Re: CheckPoint hide nat, static nat

From: Wolfgang Kueter (wolfgang_at_shconnect.de)
Date: 02/04/05


Date: Fri, 04 Feb 2005 06:07:28 +0100

deceptocon@gmail.com wrote:

> They may be seperated for security purposes

Nothing wrong with separating the internal networks and filtering traffic
between them.

> and even though NAT is not
> security some places like where Iwork require it.

There is no reason for NAT between the internal networks. (Strict) filtering
should be totally sufficient.

Wolfgang



Relevant Pages

  • Re: Firewall for VMS / TRU64
    ... >>security by providing an additional security layer on internal networks. ... >>It can prevent your site from receiving datagrams from certain networks ... >>Sorry Bob but TCPware don't agree with you either. ...
    (comp.os.vms)
  • Re: [fw-wiz] Defense in Depth to the Desktop
    ... perspective history in the industry, maybe it comes from people coming up too ... Now they throw gobs of money at perimeter security ... reasonable attempt at locking down their internal systems. ... protection hardware into the internal networks, so that the security of the ...
    (Firewall-Wizards)