Forum Discussion

Nimbostratus

Dec 06, 2011

SNAT = Secure NAt or SNAT = Source NAT ????

According to this F5 document: http://support.f5.com/kb/en-us/products/big-ip_ltm/manuals/product/ltm_configuration_guide_10_0_0/ltm_snat.html1203505 States that: secure netw...

config

design

Hamish

Cirrocumulus

Dec 06, 2011

IMO... I agree with the second F5 doc referenced above... Its Source NAT... Because there is nothing secure about NAT... Even if it's implemented securely, NAT does NOT imply security. And NAT'ing does not improve security.

Utilising NAT instead of a traditional packet filter doesn't make it any more secure. NAT is for where you run out of real addresses... Nothing more. Nothing less. Roll on IPv6

Recent Discussions

Under Attack? F5 Will Help You.
Contacting F5 Support?

DevCentral Quicklinks

* Getting Started on DevCentral
* Community Guidelines
* Community Terms of Use / EULA
* Community Ranking Explained
* Community Resources
* Contact the DevCentral Team
* Update MFA on account.f5.com

Discover DevCentral Connects

* Podcasts
* Social Channels
* Video Streaming

Forum Discussion

SNAT = Secure NAt or SNAT = Source NAT ????

Recent Discussions

NAT for specific IPs

Upgrading BIGIP 2000S to R2600

TS Declarations for DNS

how to view list os client support via cli

automatic learning logs/report ?

Related Content

F5 Security Podcasts

Certifications for security professionals

API security

Ensuring Security in Continuous Integration and Continuous Deployment (CI/CD) Pipelines

F5 Cloud-Native Functions For Secure DNS

ABOUT DEVCENTRAL

RESOURCES

SUPPORT

PARTNERS