[135033] in North American Network Operators' Group
Re: Is NAT can provide some kind of protection?
daemon@ATHENA.MIT.EDU (Douglas Otis)
Fri Jan 14 17:52:16 2011
Date: Fri, 14 Jan 2011 14:52:09 -0800
From: Douglas Otis <dotis@mail-abuse.org>
To: nanog@nanog.org
In-Reply-To: <4D30A8B3.2020504@brightok.net>
Errors-To: nanog-bounces+nanog.discuss=bloom-picayune.mit.edu@nanog.org
On 1/14/11 11:49 AM, Jack Bates wrote:
> On 1/14/2011 1:43 PM, Owen DeLong wrote:
>> Ah, but, the point here is that NAT actually serves as an enabling
>> technology for part of the attack he is describing. Another example
>> where NAT can and is a security negative. The fact that you refuse
>> to acknowledge these is exactly what you were accusing me of
>> doing in my previous emails.
>
> Explain how it acts as an enabler.
Consider the impact the typical NAT or "firewall" has on DNS.
-Doug
