[2050] in linux-security and linux-alert archive
[linux-security] Re: IP Filters and Masq: precisions
daemon@ATHENA.MIT.EDU (Glynn Clements)
Thu Aug 13 02:32:11 1998
From: Glynn Clements <glynn@sensei.co.uk>
Date: Thu, 13 Aug 1998 02:35:47 +0100 (BST)
To: Duncan Simpson <dps@io.stargate.co.uk>
Cc: linux-security@redhat.com
In-Reply-To: <199808122131.WAA00911@io.stargate.co.uk>
Resent-From: linux-security@redhat.com
Resent-Reply-To: linux-security@redhat.com
Duncan Simpson wrote:
> > That's the kind of questions I'm asking myself and haven't
> > seen any answers about them. Some friend of mine says he heard of a way to
> > circumvent a masq firewall and access a computer inside, but that's as far
> > has he remembers.
>
> The probable method is some form of IP source routing.
Source routing will enable you to get a packet to the masq firewall,
even if the destination address is a private address. The route which
you would need to specify from the masq firewall to the victim would
usually be the route which the packet would take anyhow.
If you are running a masq firewall, you would normally disallow any
other forwarding (replies to masqueraded packets are demasqueraded and
forwarded automatically), so even if you can get the packet to the
masq firewall, you're unlikely to get it any further (even without the
`drop source-routed packets' option.
--
Glynn Clements <glynn@sensei.co.uk>
--
----------------------------------------------------------------------
Please refer to the information about this list as well as general
information about Linux security at http://www.aoy.com/Linux/Security.
----------------------------------------------------------------------
To unsubscribe:
mail -s unsubscribe linux-security-request@redhat.com < /dev/null