I had quite an interesting discussion with a colleague today. He insists that if you use NAT, nat itself must be considered a firewall. This is a statement that I myself have big problems understanding, but sadly I lack arguments. Either pro or against considering NAT a firewall solution. Can someone please give me some input regarding this?