I�ve read this list for a while now, and something I�m still unsure about is
how secure is Network Address Translation as a security measure?
Because we are a small/medium size company we have an NT domain structure
with no Unix boxes. We have a dedicated connection to the Internet (bust
T1). All of the computers are using Non-Routable addresses and can only
connect to the Internet through NAT on the router (Cisco 2611). The only
Internet service we host is email which I�ve mapped a static IP with ONLY
port 25 allowed through to the mail server. ALL other services (including
DNS) are hosted at the ISP level.
My question is that other than complicated hacks (like a telnet session
hijack) how susceptible are we? I�ve done a lot of reading and I can�t seem
to find anything that would indicated that we have an open hole since it is
nearly impossible to connect to a server behind NAT, but I�d be curious on
other opinions.
Thanks in advance.
Aaron Wetherhold
[EMAIL PROTECTED]
______________________________________________________
Get Your Private, Free Email at http://www.hotmail.com
-
[To unsubscribe, send mail to [EMAIL PROTECTED] with
"unsubscribe firewalls" in the body of the message.]
