RE: Company Firewall's IP Address

["Rick Darsey" <rdarsey () aims1 com>]

Your admin is right. In order for you to be able to pull data from the
Internet, or any other system connected via a network, you have to give the
destination system an address to reply to, hence your IP address. Knowing
the IP address of your firewall is not a major issue, not if your firewall
is configured correctly.  A hacker can find IP addresses all day long. There
are only so many addresses, and with a little programming, he can scan a
specific range of addresses, which are public knowledge BTW, and find
openings in an improperly configured system.

Rick


-----Original Message-----
From: tony tony [mailto:tonytorri () yahoo com]
Sent: Tuesday, November 12, 2002 4:09 PM
To: security-basics () securityfocus com; Cisaca
Subject: Company Firewall's IP Address


I was doing security research on the internet at work yesterday....when all
of
a sudden I got a pop up advertisement that stated that I was broadcasting my
IP
address to the entire internet.  It then showed a screen with my IP address
which was the the external IP interface of one of our companies firewalls.

It just bothers me that someone would be able to determine the IP address of
our firewall that easily.  It seems to me that our firewall should operate
in a
more stealth mode.  Our firewall administrator said it is not technically
possible to do this.  What is your take?I am not a checkpoint firewall
guruso
I do not know.   All I know is that if I was a hacker, I would love to
hammer
away on an ip address that represented a firewall.

Click on the following to learn more about this pop up site.

http://www.bonzi.com/internetalert/ia99m.asp


__________________________________________________
Do you Yahoo!?
U2 on LAUNCH - Exclusive greatest hits videos
http://launch.yahoo.com/u2