IP address access control lists are not as great as you think they are

There ain’t no party like a TCP retry party

Scope

The problem (what we are currently doing)

IP addresses as one indicator in defensive depth (how we should use/trust external IP address in ACLs)

--

--

Get the Medium app

A button that says 'Download on the App Store', and if clicked it will lead you to the iOS App store
A button that says 'Get it on, Google Play', and if clicked it will lead you to the Google Play store