At 5/6/2002 02:21 PM -0700, you wrote: >I feel compelled to quickly point out that NAT/masquerading is _not_ a >security feature. What you're describing is a stateful firewall, which >allows only inbound traffic which is related to outgoing requests. This >is not in any way related to network address translation, which is what >NAT/masquerading does. iptables can do both, but please don't confuse >them, nor rely on NAT to protect you.
All points well accepted. However, in self-defense it is only my language which is at fault; my iptables is competently set up. NAT/masquerading is used to allow my home network to access the Internet through my home gateway and ISDN line; the stateful inspection features of iptables allow the bidirectional traffic related to outgoing requests; and the packet filtering features of iptables ensure that no unwanted traffic enters my network of its own accord. Hope the language is better applied this time. Thanks for the correction, though. -- Rodolfo J. Paiz [EMAIL PROTECTED] _______________________________________________ Redhat-list mailing list [EMAIL PROTECTED] https://listman.redhat.com/mailman/listinfo/redhat-list
