Yes this is possible, and far too easy. There are a number of linux tools that will allow you to tunnel IP from one box out a particular port (such as port 80) to another Linux box which effects delivery. This way, the tunneled traffic appears to the firewall as just another http request. Another popular port for this is udp/53 (DNS). This is a Very Bad Thing from a security standpoint.
- Ken
- [To unsubscribe, send mail to [EMAIL PROTECTED] with "unsubscribe firewalls" in the body of the message.]