[Ilugc] Building up a NAT Box

• From: mohan.tux@xxxxxxxxx (Mohan Sundaram)
• Date: Tue Dec 2 11:11:58 2008

On Tue, Dec 2, 2008 at 10:54 AM, Girish Venkatachalam <
girishvenkatachalam@xxxxxxxxx> wrote:

Protocols like SIP, FTP, RTP and other broken protocols that negotiate
port numbers in the payload (this includes all of RPC protocols
including NFS of course) need special handling in the firewall/NAT box.

I dunno a thing about linux firewalling but it is really really messy...

IPTables has NAT helpers or ALGs for precisely these reasons. It is easy to
do and there is no need to think of it as messy. One needs some time and
resolve, thats it. In case you want a packaged distro for the edge that does
this and a lot more, look at Untangle.

Mohan

• References:
  • [Ilugc] Building up a NAT Box
    • From: Narendran
  • [Ilugc] Building up a NAT Box
    • From: Girish Venkatachalam

Other related posts:

• » [Ilugc] Building up a NAT Box- Narendran
• » [Ilugc] Building up a NAT Box- Girish Venkatachalam
• » [Ilugc] Building up a NAT Box - Mohan Sundaram

1. Home
2. ilugc
3. Archive
4. 12-2008

---

• » Previous by Date
• » Next by Date
• » Related Posts
• » View list details
• » Manage your subscription

---