RE: Company Firewall's IP Address

[Bruce Fowler <bfowler () hvp com au>]

Tony,

It is certainly possible to capture the IP address of the external interface
of the firewall. Something as simple as a tracert could identify this on an
open session. It would certainly be improbable that one could capture the IP
address of anything within your internal network space unless i) it was
specifically published, or ii) a direct route was enabled through the
firewall, or iii) the firewall had been breached. This is simply a marketing
angle. Disregard.

Bruce

-----Original Message-----
From: tony tony [mailto:tonytorri () yahoo com] 
Sent: Wednesday, 13 November 2002 9:09 AM
To: security-basics () securityfocus com; Cisaca
Subject: Company Firewall's IP Address


I was doing security research on the internet at work yesterday....when all
of a sudden I got a pop up advertisement that stated that I was broadcasting
my IP address to the entire internet.  It then showed a screen with my IP
address which was the the external IP interface of one of our companies
firewalls. 

It just bothers me that someone would be able to determine the IP address of
our firewall that easily.  It seems to me that our firewall should operate
in a more stealth mode.  Our firewall administrator said it is not
technically possible to do this.  What is your take?...I am not a checkpoint
firewall guru...so
I do not know.   All I know is that if I was a hacker, I would love to
hammer
away on an ip address that represented a firewall. 

Click on the following to learn more about this pop up site. 

http://www.bonzi.com/internetalert/ia99m.asp


__________________________________________________
Do you Yahoo!?
U2 on LAUNCH - Exclusive greatest hits videos http://launch.yahoo.com/u2