|
Neohapsis is currently accepting applications for employment. For more information, please visit our website www.neohapsis.com or email hr@neohapsis.com |
Re: feature req: more info on TCP session for content filter and/or policy delegation server
From: Wietse Venema (wietse
porcupine.org)
Date: Mon Jan 03 2005 - 09:35:13 CST
- Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]
Mark Martinec:
> Wietse,
>
> > > The source port number (i.e. the whole TCP quadruple) is needed to be
> > > able to distinguish between boxes behind NAT, e.g. when they are
> > > firewalled.
> >
> > NAT is not a firewalling technique. Without a proper firewall on
> > top of NAT, is is possible to break into systems behind NAT boxes.
>
> I wasn't clear enough and you missed my point. I'll explain.
I was merely being obnoxious, but not stupid.
Wietse
- Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]