Security Basics mailing list archives
Re: Basic NAT / Firewall Question
From: "List Spam" <listspam () gmail com>
Date: Mon, 21 Aug 2006 09:32:28 -0700
Google for "firewalking". As to if the firewall forwards all traffic to the NAT'ed IP in your scenario, that depends on how the ACLs are set on the public IP. On 8/18/06, thatch <leethatcher () gmail com> wrote:
forgive me if this question seems pretty basic but could anyone tell explain this to me. i'm performing a practice assesment and i have located an IP of a web based mail server (OWA). this server is sitting behind a hardware firewall (say PIX or Checkpoint)that is NATing the IP Address to an internal non-routable address. Now, if i use a tool such as Nmap to scan that external IP are my scan results influenced by the Firewall. Do firewalls when NATing take all traffic from the external IP and pass it to the internal nertwork and expect the server to have the remaing services closed down or do they only take traffic destined for a port and drop everything else. if it's the later, when i scan am i only scaning the 1 port that is allowing traffic to be forward to it? Is there a way of determining if the firewall is blocking the traffic to the other ports or if the Server has been locked down and is blocking them? Any help would be appreciated. Regards Thatch -- View this message in context: http://www.nabble.com/Basic-NAT---Firewall-Question-tf2128555.html#a5874111 Sent from the Security Basics forum at Nabble.com. --------------------------------------------------------------------------- This list is sponsored by: Norwich University EARN A MASTER OF SCIENCE IN INFORMATION ASSURANCE - ONLINE The NSA has designated Norwich University a center of Academic Excellence in Information Security. Our program offers unparalleled Infosec management education and the case study affords you unmatched consulting experience. Using interactive e-Learning technology, you can earn this esteemed degree, without disrupting your career or home life. http://www.msia.norwich.edu/secfocus ---------------------------------------------------------------------------
--------------------------------------------------------------------------- This list is sponsored by: Norwich University EARN A MASTER OF SCIENCE IN INFORMATION ASSURANCE - ONLINEThe NSA has designated Norwich University a center of Academic Excellence in Information Security. Our program offers unparalleled Infosec management education and the case study affords you unmatched consulting experience. Using interactive e-Learning technology, you can earn this esteemed degree, without disrupting your career or home life.
http://www.msia.norwich.edu/secfocus ---------------------------------------------------------------------------
Current thread:
- Basic NAT / Firewall Question thatch (Aug 18)
- RE: Basic NAT / Firewall Question Fred McFeeters (Aug 21)
- Re: Basic NAT / Firewall Question List Spam (Aug 21)
- Re: Basic NAT / Firewall Question Christopher Stromblad (Aug 21)
- RE: Basic NAT / Firewall Question David Gillett (Aug 21)
- <Possible follow-ups>
- Re: Basic NAT / Firewall Question ricky (Aug 21)
- Re: Re: Basic NAT / Firewall Question anon (Aug 22)