snip
But this thread is about how we can provide UPnP port mapping within
iptables/netfilter in a sensible manner, not how poor the reality of
Internet security actually is when you do not trust your clients at
all. I say providing UPnP with a adequate level of security for the
scope
http://www.antd.nist.gov/nistnet/
You might want to look at that project before you start duplicating work. I
also seem to remember a netfilter based emulator, but I can't find the
reference to it at the moment...
-Original Message-
From: Wei koong Chai [mailto:[EMAIL PROTECTED]]