[Chugalug] Modern technologies for inbound traffic through NAT boxes?
dave at brockmans.com
Tue Apr 23 00:15:09 UTC 2013
-----BEGIN PGP SIGNED MESSAGE-----
On 4/22/2013 7:30 PM, Dan Lyke wrote:
> Anyone know the current state of "box inside the NAT network wants
> to be visible to and discovered by device outside"?
I have an answer, but it might sound snarky.... so instead I'll offer
recent sightings in the wild as options....
1)IPv6 (It's usually tunneled and slow, but sometimes works)
2a)HTTP[S] connection to cloud.x.com
2b)SSL-VPN connection to cloud.x.com
3)You point whatever you want to connect to portal.x.com and the C&C
commands are relayed from cloud to home.
4)UPnP - Nasty, nasty business IMHO....**
**Side note, my firewall will properly ignore such non-sense... but my
L3 switch that is the gateway for each network certainly built up ...
something with a device I recently turned up that had UPnP enabled.
More to come as I investigate further, as the switch shouldn't be
entertaining such notions either, and I had a bitch of a time figuring
out exactly WTF was going on.
-----BEGIN PGP SIGNATURE-----
Version: GnuPG v2.0.17 (MingW32)
Comment: Using GnuPG with Thunderbird - http://www.enigmail.net/
-----END PGP SIGNATURE-----
More information about the Chugalug