From owner-freebsd-net Wed May 24 9: 6:42 2000 Delivered-To: freebsd-net@freebsd.org Received: from silby.com (cb34181-a.mdsn1.wi.home.com [24.14.173.39]) by hub.freebsd.org (Postfix) with SMTP id 4B63F37B734 for ; Wed, 24 May 2000 09:06:37 -0700 (PDT) (envelope-from silby@silby.com) Received: (qmail 21311 invoked by uid 1000); 24 May 2000 16:06:34 -0000 Received: from localhost (sendmail-bs@127.0.0.1) by localhost with SMTP; 24 May 2000 16:06:34 -0000 Date: Wed, 24 May 2000 11:06:34 -0500 (CDT) From: Mike Silbersack To: Steve Shah Cc: Olaf Hoyer , freebsd-net@FreeBSD.ORG Subject: Re: BPF vs. promiscuous mode In-Reply-To: <20000524072320.C14568@clickarray.com> Message-ID: MIME-Version: 1.0 Content-Type: TEXT/PLAIN; charset=US-ASCII Sender: owner-freebsd-net@FreeBSD.ORG Precedence: bulk X-Loop: FreeBSD.org On Wed, 24 May 2000, Steve Shah wrote: > Aside: If you haven't already, I assume you have NAT'd off your dorms > and firewalled them up the wazoo, right? I know at my old university, > unauthorized servers were a real ugly problem. On more than one > occation, we would see MRTG graphs go all green.... It was not a pretty > sight. This was because students were given real IP addy's. What > should have been done (and hopefully done by now... it's been a while > since I've seen their network) is to have all the students NAT off > into the 10.0.0.0 network. This would keep the servers from coming > in. Bah! I'm giving you the no fun network administrator badge. NATing might help in the short-term, but it also breaks stuff like ICQ/video games/etc, which students probably use a lot. (What? They're there to study?) I'd guess the next-generation mp3/file sharing programs will probably find ways to avoid the roadblocks NAT puts up anyway, unfortunately - and that's where the major bandwidth is, not http/ftp servers (at madison, anyway.) Mike "Silby" Silbersack To Unsubscribe: send mail to majordomo@FreeBSD.org with "unsubscribe freebsd-net" in the body of the message