nanog mailing list archives
Re: Is NAT can provide some kind of protection?
From: Justin Scott <leviathan () darktech org>
Date: Thu, 13 Jan 2011 00:02:36 -0500
Unfortunately there are some sets of requirements which require this type of configuration. The PCI-DSS comes to mind for those who deal with credit card transactions. -Justin On Wednesday, January 12, 2011, Dobbins, Roland <rdobbins () arbor net> wrote:
On Mar 21, 2007, at 5:41 AM, Tarig Ahmed wrote:Security guy told me is not correct to assign public ip to a server, it should have private ip for security reasons.He's wrong.Is it true that NAT can provide more security?No, it makes things worse from an availability perspective. Servers should never be NATted or placed behind a stateful firewall. ----------------------------------------------------------------------- Roland Dobbins <rdobbins () arbor net> // <http://www.arbornetworks.com> Sell your computer and buy a guitar.
Current thread:
- Re: Is NAT can provide some kind of protection?, (continued)
- Re: Is NAT can provide some kind of protection? Owen DeLong (Jan 13)
- Re: Is NAT can provide some kind of protection? Lamar Owen (Jan 13)
- Re: Is NAT can provide some kind of protection? Valdis . Kletnieks (Jan 12)
- Re: Is NAT can provide some kind of protection? Paul Ferguson (Jan 12)
- Re: Is NAT can provide some kind of protection? Jeff Kell (Jan 12)
- Re: Is NAT can provide some kind of protection? Valdis . Kletnieks (Jan 12)
- Re: Is NAT can provide some kind of protection? Paul Ferguson (Jan 12)
- Re: Is NAT can provide some kind of protection? Justin Scott (Jan 12)
- Re: Is NAT can provide some kind of protection? Dobbins, Roland (Jan 12)
- Re: Is NAT can provide some kind of protection? Owen DeLong (Jan 12)
- Re: Is NAT can provide some kind of protection? Merike Kaeo (Jan 12)