> > So if you assign this firewall a management it is just a susceptible as any
> > other firewall, so much for being "invisible" ?
>
> No, since it will not show up as a gateway anyware. Traceroutes won't show it
> is there etc.
>
> Unless you know it's IP address already you will not be able to find it.
Another point:
In many cases, nothing prevents you from putting the interface bound to the IP address
on a private LAN segment. So if we build something like this:
+-----------+
Internet<------>| Bridge FW |<------->internal net
+-----------+
^
|------->Management Net
|
(Other Devices)
The firewall is really "invisible" to the external and internal networks, but is
visible and remotely manageable vie the Management net.
Hope this helps.....
AL
--
+----------------------------------------------------------------------------+
| Al Potter |
| Manager, Network Security Labs |
| ICSA Labs [EMAIL PROTECTED] |
| www.icsalabs.com PGP Key ID: 0x58c95451 |
+----------------------------------------------------------------------------+
_______________________________________________
Firewalls mailing list
[EMAIL PROTECTED]
http://lists.gnac.net/mailman/listinfo/firewalls
