Getting a "portable" /19 or /20
Roeland Meyer
rmeyer at mhsc.com
Tue Apr 10 20:22:22 UTC 2001
> From: Greg Maxwell [mailto:gmaxwell at martin.fl.us]
> Sent: Tuesday, April 10, 2001 12:46 PM
>
> On Tue, 10 Apr 2001, Stephen Sprunk wrote:
> > There's also a general perception that NAT increases security; some
> > "security" companies go so far as to say NAT removes the need for a
> > firewall. It's amazing how many network admins believe this.
>
> Some also say that firewalls/nats remove the need to secure
> your systems.
They would also be wrong. Picture one user, with a wireless port or
direct-dial modem, also attached to your internal LAN. NAT or no NAT, FW or
no FW, your data is toast unless you trust them explicitly. This includes
100% of your internal users.
FALLACY:
NAT, Firewalls, and bastion-hosts, make your LAN secure.
More information about the NANOG
mailing list