Point well taken... let me refine this request a bit further. I understand that there are inherent risks internally.
What I am specifically looking for is external ways to defeat, obsfucate, or otherwise circumvent NAT and gain access to internal systems. Thanks for the input Jeff -----Original Message----- From: Kline, Nathan C - CICT-2 [mailto:[EMAIL PROTECTED]] Sent: Wednesday, September 25, 2002 1:47 PM To: 'Schuler, Jeff'; [EMAIL PROTECTED] Subject: RE: Network Address Translation insecurities How about the fact that an attack can come from inside your firewall? You should be doing vulnerability testing for both internal and external attacks. All NAT is going to do is protect your internal IP addresses from externally being gathered. Once the intruders are internal to your network, however, NAT is not longer a good protective device. --Nathan -----Original Message----- From: Schuler, Jeff [mailto:[EMAIL PROTECTED]] Sent: Wednesday, September 25, 2002 10:17 AM To: [EMAIL PROTECTED] Subject: Network Address Translation insecurities I am looking for information regarding the insecurities and vulnerabilities that exist in Network Address Translation. One of our admins feels that because everything is NAT'd that there is no way anyone can break into the systems that are NAT'd. I know that this is not a completely accurate statement but need to find some research and documentation regarding this. All our systems are behind at least one firewall so please don't advise me to install a firewall as extra security as they are already there. I just want to make sure that we are not overlooking serious vulnerabilities just because the box is behind a NAT. In order to justify doing vulnerability testing on some of our internal systems I need to demonstrate the insecurities in NAT. Thanks in advance Jeff Schuler
