nanog mailing list archives

Re: Is NAT can provide some kind of protection?

From: William Herrin <bill () herrin us>
Date: Thu, 13 Jan 2011 12:56:58 -0500

On Thu, Jan 13, 2011 at 11:54 AM, Dobbins, Roland <rdobbins () arbor net> wrote:

On Jan 13, 2011, at 9:59 AM, Jack Bates wrote:

The proxy capabilities of the firewall are additional security
measures on top of the NAT (and definitely should be
deployed for their higher security value).


Not in front of servers, they shouldn't - because they have a negative security value in that context.


So all the folks who use reverse proxies like an http accellerator are wrong?


-- 
William D. Herrin ................ herrin () dirtside com  bill () herrin us
3005 Crane Dr. ...................... Web: <http://bill.herrin.us/>
Falls Church, VA 22042-3004

Current thread:

Re: Is NAT can provide some kind of protection?, (continued)
- - - Re: Is NAT can provide some kind of protection? Owen DeLong (Jan 15)
    - Re: Is NAT can provide some kind of protection? Stephen Davis (Jan 15)
    - Re: Is NAT can provide some kind of protection? Leen Besselink (Jan 16)
    - Re: Is NAT can provide some kind of protection? Douglas Otis (Jan 14)
    - Re: Is NAT can provide some kind of protection? Owen DeLong (Jan 12)
    - Re: Is NAT can provide some kind of protection? David Barak (Jan 12)
    - Re: Is NAT can provide some kind of protection? Owen DeLong (Jan 12)
    - Re: Is NAT can provide some kind of protection? Jack Bates (Jan 13)
    - Re: Is NAT can provide some kind of protection? Dobbins, Roland (Jan 13)
    - Re: Is NAT can provide some kind of protection? Jack Bates (Jan 13)
    - Re: Is NAT can provide some kind of protection? William Herrin (Jan 13)
    - Re: Is NAT can provide some kind of protection? Jack Bates (Jan 13)
    - Re: Is NAT can provide some kind of protection? William Herrin (Jan 13)
    - Re: Is NAT can provide some kind of protection? Lamar Owen (Jan 13)
    - Re: Is NAT can provide some kind of protection? Owen DeLong (Jan 13)
  - Re: Is NAT can provide some kind of protection? Owen DeLong (Jan 12)
    - Re: Is NAT can provide some kind of protection? Paul Ferguson (Jan 12)
    - Re: Is NAT can provide some kind of protection? Steven Kurylo (Jan 12)
    - Re: Is NAT can provide some kind of protection? Owen DeLong (Jan 12)
    - Re: Is NAT can provide some kind of protection? Scott Helms (Jan 12)
    - Re: Is NAT can provide some kind of protection? Chris Adams (Jan 12)

(Thread continues...)