[134964] in North American Network Operators' Group


home	help	back	first	fref	pref	prev	next	nref	lref	last	post

Re: Is NAT can provide some kind of protection?

daemon@ATHENA.MIT.EDU (Jack Bates)
Thu Jan 13 11:01:20 2011

Date: Thu, 13 Jan 2011 09:59:58 -0600
From: Jack Bates <jbates@brightok.net>
To: Owen DeLong <owen@delong.com>
In-Reply-To: <0F48ED38-0D21-4951-BBA6-71CF3E8F0EFE@delong.com>
Cc: "nanog@nanog.orglist" <nanog@nanog.org>
Errors-To: nanog-bounces+nanog.discuss=bloom-picayune.mit.edu@nanog.org

On 1/12/2011 9:33 PM, Owen DeLong wrote:
> If you are proxying everything, then, there isn't any actual NAT. There are
> inside sessions and outside sessions.
>

Depends on the proxy mechanism used. In a transparent firewall proxy 
layout, it generally is still considered NAT. The proxy capabilities of 
the firewall are additional security measures on top of the NAT (and 
definitely should be deployed for their higher security value).

Jack


home	help	back	first	fref	pref	prev	next	nref	lref	last	post

[134964] in North American Network Operators' Group

Re: Is NAT can provide some kind of protection?

daemon@ATHENA.MIT.EDU (Jack Bates)Thu Jan 13 11:01:20 2011

daemon@ATHENA.MIT.EDU (Jack Bates)
Thu Jan 13 11:01:20 2011