Re: CheckPoint hide nat, static nat

From: Wolfgang Kueter (wolfgang_at_shconnect.de)
Date: 02/04/05

Next message: efes911: "Re: Should i ditch ISA 2004 and get a SonicWall?"
Previous message: Munpe Q: "Re: Help!!! Go to Internet Checkpoint Problem"
In reply to: deceptocon_at_gmail.com: "Re: CheckPoint hide nat, static nat"
Next in thread: Arthur Hagen: "Re: CheckPoint hide nat, static nat"
Reply: Arthur Hagen: "Re: CheckPoint hide nat, static nat"
Messages sorted by: [ date ] [ thread ] [ subject ] [ author ] [ attachment ]

Date: Fri, 04 Feb 2005 06:07:28 +0100

deceptocon@gmail.com wrote:

> They may be seperated for security purposes

Nothing wrong with separating the internal networks and filtering traffic
between them.

> and even though NAT is not
> security some places like where Iwork require it.

There is no reason for NAT between the internal networks. (Strict) filtering
should be totally sufficient.

Wolfgang

Next message: efes911: "Re: Should i ditch ISA 2004 and get a SonicWall?"
Previous message: Munpe Q: "Re: Help!!! Go to Internet Checkpoint Problem"
In reply to: deceptocon_at_gmail.com: "Re: CheckPoint hide nat, static nat"
Next in thread: Arthur Hagen: "Re: CheckPoint hide nat, static nat"
Reply: Arthur Hagen: "Re: CheckPoint hide nat, static nat"
Messages sorted by: [ date ] [ thread ] [ subject ] [ author ] [ attachment ]

Relevant Pages

Re: Firewall for VMS / TRU64
... >>security by providing an additional security layer on internal networks. ... >>It can prevent your site from receiving datagrams from certain networks ... >>Sorry Bob but TCPware don't agree with you either. ...
(comp.os.vms)
Re: [fw-wiz] Defense in Depth to the Desktop
... perspective history in the industry, maybe it comes from people coming up too ... Now they throw gobs of money at perimeter security ... reasonable attempt at locking down their internal systems. ... protection hardware into the internal networks, so that the security of the ...
(Firewall-Wizards)