Re: SSH'ing between machines with private IPs
- From: Unruh <unruh-spam@xxxxxxxxxxxxxx>
- Date: 19 Apr 2006 21:47:46 GMT
"Richard E. Silverman" <res@xxxxxxxx> writes:
"Unruh" == Unruh <unruh-spam@xxxxxxxxxxxxxx> writes:
Unruh> No All public routers throw them away precisely because of
Unruh> their problems. Sure, internally you may be able to route
Unruh> them,
Hence they are not "unroutable;" the term is a contradiction, period. It
makes no sense.
Again, they are unroutable because the routers in between throw the packets
away. They do not return them (whatever that would mean), they simply drop
them. That is what I mean by unroutable.
Now, it is certainly possible for routers to be set up not to do that, but
that is not the general situation.
Unruh> So I repeat, private IPs are better called unroutable IPs.
The document which defines their use disagrees with you:
Fine.
>> Besides, these address ranges are defined in RFC 1918, entitled
>> "Address Allocation for Private Internets," which refers explicitly
>> and repeatedly to "private address space" and "private addresses."
Interesting that you did not comment on this.
What is to comment? I was not proscribing a term. I was saying that it is
more useful for the user to think of them as unroutable. Ie, you cannot
route packets over the internet to addresses in teh private ranges. Now,
private can mean many things. People could well use addresses which are
part of the assigned ranges privately and not give any hint that they exist
to the outside world. That common sense of private is different from the
technical sense used in the RFC, but non-the-less can cause confusion.
Whereas unroutable I do not think does. It emphasises that they are
addresses to which packets cannot be delivered over the net.
As for changes taking "weeks" for DNS changes to propagate: of course some
DNS servers behave incorrectly. I have run into ISPs which do this.
However, it is an exception, not the rule, as well as being nonstandard
behavior, and I don't think claiming this is a normal occurrence is
reasonable. I run DNS for several organizations, and changes to RR's with
short TTLs are typically visible to most people within the span of those
TTLs.
I am giving experimental evidence. In the case of the telus AP, I have no
idea what their TTL is, but it took a week for the new IP to propagate to
the local university.
In the case of the MX record, the TTL was hours, and three weeks later I
was still getting mail delivered to the wrong IP. So, your systems may be
set up properly. I was simply telling the OP not to rely on it.
--
Richard Silverman
res@xxxxxxxx
.
- Follow-Ups:
- Re: SSH'ing between machines with private IPs
- From: Richard E. Silverman
- Re: SSH'ing between machines with private IPs
- References:
- Re: SSH'ing between machines with private IPs
- From: Unruh
- Re: SSH'ing between machines with private IPs
- From: Richard E. Silverman
- Re: SSH'ing between machines with private IPs
- Prev by Date: Re: Is there a way to speed up and resume a SSH X forwarding session from a disconnection?
- Next by Date: Re: SSH'ing between machines with private IPs
- Previous by thread: Re: SSH'ing between machines with private IPs
- Next by thread: Re: SSH'ing between machines with private IPs
- Index(es):
Relevant Pages
|
