The BorderWare Ping server simply enables an ICMP Echo response when it is
turned on. By default the BorderWare Firewall Server does not respond to
Ping (or to any connection request), enabling the Ping server on one or more
interfaces enables the Firewall to respond on those interfaces.
What Marcus is describing is our Ping "proxy", which when enabled will
permit a user to ping a system through the Firewall and, assuming that
system is up, to get a response. The Ping proxy is available only for
outbound use (i.e an internal user can ping an external system and not vice
versa) and like all proxies and servers is disabled by default.
The Firewall's integrated hardened operating system includes defences for
ping of death and other denial of service attacks.
_______________________________________________________________
Peter Cox Phone: +44 20 8893 6066
Vice President Fax: +44 20 8574 8384
BorderWare Technologies Inc http://www.borderware.com
-----Original Message-----
From: firewall-wizards-admin_at_nfr.com
[mailto:firewall-wizards-admin_at_nfr.com]On Behalf Of Marcus J. Ranum
Sent: 09 October 2001 16:24
To: Don Ng; firewall-wizards_at_nfr.com
Subject: Re: [fw-wiz] Borderware Ping Server
> Seems to be quite unique, is it a proxy server for
>ICMP echo request?
I believe that what it did was set a bpf filter for icmp packets, which it
then proxied to the outside world and re-injected on the internal network.
Kind of an interesting concept; I wonder if it would have adequately
protected
against a ping of death attack...
mjr.
---
Marcus J. Ranum Chief Technology Officer, NFR Security, Inc.
Work: http://www.nfr.com
Personal: http://www.ranum.com
_______________________________________________
firewall-wizards mailing list
firewall-wizards_at_nfr.com
http://list.nfr.com/mailman/listinfo/firewall-wizards
_______________________________________________
firewall-wizards mailing list
firewall-wizards_at_nfr.com
http://list.nfr.com/mailman/listinfo/firewall-wizards
Received on Oct 11 2001
Intro
