Firewall Wizards mailing list archives
Re:Bypassing firewall
From: TDyson () sybex com
Date: Wed, 26 Jan 2000 07:38:07 -0800
If the firewall is just a packet filter, rather than proxy based, even netcat could do the job I bet. Time to check out your company's acceptable use policy to see if it forbids this sort of thing. If it does, contact HR and pursue disciplinary action. If it doesn't, ask the user how he did it, so you can increase your own skill set. Thom Dyson Director of Information Services Sybex, Inc
Hi! Back where I work, we are using a firewall the blocks everything coming
in,
and gives internal users permission to use the www, ftp, pop and mail ports. (no icq, no aol, no nothing else). But I overheard one of my users bragging that it bypassed the firewall using two linux machines doing port redirection. I did a little research on this and the most plausible way I found is
that
he is running a linux inside the firewall which grabs everyhing on a certain port (let's say the icq server port), then forward it through
port
80 to another linux box outside the firewall which make the actual call
to
the icq server on the right port. Is that possible? Is there any other alternatives he can be using?
Current thread:
- Re: Bypassing firewall, (continued)
- Re: Bypassing firewall daN. (Jan 26)
- Re: Bypassing firewall Cliff Rayman (Jan 27)
- Re: Bypassing firewall Aaron D. Turner (Jan 27)
- Re: Bypassing firewall Bennett Todd (Jan 28)
- RE: Bypassing firewall jussi . jaakonaho (Jan 25)
- Re: Bypassing firewall Robert Graham (Jan 25)
- Re: Bypassing firewall Saravana Ram (Jan 28)
- RE: Bypassing firewall Riley, Steven (Jan 26)
- RE: Bypassing firewall Kaptain (Jan 28)
- RE: Bypassing firewall Robert Purdy (Jan 31)
- RE: Bypassing firewall Kaptain (Jan 28)
- Re:Bypassing firewall TDyson (Jan 28)
- Re: Bypassing firewall Steven M. Bellovin (Jan 31)