[Chugalug] Modern technologies for inbound traffic through NAT boxes?

Dave Brockman dave at brockmans.com
Tue Apr 23 00:15:09 UTC 2013


-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA1

On 4/22/2013 7:30 PM, Dan Lyke wrote:
> Anyone know the current state of "box inside the NAT network wants
> to be visible to and discovered by device outside"?

I have an answer, but it might sound snarky.... so instead I'll offer
recent sightings in the wild as options....

1)IPv6 (It's usually tunneled and slow, but sometimes works)
or
2a)HTTP[S] connection to cloud.x.com
2b)SSL-VPN connection to cloud.x.com
+
3)You point whatever you want to connect to portal.x.com and the C&C
commands are relayed from cloud to home.
or
4)UPnP - Nasty, nasty business IMHO....**

**Side note, my firewall will properly ignore such non-sense... but my
L3 switch that is the gateway for each network certainly built up ...
something with a device I recently turned up that had UPnP enabled.
More to come as I investigate further, as the switch shouldn't be
entertaining such notions either, and I had a bitch of a time figuring
out exactly WTF was going on.

Regards,

dtb
-----BEGIN PGP SIGNATURE-----
Version: GnuPG v2.0.17 (MingW32)
Comment: Using GnuPG with Thunderbird - http://www.enigmail.net/

iQEcBAEBAgAGBQJRddKNAAoJEMP+wtEOVbcdKRIIAKjDe8YMylMqoOYyKWNWIqRr
MkONWLkeHYjT684n4YrT4aoWVeCYSvNyHowCc0NdiABMOGnTgVxing99aGm+kHWy
AGUydGnZ+riOeF1PwKVsaZCzx0O7tkR3/Lin2KqWI4QdT0GVNym1DLR/rmELOD/Q
dxfCrSLGlYtu02jwGA9ffOKpJtKuPIu0N+oIuHvFPcnHjBkp2qjWQTqXuKUm/BWE
N1bMFZDYY2qmMxzcYvVjg5sp5SYXN3IdQ6r7oQA2BpLXhE9W6Q8aLTiwCx5XeQOf
rXvN706znPKyqXMh2jy5akngoRXACA7g01dG5A1hwj0OdVBSep+Q1ACGUmcsJro=
=UjU4
-----END PGP SIGNATURE-----


More information about the Chugalug mailing list