> > >I've always wondered about the concept of useing wierd netmasks on private >internal networks, just to thourouly confuse anyone who actually breaks >into them (obsurity isn't security by itself, but any little bit you can >add on and anything you can do that will break standard tools....) > >never had a chance to actually implement it however :-) > I think this "wird" netmask could on bigger firm's have an very simple explanation.
Example: Firm with 2 Floors and 4 Subunits each subunit have an router with 100MBit and the are numbered serial when they was created. 1 Floor 10.0.0.0/16 10.2.0.0/24 2 Floor 10.1.0.0/16 10.3.0.0/24 Now the 100MBit backbone is replaced with fibber optik and one router per floor. And the admin is to lacy to renumber 2 whole units. This is an simple example but i think from these direction it come. That it is sometimes easyer to use wired netmask insteed of two or more routing entry's and agregation wasn't choice because of change time. Cu Thomas
smime.p7s
Description: S/MIME Cryptographic Signature
