"Ye, Xiaodong" wrote:
>
>
> 2.I saw the doc in RFC that the NAT will has problem with some security
> mode(Like Kerberos 4,5) and NAT couldn't by itself support all applications
> transparently and often must co-exist with application level gateways,is it
> right?If yes,what kinds of applications should be special?
Kerberos considers sender and sending ip mismatch as replay attack.
horio shoichi
-
[To unsubscribe, send mail to [EMAIL PROTECTED] with
"unsubscribe firewalls" in the body of the message.]
