On Mon, 27 Aug 2007, Stephen Sprunk wrote:
Basically, because some people are too dense to use IPsec or SSL for traffic they don't want observed, you want to greatly complicate the average home network's design? That they should be more scared of, say, their spouse sniffing their credit card numbers at home than the NSA and FBI tapping their email and web browsing at the CO?
It has nothing to do with IPsec or SSL. Your view of what people do at home is kind of narrow. Some people run businesses out of their house, and some have quite complicated home networks, with wifi for guests and and other parts they don't want guests to get into. If you have the space, give it out. (that was the point of a 16 byte IP address) The notion that a home user's subnetting makes any difference to the DFZ is just plain nonsense. Those sub-blocks are aggregated by their provider. The home user doesn't need or take a full view, either. They have just their subnets and a default route. At the other end, the notion that geographic aggregation reduces the DFZ is likewise nonsense. It just eases the job of the RIR and running multiple RIRs. But every block delegated by the RIR will probably make it into the DFZ, unless it is used for some kind of non-public routing, in which case perhaps it makes it into some DFZ's, but not others. There usually isn't any aggregation of blocks delegated by the RIR. --Dean
Sorry, but that's the wrong response to the wrong problem.
S
Stephen Sprunk "God does not play dice." --Albert Einstein CCIE #3723 "God is an inveterate gambler, and He throws the K5SSS dice at every possible opportunity." --Stephen Hawking
_______________________________________________ PPML You are receiving this message because you are subscribed to the ARIN Public Policy Mailing List (PPML@arin.net). Unsubscribe or manage your mailing list subscription at: http://lists.arin.net/mailman/listinfo/ppml Please contact the ARIN Member Services Help Desk at info@arin.net if you experience any issues.
-- Av8 Internet Prepared to pay a premium for better service? www.av8.net faster, more reliable, better service 617 344 9000