Re: Double NAT?

From: Lorenzo Rossi (SirDrake@tin.it)
Date: 12/27/01

• Next message: Lorenzo Rossi: "Re: Double NAT?"
• Previous message: Daniel Kurtz: "Re: Getting an awful lot of hits today"
• In reply to: nickd@nospam.demon.co.uk: "Re: Double NAT?"
• Next in thread: Boyd Williston: "Re: Double NAT?"
• Messages sorted by: [ date ] [ thread ] [ subject ] [ author ] [ attachment ]

---

From: Lorenzo Rossi <SirDrake@tin.it>
Date: Wed, 26 Dec 2001 23:08:37 GMT

First of all, many thanks for your time!

nickd@nospam.demon.co.uk wrote:

> In comp.security.firewalls Lorenzo Rossi <SirDrake@tin.it> wrote:
>
> ( altered followups because this isn't SuSe relevant )
>
>
>>Hi,
>>I'm connected to internet with an ADSL link via my ISP.
>>It give me a dynamic IP address.
>>I have configured my zyxel 642r router to perform NAT so I can use my
>>home-lan.
>>All works well.
>>
>>Now I need to install a firewall between the router and my home-lan
>>
>>Is it possible to install a firewall that perform one time more the NAT?
>>
>
> Why have this firewall perform NAT again?

Because Zyxel perform only packet filtering, and I want to perform
Transparent proxy for FTP, WEB.
I know how to configure masquerading on Linux to perform packet
redirection for transparent proxying this services, but I do not know
how to buil a transparent proxy without NAT! :)

I haven't really played with
> Linux firewalls myself, but I would have thought you could configure it to
> route rather than NAT, and this would make life easier.
>

Yes, I think you have reason, I'm studing to do this....and obtain proxing.

>
>>Exacly a SuSe Linux configured to perform NAT, packet-filtering, and
>>proxy for some services?
>>
>
> Packet filtering and proxy should be fine.
>
>
Thanks very much for your help

Lorenzo

---

• Next message: Lorenzo Rossi: "Re: Double NAT?"
• Previous message: Daniel Kurtz: "Re: Getting an awful lot of hits today"
• In reply to: nickd@nospam.demon.co.uk: "Re: Double NAT?"
• Next in thread: Boyd Williston: "Re: Double NAT?"
• Messages sorted by: [ date ] [ thread ] [ subject ] [ author ] [ attachment ]

---

Relevant Pages Re: 56k dial up on laptop 802.11G ? ... NAT is not FW software. ... > firewall is literally anything that defends your network against ... >>By comparing the way NAT functions between two networks, ... >>And I consider the FW appliance to out class the packet filtering NAT ... (alt.internet.wireless) Re: suggestions on router w/firewall ... of using NAT, even with SPI, as a firewall method. ... describe standard NAT as a firewall service. ... That sentence refers to four concepts: NAT, router, simple packet filtering, ... created port table to packet header info, and NAT does change the packet. ... (comp.security.firewalls) Re: Linksys hardware firewall enough...? ... they reference the network layer. ... Or try a google web search for "network layer packet filtering". ... Your idea that a simple router with NAT is a firewall is wrong, ... (comp.security.firewalls) Re: 56k dial up on laptop 802.11G ? ... NAT is not FW software. ... firewall is literally anything that defends your network against ... >By comparing the way NAT functions between two networks, ... >And I consider the FW appliance to out class the packet filtering NAT ... (alt.internet.wireless) Re: home network behind NAT and firewall ? ... >> real Firewall appliance with more than 20 systems at any given time. ... >> firewall provides for the ability to assign both public (not nat) and ... that would reset the router and allow remote control - it was noted ... >> LAN inside their network and it would never have to reach the ISP's ... (comp.security.firewalls)

---

• Security
• UNIX
• Linux
• Coding
• Usenet

• News
• Mailing-Lists
• Newsgroups
• Service
• About
• Privacy
• Search
• Imprint

www.derkeiler.com  > Newsgroups  > comp.security.firewalls  > 2001-12