I work for a small internet service provider and we are migrating our old core to MPLS over Cisco devices. Up to date, all links and loopbacks in the core were using public address. Now, when thinking on migration, a doubt arises. Has any sense to keep these public addressing when core links will not be reached from aoutside the core? I'd like to set up and VRF with internet access, and ditributting default routes to from VPN's in "public" VLAN, so no access from the core will be needed. Maybe this would be a good solution for enhancing security?
thats really interesting javinder and tbh very surprising. I worked for Thus/Demon and due to the fact that public IP addresses werent an issue for us we decided to use them. We also decided to use public IP addressing for every managed CPE device out there. Please remember when i say public i actually only mean unique as these addresses are not routable on the internet (blocked at our edge). I would say that the best use of the addressing would be for loopbacks to be unique(public) and serials to be whatever.