Firewall Wizards mailing list archives

Re: NAT on router vs. firewall

From: Bill_Royds () pch gc ca
Date: Fri, 17 Jul 1998 11:01:13 -0400








      Bill,

      If I want to limit it to certain source-ip addresses then I translate
     these into a separate pool of internal addresses in a one-for-one
     manner.  (Which is something I do for one system where only one known
     internet address is currently to be allowed through).

      Neil Pike MVP/MCSE
      Protech Computing Ltd





This would work but it seems a bit cumbersome since you would both have to
change router and firewall to change
rules. The original question was reasons for selcting router over firewall
for NAT.

The consensus seems that NAT on routers is probably faster but NAT on
firewall can be more flexible.

Current thread:

NAT on router vs. firewall Gregory Blake (Jul 12)
- <Possible follow-ups>
- Re: NAT on router vs. firewall Bill_Royds (Jul 14)
- Re: NAT on router vs. firewall Neil Pike (Jul 14)
- Re: NAT on router vs. firewall Neil Pike (Jul 15)
- Re: NAT on router vs. firewall Bill_Royds (Jul 15)
- Re: NAT on router vs. firewall Neil Pike (Jul 17)
- Re: NAT on router vs. firewall Bill_Royds (Jul 19)