Re: Encryption between standalone hosts

From: Laura A. Robinson (larobins@bellatlantic.net)
Date: 11/15/01


Message-ID: <016b01c16e26$1ab90430$301e060a@lauradominion.com>
From: "Laura A. Robinson" <larobins@bellatlantic.net>
To: "Stuart Fox (DSL AK)" <StuartF@datacom.co.nz>, "'David Arnold'" <dave.arnold@dynegy.com>, <focus-ms@securityfocus.com>
Subject: Re: Encryption between standalone hosts
Date: Thu, 15 Nov 2001 17:37:23 -0500

Behind NAT, meaning two different NATted networks, or behind NAT, meaning
both machines are on the same NATted network behind the same NAT router?

Laura
----- Original Message -----
From: "Stuart Fox (DSL AK)" <StuartF@datacom.co.nz>
To: "'David Arnold'" <dave.arnold@dynegy.com>; <focus-ms@securityfocus.com>
Sent: Thursday, November 15, 2001 2:42 PM
Subject: RE: Encryption between standalone hosts

> Which won't work so well, given that both machines are behind NAT. IKE
> doesn't work with NAT'ted devices.
>
> Cheers
>
> Stu
>
> > -----Original Message-----
> > From: David Arnold [mailto:dave.arnold@dynegy.com]
> > Sent: Friday, 16 November 2001 4:31 a.m.
> > To: '"Peter Johnson" <pjohnson@techskills.com>@DYNEGY';
> > focus-ms@securityfocus.com
> > Subject: RE: Encryption between standalone hosts
> >
> >
> > Set your IPSec policy to encrypt traffic between the two machines.
> >
> >
> > > -----Original Message-----
> > > From: "Peter Johnson" <pjohnson@techskills.com>@DYNEGY
> > > Sent: Wednesday, November 14, 2001 2:26 PM
> > > To: focus-ms@securityfocus.com
> > > Subject: Encryption between standalone hosts
> > >
> > > Time to ask my first question:
> > >
> > > I'm new to the encrypted traffic game. How could I configure FTP
> > > traffic to be encrypted between two standalone Win2k
> > machines? Both
> > > are behind NAT. I'd like to use any simple, free FTP utility to
> > > syncrhonize two sites - but cleartext passwords/file
> > transfers are not
> > > cool. Any ideas?
> > >
> >



Relevant Pages

  • RE: Encryption between standalone hosts
    ... Subject: Encryption between standalone hosts ... given that both machines are behind NAT. ...
    (Focus-Microsoft)
  • Re: Not enough salt for high speed server connection
    ... > they are free to be of any design the management approves. ... > information is considered quite sensitive so strength of encryption is ... How is this salt used? ... > As you would expect the machines with higher clock speeds were able to ...
    (sci.crypt)
  • RE: Comcast and IPSec traffic
    ... As per the CCIE Routing TCP/IP vol2 book page 346 Encryption paragraph: ... Amother concern is VPN's using for example, IPSec. ... you must place the NAT on the secure side rather than the ... And they're NAT'ed this saves Comcast ...
    (Security-Basics)
  • Re: DNS Amplification Attacks... and a trivial proposal
    ... But it does stop machines behind the NAT boxes from being able ... the attack from a amplified, reflected, DDoS attack into a staight ... the would be reflector not third parties. ...
    (comp.protocols.dns.bind)
  • Re: DSL + FreeBSD
    ... you can just get a 'modem' (they're not technically modems ... one to the 8-port switch that all the old machines that use ... to use NAT if you have any machines on the private network and they ... private network machines to use IP addresses in the 192.168.1 network ...
    (comp.unix.bsd.freebsd.misc)