Educause Security Discussion mailing list archives

Re: Large edu's doing NAT campus wide?

From: John Ladwig <John.Ladwig () CSU MNSCU EDU>
Date: Mon, 30 Apr 2007 16:45:37 -0500

NAT also severely complicates interactions with Law Enforcement at times.

LE: "I have a connection to Yahoo.com from your IP a.b.c.d at this time (measured in minutes, not seconds) - can you 
identify the user?"

IR: "That IP maps to several hundred hosts behind a NAT, with a 30-second inactivity timeout on the NAT bindings.  Can 
you be more specific about source port information for our IP and timing down to sub-second, ideally?"

LE:  "...."

Fortunately,  so far we haven't had any life- and safety-related queries from LE that went down this path.

    -jml

"Scott O. Bradner" <sob () HARVARD EDU> 2007-04-28 20:10:31 >>>

Is anyone aware of a study of large edu's who are doing NAT
campus wide?


makes answering DMCA complaints quick :-)

Scott

Current thread:

Re: Large edu's doing NAT campus wide?, (continued)
- Re: Large edu's doing NAT campus wide? Kenneth Arnold (Apr 29)
- Re: Large edu's doing NAT campus wide? Russell Fulton (Apr 29)
- Re: Large edu's doing NAT campus wide? Cal Frye (Apr 29)
- Re: Large edu's doing NAT campus wide? Jeff Kell (Apr 29)
- Large edu's doing NAT campus wide? Marcos Vieyra (Apr 30)
- Re: Large edu's doing NAT campus wide? Clifford Collins (Apr 30)
- Re: Large edu's doing NAT campus wide? Justin Azoff (Apr 30)
- Re: Large edu's doing NAT campus wide? Roger Safian (Apr 30)
- Re: Large edu's doing NAT campus wide? Brian Paige (Apr 30)
- Re: Large edu's doing NAT campus wide? John Ladwig (Apr 30)
- Re: Large edu's doing NAT campus wide? John Ladwig (Apr 30)
- Re: Large edu's doing NAT campus wide? Kevin Shalla (May 02)
- Re: Large edu's doing NAT campus wide? David A Lundy (May 02)
- Re: Large edu's doing NAT campus wide? John Ladwig (May 02)