HomeAssumptions

Reply to comment

Assumptions

Assumptions

  • For simplicity I have assumed there are no internal servers or other devices that must be accessed by the outside world. In any circumstances where this is not the case I believe the only secure solution is a properly configured hardware firewall. For more details on why NAT devices are not appropriate if you have Internet accessible servers please refer to Network Address Translation – Not a Security Panacea.
  • I have assumed that all NAT will be outbound only. In other words all network connections will be initiated from your internal protected network and no connections will be allowed in unless they are a response to a request starting in your internal network. This goes back to the assumption you are not running servers.


Reply

  • Allowed HTML tags: <a> <b> <address> <blockquote> <br> <caption> <center> <code> <dd> <del> <div> <dl> <dt> <em> <font> <h2> <h3> <h4> <h5> <h6> <hr> <i> <img> <li> <ol> <p> <pre> <span> <strong> <sub> <sup> <table> <tbody> <td> <tfoot> <th> <thead> <tr> <u> <ul> <tr>
  • Lines and paragraphs break automatically.

More information about formatting options

CAPTCHA
This question is used to make sure you are a human visitor and to prevent spam submissions. The captcha is case sensitive.
Image CAPTCHA
Enter the characters shown in the image.