Security Implications of Network Address Translation on Intrusion Detection and Prevention Systems

@article{Meharouech2009SecurityIO,
  title={Security Implications of Network Address Translation on Intrusion Detection and Prevention Systems},
  author={Sourour Meharouech and Adel Bouhoula and Tarek Abbes},
  journal={2009 International Conference on Network and Service Security},
  year={2009},
  pages={1-5}
}
Network Address Translation (NAT) is a technology that allows multiple computers on a LAN to share a single public IP address for accessing the Internet. Without it, the IPv4 protocol’s limited number of available addresses would be pushed to its limits. However, NAT poses a big problem for security and especially for networks protected by intrusion detection systems (IDS) and intrusion prevention systems (IPS). The paper underlines the NAT’s implications on IDS and IPS and proposes a solution… CONTINUE READING