On Apr 29, 2014, at 7:54 PM, Jeff Kell <jeff-k...@utc.edu> wrote: > On 4/29/2014 2:06 PM, Owen DeLong wrote: >> If everyone who had 30+ inaggregable IPv4 prefixes replaced them with 1 (or >> even 3) IPv6 prefixes… >> >> As a bonus, we could get rid of NAT, too. ;-) >> >> /me ducks (but you know I had to say it) > > Yeah, just when we thought Slammer / Blaster / Nachi / Welchia / etc / > etc had been eliminated by process of "can't get there from here"... we > expose millions more endpoints... > > /me ducks too (but you know *I* had to say it)
Pretending that endpoints are not exposed to those things with NAT is kind of like putting a screen door in front of a bank vault and saying “now safe from tornadoes”. Owen
