Go Premium for a chance to win a PS4. Enter to Win

x
?
Solved

PAT or NAT ?

Posted on 2006-11-16
7
Medium Priority
?
586 Views
Last Modified: 2010-04-10
I am having 40 clients (Windows XP) on local network and I am accesing (NAT) with my  clients some pay-able service (ACME) which is on another network.  
And ACME bills me every month for using their network, they charge for number of clients, they can see how many client connects to their network.

I know that I must pay, but I am paying for some clients which are using  ACME network only for couple hours on month.

Question is; can I hide some clients, when I am accesing to ACME network ? Using PAT ?


Thanks for help
0
Comment
Question by:Maddogslo
7 Comments
 
LVL 7

Expert Comment

by:knightrider2k2
ID: 17957697
Probably NOT.

I suppose you are using ACME's network for internet access?
0
 
LVL 7

Expert Comment

by:knightrider2k2
ID: 17957724
PAT means port address translation. If you are hosting servers like web or email servers, then you can use one public IP address and mapp diffrent ports to different machines.
0
 
LVL 7

Expert Comment

by:dlangr
ID: 17959751
could you explain what acme service you are using or give us a link to it?
0
Learn Veeam advantages over legacy backup

Every day, more and more legacy backup customers switch to Veeam. Technologies designed for the client-server era cannot restore any IT service running in the hybrid cloud within seconds. Learn top Veeam advantages over legacy backup and get Veeam for the price of your renewal

 

Author Comment

by:Maddogslo
ID: 17960122
I am using Acme as fictional company or corporation (acronym for : A Company (that) Makes Everything) instead real name company.
http://en.wikipedia.org/wiki/Acme



0
 

Expert Comment

by:DavidLH
ID: 17968654
Most people who believe they are using NAT are really using PAT.  If you have a single outside IP address you are using PAT.  Real NAT is having one outside IP address for each inside IP address.  

"ACME" probably identifies your inside computers with some other mechanism besides the outside IP address of your network.  

The best to this problem is to make an internal usage policy for your network to make sure people do not use a computer for "ACME" just a couple hours per month.  I would restrict ACME usage to a specific set of computers that use it enough to make paying for the service worth while.

If making such a policy is not doable,  call ACME and find out if there is a different way to bill this.

The answer to the question is that changing NAT and PAT settings will not help, if it did I ACME would not be able to count how many people use the service they probably use a more sophisticated counting mechanism.

0
 
LVL 7

Accepted Solution

by:
dlangr earned 1500 total points
ID: 17972277
They probably use some kind of fingerprinting.

Many operating systems have patterns in things like their selection of starting sequence numbers for TCP connections, for example.  You can figure out a fair amount about what is behind a NAT firewall by looking at things like that. see http://en.wikipedia.org/wiki/OS_fingerprinting

Another example: http://www.zdnet.com.au/news/security/soa/Tracking_PCs_anywhere_on_the_Net/0,130061744,139183346,00.htm

They might also be using (some kind of) cookies. see http://en.wikipedia.org/wiki/Browser_cookie 


0
 
LVL 7

Expert Comment

by:dlangr
ID: 17972278
defeating their technique will require knowing what they use. Look into the possibilities and see what you can do to prevent that information to be published (or ask us).
0

Featured Post

New Tabletop Appliances Blow Competitors Away!

WatchGuard’s new T15, T35 and T55 tabletop UTMs provide the highest-performing security inspection in their class, allowing users at small offices, home offices and distributed enterprises to experience blazing-fast Internet speeds without sacrificing enterprise-grade security.

Question has a verified solution.

If you are experiencing a similar issue, please ask a related question

This article is a collection of issues that people face from time to time and possible solutions to those issues. I hope you enjoy reading it.
A 2007 NCSA Cyber Security survey revealed that a mere 4% of the population has a full understanding of firewalls. As business owner, you should be part of that 4% that has a full understanding.
Get a first impression of how PRTG looks and learn how it works.   This video is a short introduction to PRTG, as an initial overview or as a quick start for new PRTG users.
There's a multitude of different network monitoring solutions out there, and you're probably wondering what makes NetCrunch so special. It's completely agentless, but does let you create an agent, if you desire. It offers powerful scalability …

885 members asked questions and received personalized solutions in the past 7 days.

Join the community of 500,000 technology professionals and ask your questions.

Join & Ask a Question