Suppose your ISP routes you 203.0.113.168/29. Modem IP is 203.0.113.169 (does not perform NAT), router IP is 203.0.113.170 (performs NAT for internal LANs such as 192.168.200.0/24).
Is it good, bad or neutral practice that my own nodes in 203.0.113.168/29 see my private (RRC1918) IP addresses?
In other words, should the router perform SNAT on 203.0.113.170 for everything, including 203.0.113.168/29? Or should the router only perform NAT for addresses !203.0.113.168/29 ?
(In case it matters: ISP does not allow access to the modem. Modem is black box with assigned IP 203.0.113.169. On its ethernet interface I freely connect devices my own public servers and the router).
PS: Currently router performs NAT on everything which I don't perfectly like. I'd rather access the servers without NAT.
No comments:
Post a Comment