NAT is no excuse for poor internal security, but it does allow a certian amount of flexibity and breathing room on internal systems. Think of it as a gated community. Only a truely skilled and determined thug can get in to bang on your door (unless you've left the gate open of course).
-Weave
Tanner Lovelace wrote:
Mike Johnson wrote:
So? There are not ~ 4.3 billion 'servers'. Never will be. From my workstation, I don't need to have a direct conversation with your workstation.
Not necessarily. For reference, note that SpeakFreely is being withdrawn, mainly because of problems dealing with boxes that are only connected through NAT. NAT, for all the good things it gives, does delegate an entire set of machines as 2nd class net citizens. So, you have to look at the tradeoffs in the current system and decide what you want, but just saying that NAT is unqualifiably good is not the way to go.
Cheers, Tanner
-- TriLUG mailing list : http://www.trilug.org/mailman/listinfo/trilug TriLUG Organizational FAQ : http://trilug.org/faq/ TriLUG Member Services FAQ : http://members.trilug.org/services_faq/ TriLUG PGP Keyring : http://trilug.org/~chrish/trilug.asc
