alt Hacker NewsThe whole point of NAT firewalls is that the devices behind it don't have routable addresses. "Statefulness" improves the situation, but the translation itself provides a material control.
Replies
bandrami • today at 10:18 AM
Which, again, only helps you against attackers who are on the other side of a router you trust. Do you trust your ISP?
I suppose we fundamentally disagree that it's meaningful or material whether NAT can provide something the stateful firewalling has handled more completely since the first shipping implementation and that this defines what the purpose and introduction of NAT to the market was supposed to be.