Re: Why people by NATs

At 12:10 PM 11/22/04 -0800, Chris Palmer wrote:

There's another feature of NAT that is desirable that has not yet been
mentioned, and which at least some customers may be cognizant of: the
fact that NAT is a pretty restrictive firewall.

would that it were true. In fact, it is pretty easy to breech. All one hasto do is ddos with a the right port prefix, observe a response of any kind,and you can ddos right through it.

An actual stateful firewall is a good thing. NAT mostly has the effect ofdeluding the person behind it into thinking they have a security solution.

Screen doors are a good thing. They should be confused neither with stormdoors nor effective insect inhibitions in the home...


_______________________________________________
Ietf mailing list
Ietf(_at_)ietf(_dot_)org
https://www1.ietf.org/mailman/listinfo/ietf

<Prev in Thread]	Current Thread	[Next in Thread>
RE: Why people by NATs, Peter Ford Re: Why people by NATs, Eric S. Raymond Re: Why people by NATs, Chris Palmer Re: Why people by NATs, Eric S. Raymond Re: Why people by NATs, Fred Baker <= Re: Why people by NATs, Hans Kruse Re: Why people by NATs, Iljitsch van Beijnum Re: Why people by NATs, Stephen Sprunk Re: Why people by NATs, Daniel Senie Re: Why people by NATs, Jeroen Massar Re: Why people by NATs, JFC (Jefsey) Morfin Re: Why people by NATs, Eliot Lear The gaps that NAT is filling, Eric S. Raymond Re: The gaps that NAT is filling, Paul Vixie Re: The gaps that NAT is filling, Margaret Wasserman

Previous by Date:	The gaps that NAT is filling, Eric S. Raymond
Next by Date:	RE: Why people by NATs, Tony Hain
Previous by Thread:	Re: Why people by NATs, Eric S. Raymond
Next by Thread:	Re: Why people by NATs, Hans Kruse
Indexes:	[Date] [Thread] [Top] [All Lists]