John, I've been silent on this list for quite a while but it has always erked me the way you insist on proving your network knowledge about "How to Build Networks". Since you feel the need to criticize those who have built networks that you consider inferior why don't you share some of the IP backbones that you have worked for and helped create. (And yes, I do take it personally.) T..S
Security? I have not, nor do I plan to, but I can think of tons of different points on OARnet directly and two places offnet that one could inject packets into their network and get to those routers, 1918 addressed or not.
What ever happened to using good old access-lists on the router for security and blocking traffic destined for the router itself at the borders? It seems to be a much better security model than using 1918 space on the routers. Beyond that, it lets you actually have REAL in-addr.arpa replies for the WAN interfaces in a traceroute.
Then again, being an OS-hUge activity, it is very much in character for them to do things their own way and damn the world if they don't like it.
I'm convinced that the only thing OS-hUge breeds is primadonnas with a worthless piece of paper that proves they wasted their money and several years of their life.
--- John Fraizer EnterZone, Inc