Home page logo

basics logo Security Basics mailing list archives

RE: Company Firewall's IP Address
From: <Leonard.Ong () nokia com>
Date: Fri, 15 Nov 2002 14:53:04 +0800


As my previous email, there is no way you can 'hide' the firewall  external interface IP Address.  It is generally an 
acceptable practice with a good comfort level to have this in real world.  There are something you can do :

1) Obscure the DNS name for firewall e.g. don't assign a DNS name like 'Dallas-FW-Ver3.x'
2) Use stealth connection - Drop every connection attempt to your firewall, this supposed to make your firewall stealth.
3) Carefully check your security policy to make sure there is no gap / unintended holes.
4) Use AntiSpoofing.

Having said that, the social engineering, that exploit regular computer users' panic, that really matters in the 

Leonard Ong, CISSP, CSS-1, CCSE, MCSE, 
             MCDBA, CCNP, CCDP, NSA, LCP
Network Security Specialist, APAC

Email.  Leonard.Ong () nokia com
Mobile. +65 9431 6184
Phone.  +65 6723 1724
Fax.    +65 6723 1596

  By Date           By Thread  

Current thread:
[ Nmap | Sec Tools | Mailing Lists | Site News | About/Contact | Advertising | Privacy ]