Home page logo

firewall-wizards logo Firewall Wizards mailing list archives

RE: Ping between PIX remote peers
From: "Utz, Ralph" <rutz () realtime-it com>
Date: Thu, 4 May 2006 09:49:59 -0500

V7 allows the PIX to send traffic out an interface that it came in on IF
it is configured to do so. Otherwise, the traffic is still dropped and
not allowed. 

-----Original Message-----
From: Brian Loe [mailto:knobdy () gmail com] 
Sent: Thursday, May 04, 2006 9:31 AM
To: Utz, Ralph
Cc: Juan Pablo Feria Gomez; firewall-wizards () honor icsalabs com
Subject: Re: [fw-wiz] Ping between PIX remote peers

What happens in v7? I'll assume for now they've just built in the
aliasing for requests coming in on the inside port, right? Like
presumably a SonicWall does?

Surely they're not breaking security by allowing this to happen with
no checks...

On 5/3/06, Utz, Ralph <rutz () realtime-it com> wrote:
"PIX will not send traffic out the same interface it came in on"

Applies to all versions of PIX IOS less than v7

firewall-wizards mailing list
firewall-wizards () honor icsalabs com

  By Date           By Thread  

Current thread:
[ Nmap | Sec Tools | Mailing Lists | Site News | About/Contact | Advertising | Privacy ]