>Does anyone know of any NAT implementation that can translate addresses
>embedded within the data payload of a packet?
Almost all of them do, otherwise they'd be useless (FTP would
break in most cases.)
The question is, how well do they do it, for how many protocols, etc..
Firewall-1 doesn an OK job. Cisco's NAT implementation in their routers
seems particularly good.
You're stuck building a list of protocols you want to NAT, and working
through the checklists with various vendors.
Ryan
-
[To unsubscribe, send mail to [EMAIL PROTECTED] with
"unsubscribe firewalls" in the body of the message.]
