[c-nsp] large scale NAT/PAT solution

[Arturo Servin]

   I am agree. A "colateral damage" of NAT is to break some protocols 
and the universal connectivity provieded by the internet. That is used 
as a "security" strategy to cover the real IP of the host, but in the 
real world NAT is not a real security feature.

-as

>
>NAT is *not* a security feature.  If you want that, put up a firewall
>that prevents connections toward the users (as NAT/PAT can do) *and*
>does content checking (virus scan on HTTP and POP3 connects, etc.), 
>prevents connections between users, and so on.
>
>  
>


-- 

Remote Config, The Remote Configuration Company
http://www.remoteconfig.net
Global Service Offices
contact at remoteconfig.net