[150231] in North American Network Operators' Group
Re: Common operational misconceptions
daemon@ATHENA.MIT.EDU (Joe Greco)
Sun Feb 19 20:08:32 2012
From: Joe Greco <jgreco@ns.sol.net>
To: owen@delong.com (Owen DeLong)
Date: Sun, 19 Feb 2012 19:07:32 -0600 (CST)
In-Reply-To: <825545E3-D383-49FB-A15F-3565A3A504C5@delong.com>
Cc: "nanog@nanog.org" <nanog@nanog.org>
Errors-To: nanog-bounces+nanog.discuss=bloom-picayune.mit.edu@nanog.org
> > I have running code to make the reverse translations, with
> > which protocols such as ftp with PORT commands are working.
>
> No, I think you do not understand...
>
> I have a NAT gateway with a single public address.
>
> I have 15 FTP servers and 22 web servers behind it.
>
> I want people to be able to go to ftp://<hostname> and/or =
> http://<hostname> for each of them.
Owen,
Your suggestion here would set many "security experts" heads on fire.
Whatever will they do when NAT doesn't make such things virtually
impossible?
:-)
... JG
--
Joe Greco - sol.net Network Services - Milwaukee, WI - http://www.sol.net
"We call it the 'one bite at the apple' rule. Give me one chance [and] then I
won't contact you again." - Direct Marketing Ass'n position on e-mail spam(CNN)
With 24 million small businesses in the US alone, that's way too many apples.
