Security Basics mailing list archives

RE: Company Firewall's IP Address

From: <Leonard.Ong () nokia com>
Date: Fri, 15 Nov 2002 14:53:04 +0800

Hi,

As my previous email, there is no way you can 'hide' the firewall  external interface IP Address.  It is generally an 
acceptable practice with a good comfort level to have this in real world.  There are something you can do :

1) Obscure the DNS name for firewall e.g. don't assign a DNS name like 'Dallas-FW-Ver3.x'
2) Use stealth connection - Drop every connection attempt to your firewall, this supposed to make your firewall stealth.
3) Carefully check your security policy to make sure there is no gap / unintended holes.
4) Use AntiSpoofing.
etc.

Having said that, the social engineering, that exploit regular computer users' panic, that really matters in the 
advertisement.



Regards,
Leonard Ong, CISSP, CSS-1, CCSE, MCSE, 
             MCDBA, CCNP, CCDP, NSA, LCP
Network Security Specialist, APAC
NOKIA

Email.  Leonard.Ong () nokia com
Mobile. +65 9431 6184
Phone.  +65 6723 1724
Fax.    +65 6723 1596

Current thread:

Re: Company Firewall's IP Address, (continued)
- - Re: Company Firewall's IP Address Meritt James (Nov 13)
- RE: Company Firewall's IP Address Bruce Fowler (Nov 15)
- Re: Company Firewall's IP Address Eric Schroeder (Nov 15)
- Re: Company Firewall's IP Address Ivan Coric (Nov 16)
- Re: Company Firewall's IP Address Meritt James (Nov 16)
  - Re: Company Firewall's IP Address Bill Hamel (Nov 15)
    - Re: Company Firewall's IP Address Meritt James (Nov 16)
    - Re: Company Firewall's IP Address Bill Hamel (Nov 16)
- Re: Company Firewall's IP Address Edward N Schofield (Nov 16)
  - Re: Company Firewall's IP Address Bill Hamel (Nov 15)
- RE: Company Firewall's IP Address Leonard.Ong (Nov 16)
- Re: Company Firewall's IP Address Meritt James (Nov 16)
  - Re: Company Firewall's IP Address Bill Hamel (Nov 16)
    - Re: Company Firewall's IP Address Frederick Garbrecht (Nov 18)
    - Re: Company Firewall's IP Address Andre Speelmans (Nov 19)
    - Re: Company Firewall's IP Address Meritt James (Nov 18)
    - Re: Company Firewall's IP Address Bill Hamel (Nov 22)
- RE: Company Firewall's IP Address Louis Erickson (Nov 17)
- RE: Company Firewall's IP Address John Canty (Nov 17)
  - query on firewall throughput..... SaiKrishna (Nov 18)
- RE: Company Firewall's IP Address Eric Schroeder (Nov 19)

(Thread continues...)