[97231] in North American Network Operators' Group


home	help	back	first	fref	pref	prev	next	nref	lref	last	post

Re: Security gain from NAT

daemon@ATHENA.MIT.EDU (Richard P. Welty)
Mon Jun 4 19:19:04 2007

Date: Mon, 04 Jun 2007 18:06:59 -0400
From: "Richard P. Welty" <rwelty@averillpark.net>
To: NANOG list <nanog@nanog.org>
In-Reply-To: <E1HvI6Y-0008Mb-7u@mail.shankland.org>
Errors-To: owner-nanog@merit.edu

Jim Shankland wrote:
> But NAT *requires* stateful inspection;
No, NAT does not require this.

Port NAT mapping one IP to many does, but there are other
kinds of NAT.

this lack of precision can lead to nasty results when
clueless middle managers demand things they don't understand
(which is, after all, the way of clueless middle managers.) the
technically minded of us can at least not aggravate the situation
by being sloppy with our use of language.

richard


home	help	back	first	fref	pref	prev	next	nref	lref	last	post

[97231] in North American Network Operators' Group

Re: Security gain from NAT

daemon@ATHENA.MIT.EDU (Richard P. Welty)Mon Jun 4 19:19:04 2007

daemon@ATHENA.MIT.EDU (Richard P. Welty)
Mon Jun 4 19:19:04 2007