From owner-freebsd-questions  Thu May 30 10:31:56 1996
Return-Path: owner-questions
Received: (from root@localhost)
          by freefall.freebsd.org (8.7.5/8.7.3) id KAA00939
          for questions-outgoing; Thu, 30 May 1996 10:31:56 -0700 (PDT)
Received: from relay-2.mail.demon.net (disperse.demon.co.uk [158.152.1.77])
          by freefall.freebsd.org (8.7.5/8.7.3) with SMTP id KAA00903
          for <questions@freebsd.org>; Thu, 30 May 1996 10:31:46 -0700 (PDT)
Received: from post.demon.co.uk ([158.152.1.72]) by relay-2.mail.demon.net
          id aq12637; 30 May 96 18:27 +0100
Received: from jraynard.demon.co.uk ([158.152.42.77]) by relay-3.mail.demon.net
          id aa06599; 30 May 96 18:05 +0100
Received: (from fqueries@localhost) by jraynard.demon.co.uk (8.7.5/8.6.12) id BAA10580; Thu, 30 May 1996 01:36:25 GMT
Date: Thu, 30 May 1996 01:36:25 GMT
Message-Id: <199605300136.BAA10580@jraynard.demon.co.uk>
From: James Raynard <fqueries@jraynard.demon.co.uk>
To: kristyn@gnu.ai.mit.edu
CC: questions@freebsd.org
In-reply-to: <199605292107.RAA07633@spiff.gnu.ai.mit.edu> (message from
	Kristyn Fayette on Wed, 29 May 1996 17:06:45 -0400 (EDT))
Subject: Re: RFC for special IPs/Private Networks?
Sender: owner-questions@freebsd.org
X-Loop: FreeBSD.org
Precedence: bulk


>   I remember once seeing in /etc/hosts, or a similar file, a reference to an
> RFC for IP addresses that won't be propagated over routers.  I'm thinking
> that this must have been on the GAMMA or EPSILON release, because it isn't
> in my 1.0.2 CD.

1.0.2? I've got one of those (it also had Linux 0.99 on it). Blimey,
that's going back a bit 8-)

Anyway, your memory is correct, it is /etc/hosts. In fact, it's still
there on 2.1.0:-

# According to RFC 1597, you can use the following IP networks for
# private nets which will never be connected to the Internet:
#
#       10.0.0.0        -   10.255.255.255
#       172.16.0.0      -   172.31.255.255
#       192.168.0.0     -   192.168.255.255

>   Can someone tell me what RFC this was?  And does anyone know what the
> GOTCHAs are for this?  I already know that this network can't be directly
> on the Internet, but what about with a proxy firewall seperating the two
> networks?

Well, as you say, no-one on the Internet will be able to see those IP
addresses, but there are ways to get around this, usually by
disguising them with the firewall's IP address - I think "socks" was
recently recommended here to someone asking a similar question.

-- 
James Raynard, Edinburgh, Scotland
jraynard@dial.pipex.com
james@jraynard.demon.co.uk