North American Network Operators Group|
Date Prev | Date Next | Date Index | Thread Index | Author Index | Historical
Re: Anit-Virus help for all of us??????
Suresh Ramasubramanian wrote:
NAT is not a security feature, neither does it provide any real security, just one to one translations. PAT fall into the same category. Just cause your broadband router (ahem, switch) vendor states that NAT (in reality PAT) as one of their security 'knobs' does not make it in any way a security feature when implemented. Only thing that might benefit is IPv4 address space.[email protected] writes on 11/24/2003 3:43 PM:Question: What speed access is needed to guarantee "mean time to download
Make a NAT Translation to a workstation (nothing else) and see if you can still carryout some of the exploits making the rounds.
NAT and PAT do not prohibit any TCP/UDP connections to egress.
Most broadband providers still perform a NAT translation downstream, is it helping alleviate any of the attacks/compromises? NOT!!!!!
I know Microsoft has a product that allows you to donwload patches to a centralized server (within your infrastructure) and let's you patch your internal systems from it. Heard our MS admins talking about it a while back....# Patches preferably downloaded onto a CD and applied offline
Gerardo A. Gregory