Firewall Wizards mailing list archives

Previous By Date Next
Previous By Thread Next

Benefit of firewall over NAT-only 'protected' network

From: "Hugh Blandford" <hugh () island net au>
Date: Wed, 28 May 2003 10:35:04 +1000
Hi all,

could someone explain the vulnerabilities in a network that is only
'protected' via NAT.  I'm thinking about very small 1-3 person offices or
SOHO/home environments connected via an ADSL router providing NAT
functionality.

Please take into consideration that if they had a firewall, it would be
setup to allow all outbound traffic and let the 'responses' back in.  There
are no static inbound port or IP translations, no servers running on the
inside.  Issues such as change control and management should be ignored.
I'm aware that they would benefit from proxy servers etc but most firewalls
that are purchased by these small sites don't have that capability anyway.

So any thoughts would be appreciated.

Thanks,

Hugh

_______________________________________________
firewall-wizards mailing list
firewall-wizards () honor icsalabs com
http://honor.icsalabs.com/mailman/listinfo/firewall-wizards
Previous By Date Next
Previous By Thread Next

Current thread: