Posted by: Anonymous Coward
on January 27, 2004 06:49 AM
Is it not also a little disingenuous to think NAT and stateful firewalls are somehow inseparable or are one and the same?
A small firewall box, very similar to that small NAT box you refer to, is as capable (if not more so) of providing you a simple, single point of security for your network, no matter the IP protocol, without the issues NAT introduces. A NAT box is not unique or special in the security it provides, but rather is a means of connecting multiple computers through a single IP address.
However it is you choose to set up your network is not very relevant, it is your choice after all. The "real world" problem is when NAT occurs upstream from your own private little world. Suddenly you can't kludge your way through that NAT box to get things to work anymore, but must ask your ISP to do so... is they choose to.
Learn about Linux
Download Linux
Get Linux help
Re:I hate NAT :-)
Posted by: Anonymous Coward on January 27, 2004 06:49 AMA small firewall box, very similar to that small NAT box you refer to, is as capable (if not more so) of providing you a simple, single point of security for your network, no matter the IP protocol, without the issues NAT introduces. A NAT box is not unique or special in the security it provides, but rather is a means of connecting multiple computers through a single IP address.
However it is you choose to set up your network is not very relevant, it is your choice after all. The "real world" problem is when NAT occurs upstream from your own private little world. Suddenly you can't kludge your way through that NAT box to get things to work anymore, but must ask your ISP to do so... is they choose to.
#