, but you can depreciate hardware and save costs elsewhere.
Do the benefits outweight the caveats?
My experience with our /17 of dorms is no.
Dale
_______________________________________________
firewall-wizards mailing list
firewall-wizards@xxxxxxxxxxxxxxxxxxxxx
https://listserv.icsalabs.com/mailman/listinfo/firewall-wizards
- References:
- Re: [fw-wiz] Allowing Internet Access to MS Project Server
- From: Darden, Patrick S.
- [fw-wiz] Nat Limitations?
- From: jason
- Re: [fw-wiz] Allowing Internet Access to MS Project Server
- Prev by Date: Re: [fw-wiz] Nat Limitations?
- Next by Date: Re: [fw-wiz] Nat Limitations?
- Previous by thread: Re: [fw-wiz] Nat Limitations?
- Next by thread: [fw-wiz] Survey of IPv6 Support Among Commercial Firewalls
- Index(es):
