Great Circle Associates Firewalls
(April 1995) 		 
Indexed By Date: [Previous] [Next] Indexed By Thread: [Previous] [Next]
Subject: Re: Registered IP vs unregistered
From: Howard Berkowitz <hcb @ clark . net>
Date: Mon, 10 Apr 1995 08:49:24 -0400 (EDT)
To: dcrocker @ networking . stanford . edu (Dave Crocker)
Cc: hcb @ clark . net, beck @ cs . ualberta . ca, firewalls @ GreatCircle . COM
In-reply-to: <v03001c04abae19094204 @ [198 . 120 . 32 . 21]> from "Dave Crocker" at Apr 9, 95 09:41:11 pm 
DC:   
HB:   At 3:47 PM 4/9/95, Howard Berkowitz wrote:
HB:  Perhaps it's appropriate to say that before implementing
HB:  RFC1597 addresses, it is appropriate to plan how you will
:   
DC:           excellent suggestion.
:   
HB:  convert from them if necessary.  DHCP is one good alternative,
HB:  if supported.
:   
DC:           DHCP does somewhat less than many people may realize.  It relieves
DC:   you from having to changes tables in each user host; this is wonderful.
DC:   However, you still must have a server -- on each net or available via
DC:   relaying routers -- with the necessary tables configured to hand out the
DC:   values for the user hosts.
DC:   

HB:   Dave, I'm not sure why you feel a server is a negative thing to
      have, other than the obvious cost factors.  IMHO, it is far better
      to use a more centralized address assignment mechanism than to rely
      on schemes where address assignment has to be delegated down to the
      workstation level.  

      The Internet  -- and I mean by this "the set of systems that use
      rational, if not legal, IP addresses" -- is in a period of extreme
      growth, and the growth of network adminstrator skills and availability
      has not necessarily kept pace.

      There have been too many Class C networks used because the admin
      "could get away without subnetting;" there have been too many Class
      B networks used so "there could be a nice clean subnet byte," etc.
      Most legacy networks, especially those that have involved 
      organizational mergers, needs some level of address redesign if
      they want to avoid serious scaling problems.

      Too many current networks also confuse the roles of addressing
      and naming, trying to put non-topological/routing information into
      addresses.  Thankfully, a reasonable of networks do have DNS
      servers, which gives them a starting set of tools to evolve
      to a rational address plan.  Some type of host configuration server,
      be it DHCP, a proprietary remote configuration tool, etc., is a
      logical next step.

Howard Berkowitz
PSC International, a Cisco Training Partner
(703)998-5819 voice (703)998-5017 home (703)998-5058 fax

PS:  I do like the idea of a routing and addressing list separate from
     firewalls.
References:
Indexed By Date Previous: IP Tunneling / Allocation
From: graemes @ morse . co . uk (Graeme Sandieson)
Next: Re: http proxy on firewall -Reply
From: "Marcus J. Ranum" <mjr @ tis . com>
Indexed By Thread Previous: Re: Registered IP vs unregistered
From: Dave Crocker <dcrocker @ networking . stanford . edu>
Next: Re: Registered IP vs unregistered
From: Matthew Huff <Matthew . Huff @ tasb . org>
Google
 
Search Internet Search www.greatcircle.com