|
|
|
|
|
|
by zamadatix
1655 days ago
|
|
|
/24 is hardly an "embarassment of riches" as it's the absolute minimum size you can be assigned by a RIR (or advertise on the internet). You can only use /28s and whatnot when you are using someone else's (usually a carrier's) addresses as part of a larger group in a single route advertisement. In such setups reviewing your DMZ logs probably requires looking at NAT logs, your entire outbound NAT pool being shared amongst all types of traffic, fun with peer ranges causing the block to get blacklisted, and similar friction as a result. |
|
|
I deal primarily with small businesses who might host a VPN to facilitate access to on-prem systems, perhaps a web server for on-prem web apps, and in the past perhaps an email server. A /24 would be an embarrassment of riches for them.