[mdlug-discuss] NAT != security, right?

Ingles, Raymond Raymond.Ingles at compuware.com
Wed Oct 13 12:23:26 EDT 2010 

NAT offers a *limited* amount of security. Roughly like a screen door.

If a machine from inside the NAT is communicating with a machine outside
the NAT, it can potentially be subverted. And in that case, it can then
attack all the *other* machines inside the NAT.

Basically, NAT doesn't offer any more security than a stateful firewall.
And you'd want a stateful firewall anyway if you're worried about
security.

 Sincerely,

 Ray Ingles                                                (313)
227-2317

 "Reality is that which, when you stop believing in it, doesn't go
away."
                          -- Philip K. Dick

> -----Original Message-----
> From: mdlug-discuss-bounces at mdlug.org [mailto:mdlug-discuss-
> bounces at mdlug.org] On Behalf Of Durant, Dean
> Sent: Wednesday, October 13, 2010 11:43 AM
> To: A place for members to discuss anything they want, subjects not
> appropriate for any of the other lists.
> Subject: Re: [mdlug-discuss] NAT != security, right?
> 
> My point is, if you have a private IP space, 10.x.y.z, people cannot
attack
> you directly on your IP.
> 
> -----Original Message-----
> From: mdlug-discuss-bounces at mdlug.org [mailto:mdlug-discuss-
> bounces at mdlug.org] On Behalf Of Garry Stahl
> Sent: Wednesday, October 13, 2010 11:34 AM
> To: A place for members to discuss anything they want, subjects not
> appropriate for any of the other lists.
> Subject: Re: [mdlug-discuss] NAT != security, right?
> 
> Durant, Dean wrote:
> >
> > Hello, in the "should we go to IPv6" debate, ordinary people, when
you
> > tell them, everything will be connectable, ask, well, what about
security?
> >
> > Then the NAT lovers come along and say, see, there's a good reason
to
> > have NAT.
> >
> > Thoughts?
> >
> 
> Is IPv6 any less secure than IPv4?
> 
> --
> Garry  AKA  --Phoenix--  Rising above the Flames.
> 
> Those persons, or societies, easily offended need to be offended until
they
> get over it.
> Star Trek mort. Viva la Star Trek admiraetur
> The Olde Phoenix Inn http://phoenixinn.iwarp.com
> Metro Detroit Linux Users Group http://www.mdlug.org
> 
> _______________________________________________
> mdlug-discuss mailing list
> mdlug-discuss at mdlug.org
> http://mdlug.org/mailman/listinfo/mdlug-discuss
> _______________________________________________
> mdlug-discuss mailing list
> mdlug-discuss at mdlug.org
> http://mdlug.org/mailman/listinfo/mdlug-discuss

More information about the mdlug-discuss mailing list