Re: IP Spoofing/Masquarading

["M.D.Mufambisi" <mufambisi () gmail com>]

Im not sure im being clear here. How does the packet get to the
firewall in the first place when it has a source address of a machine
within the firewall perimeter?

internet--------------firewall(router)--------------lan

from the internet....how does the packet get to the firewall when it
has the lan ip addresses (ie private addresses)? Or am i failing to
understand how this attack works?



On 9/9/09, Sebastiaan <littlebighuman () gmail com> wrote:
> It usually doesn't. Most firewalls will drop this by default as will many
> routers.
>
> On 9/9/09, M.D.Mufambisi <mufambisi () gmail com> wrote:
> > I understand that IP packets can be spoofed ie change the source
> > address to make it look like they originated from the internal LAN.
> > However, when this is done across the internet, with a private IP
> > address in its source field, how does this packet get routed through
> > the internet?
> >
> > Kind Regards
> >
> > ------------------------------------------------------------------------
> > This list is sponsored by: Information Assurance Certification Review
> > Board
> >
> > Prove to peers and potential employers without a doubt that you can
> > actually do a proper penetration test. IACRB CPT and CEPT certs require a
> > full practical examination in order to become certified.
> >
> > http://www.iacertification.org
> > ------------------------------------------------------------------------

------------------------------------------------------------------------
This list is sponsored by: Information Assurance Certification Review Board

Prove to peers and potential employers without a doubt that you can actually do a proper penetration test. IACRB CPT 
and CEPT certs require a full practical examination in order to become certified. 

http://www.iacertification.org
------------------------------------------------------------------------