LAN Turns 30, May Not See 40? 279
dratcw writes "The first commercial LAN was based on ARCnet technology and was installed some 30 years ago, according to a ComputerWorld article. Bob Metcalfe, one of the co-inventors of Ethernet, recalls the early battles between the different flavors of LAN and says some claims from the Token Ring backers such as IBM were lies. 'I know that sounds nasty, but for 10 years I had to put up with that crap from the IBM Token Ring people — you bet I'm bitter.' Besides dipping into networking nostalgia, the article also quotes an analyst who says the LAN may be nearing its demise and predicts that all machines will be individually connected to one huge WAN at gigabit speeds. Could the LAN actually be nearing the end of its lifecycle?"
Re:As long as the need for a secure network exists (Score:3, Informative)
I don't want every computer in the world to be able to see my computer, at least not directly. Perhaps I'm missing a point here but seems to me that as long as there is a need for firewalls, there is going to be a need for LAN's.
Re:Well, could it? (Score:3, Informative)
NAT != Firewall. (Score:5, Informative)
Once you do, understand that NAT is a brutally ugly hack. It's much easier and more powerful to simply be able to open a firewall port than to have to forward ports.
And you do need a firewall on your computer -- that, or just turn services off. If you don't do one of the two, wireless will bite you someday.
Re:WAN, SCHMAN (Score:2, Informative)
http://en.wikipedia.org/wiki/Wide_area_network [wikipedia.org]
Re:As long as the need for a secure network exists (Score:2, Informative)
Seriously, in a corp that big, your machines need to be as secure as if they were on the internet anyway. You can't and won't secure that much cable, building and personnel.
I think LANs will continue to exist out of sheer practicality though. What's easier, wiring up every computer in the building to the internet, or wiring the building computers together and then getting internet to one of them?
Now the old guys come out of hiding..... (Score:2, Informative)
Token Ring - IEEE 802.5 - 4/16 Mbps - token passing protocol on star wired ring topology on SPT/UTP
Ethernet - IEEE 802.3 - CSMA/CD - 10Base5 Thicknet(500 meters) - 10Base2 thinnet (185meters) 4 repeater rule - 10Bt, 100Bt, 1000Bt (100m)
FDDI - ANSI X3T9.5 - Token passing protocol - ring topology on fiber - Supported UTP
ATM - ATM Forum - SONET physical layer - Ring/Star topology - uses OC-X speeds and feeds - 25mbps copper spec
And the LAN winner is Ethernet because of simplicity, scalability, installed base and cost. Other technologies such as ATM were so much more superior and elegant but too complex and costly for most IT shops.
Re:Lies, Damn Lies, and Token Ring (Score:3, Informative)
The usual Nonsense... (Score:3, Informative)
Re:WAN, SCHMAN (Score:4, Informative)
Well, there is a middle ground. Most of the "security" from firewalls today comes from the fact that a public IP will have just a handful of ports forwarded to an internal box, and the services on the box will be listening on the LAN IP. Basically, NAT of various sorts protected everything by default, and you forwarded what you want. Once IPv6 becomes widespread, firewalls will simply restrict the data going in and out, rather than redirecting it to different IPs and/or ports. There will still be home routers/firewalls, but (hopefully) all the boxen behind them won't hide behind their (the routers') addresses.
Re:WAN, SCHMAN (Score:3, Informative)
A firewall does not require NAT to be secure.
You can have a firewall in the router with public IP addresses on both sides and it will still work just fine.
Re:WAN, SCHMAN (Score:3, Informative)
Not only that, you will lose all the addressing space that makes IPv6 so attractive by doing it that way. As of 2000, there were more then 105 million households in the US alone. Now attempting to give every household a home address so they could route all their other equipment without using subneting or private ip addresses like the "FE80:" prefix would result in a vast majority of IP being none usable after the home block. This isn't even starting to consider the large companies or even small businesses which presumably would have a "home" address as well as larger blocks for the 5 hundred or more terminals inside a single building and all the network printers, copy/scanner machines, postal scales, X11 lighting fixtures and so on. The demand is huge but the waist in assigning minor blocks to every home or Internet connection system like that is worse. Then when you consider the unicast, multicast, loopback and other IP reservations within the IPv6 spec, multiply the number of people/house holds and businesses in other countries and you will soon see how this seemingly unlimited addressing will become as obsolete as IPv4 with all the waist involved. The spec for IPv6 has a private IP space built into it for a reason. And this spec uses a prefix instead of site level aggregation for a reason too. That reason is that it was never meant to connect everything publicly, it was only meant to fix problems with the IPv4 schema and make it last well into the future..
Re:NAT != Firewall. (Score:3, Informative)
http://it.slashdot.org/comments.pl?sid=437480&cid=22259056 [slashdot.org]
IPv6 is allocated in blocks of
Which is better, having a single external IP which responds to maybe 30 ports out of 16k, or having 18,446,744,073,709,551,616 (64-bit) or 281,474,976,710,656 (48-bit) external IPs, each of which may or may not be a machine, and even if it is it may not respond on any port.
If you want security by obscurity, IPv6 is most definitely the way to go. If you only searched a single port (eg looking for a insecure internal website on port 80), and the company only had a
As opposed to port-scanning a single IPv4 IP, which even at 1 per second (1000 times slower than the above example) is done in 5 hours.