Hacker News new | ask | show | jobs
by AmericanChopper 2556 days ago
So you can replace the security controls provided by NAT with security controls provided by a firewall. How does this support the argument that NAT doesn’t provide any security controls?
1 comments
vardump 2556 days ago
NAT is not meant for security. It just unintentionally provides some by preventing inbound connections.

That's something you can circumvent in certain scenarios. The technique is called "NAT hole punching".

link
zAy0LfpBZLC8mAC 2556 days ago
> It just unintentionally provides some by preventing inbound connections.

No, it doesn't.

link
vardump 2556 days ago
Of course you should also have a properly configured firewall.

Relying on NAT alone for security is not a great idea.

link