Hacker News new | past | comments | ask | show | jobs | submit login

> Any network engineer will tell you that NAT is an illusion of security.

That "illusion" was pretty damn effective at taking Windows, around '00, from "pwned in minutes, no user action required" to "won't get pwned unless you click the wrong thing".




Well that was 20 years ago.

A smart washing machine is more powerful that a computer from 2000. :P


Sure, but it's still handy that consumer routers with no extra config protect the smart washing machines connected to them from drive-by unpatched remote exploits, just by having NAT on by default.


I'm not sure I understand what you mean here.

Let's say you had two routers.

1 with NAT and 1 without.

They both will have a firewall that by default blocks incoming traffic.

So they are functionally equivalent.


Could be true, these days. Didn't used to always be, at least on consumer hardware, though I've not seen a non-NATing Internet-connected consumer network in most of two decades.




Guidelines | FAQ | Lists | API | Security | Legal | Apply to YC | Contact

Search: