External Penetration Question

From: thatch <leethatcher@xxxxxxxxx>
Date: Tue, 8 Aug 2006 02:47:38 -0700 (PDT)

This may seem a bit basic but i'm struggling to get my head around the
following concept:

if i have a network and it's configured with a 10.x.x.x IP address scheme,
it's sitting behind a firewall and all connections to the internet are NAT'd
out. how could any PC's become exploited when the addresses of these are
non-routable. after all, if an attacker is able to exploit a vulnerabilty in
my firewall and gain access to that particular device i don't quite see how
he or she could penetrate any further into the network than where the public
IP address stop.

i've read plenty on this and will continue to do so but maybe i must have
missed a page because this seems to be the bit of the jigsaw that is
missing. Can anyone explain or just provide me with a link.

many thanks.

--
View this message in context: http://www.nabble.com/External-Penetration-Question-tf2071662.html#a5703379
Sent from the Security Basics forum at Nabble.com.

---------------------------------------------------------------------------
This list is sponsored by: Norwich University

EARN A MASTER OF SCIENCE IN INFORMATION ASSURANCE - ONLINE
The NSA has designated Norwich University a center of Academic Excellence
in Information Security. Our program offers unparalleled Infosec management
education and the case study affords you unmatched consulting experience.
Using interactive e-Learning technology, you can earn this esteemed degree,
without disrupting your career or home life.

http://www.msia.norwich.edu/secfocus
---------------------------------------------------------------------------

Follow-Ups:
- RE: External Penetration Question
  - From: Robert D. Holtz
- Re: External Penetration Question
  - From: Chris Largret

Prev by Date: SANS Certification,
Next by Date: RE: question about CISSP experience requirements
Previous by thread: Re: network security, network in general PODcast?
Next by thread: Re: External Penetration Question
Index(es):
- Date
- Thread

Relevant Pages

Re: Deny client from obtaining IP address
... products that use a concept called Network Admission Control or Unified ... I do not see how you can restrict IP leasing via ... EARN A MASTER OF SCIENCE IN INFORMATION ASSURANCE - ONLINE ... The NSA has designated Norwich University a center of Academic ...
(Security-Basics)
RE: How to stop Admins from sniffing ?
... I work in a small organisation and the system and network administrators ... EARN A MASTER OF SCIENCE IN INFORMATION ASSURANCE - ONLINE ... The NSA has designated Norwich University a center of Academic Excellence ... in Information Security. ...
(Security-Basics)
RE: How to stop Admins from sniffing ?
... I work in a small organisation and the system and network administrators ... EARN A MASTER OF SCIENCE IN INFORMATION ASSURANCE - ONLINE ... The NSA has designated Norwich University a center of Academic Excellence ...
(Security-Basics)
Re: How to stop Admins from sniffing ?
... It is the responsibility of the IT Administrators to monitor all data being ... The same policy goes for personal laptops used on the network. ... EARN A MASTER OF SCIENCE IN INFORMATION ASSURANCE - ONLINE ... The NSA has designated Norwich University a center of Academic Excellence ...
(Security-Basics)
AW: How to stop Admins from sniffing ?
... In Germany, for example, there are a number of laws against monitoring of user activity. ... This would prevent network sniffing of web traffic only. ... EARN A MASTER OF SCIENCE IN INFORMATION ASSURANCE - ONLINE ... The NSA has designated Norwich University a center of Academic Excellence ...
(Security-Basics)