Basic NAT / Firewall Question

From: thatch <leethatcher@xxxxxxxxx>
Date: Fri, 18 Aug 2006 10:29:20 -0700 (PDT)

forgive me if this question seems pretty basic but could anyone tell explain
this to me.

i'm performing a practice assesment and i have located an IP of a web based
mail server (OWA). this server is sitting behind a hardware firewall (say
PIX or Checkpoint)that is NATing the IP Address to an internal non-routable
address. Now, if i use a tool such as Nmap to scan that external IP are my
scan results influenced by the Firewall. Do firewalls when NATing take all
traffic from the external IP and pass it to the internal nertwork and expect
the server to have the remaing services closed down or do they only take
traffic destined for a port and drop everything else. if it's the later,
when i scan am i only scaning the 1 port that is allowing traffic to be
forward to it?

Is there a way of determining if the firewall is blocking the traffic to the
other ports or if the Server has been locked down and is blocking them?

Any help would be appreciated.

Regards

Thatch

--
View this message in context: http://www.nabble.com/Basic-NAT---Firewall-Question-tf2128555.html#a5874111
Sent from the Security Basics forum at Nabble.com.

---------------------------------------------------------------------------
This list is sponsored by: Norwich University

EARN A MASTER OF SCIENCE IN INFORMATION ASSURANCE - ONLINE
The NSA has designated Norwich University a center of Academic Excellence
in Information Security. Our program offers unparalleled Infosec management
education and the case study affords you unmatched consulting experience.
Using interactive e-Learning technology, you can earn this esteemed degree,
without disrupting your career or home life.

http://www.msia.norwich.edu/secfocus
---------------------------------------------------------------------------

Follow-Ups:
- RE: Basic NAT / Firewall Question
  - From: David Gillett
- Re: Basic NAT / Firewall Question
  - From: Christopher Stromblad
- Re: Basic NAT / Firewall Question
  - From: List Spam
- RE: Basic NAT / Firewall Question
  - From: Fred McFeeters

Prev by Date: RE: study help
Next by Date: shellcode development
Previous by thread: study help
Next by thread: RE: Basic NAT / Firewall Question
Index(es):
- Date
- Thread

Relevant Pages

Re: How to Maintain an IIS Server?
... > server running on a Windows 2000 server. ... before a firewall and antivirus have been installed]. ... open ports; however, this will not identify which program is using the port. ...
(microsoft.public.inetserver.iis.security)
Re: CEICW fails at firewall config
... ISA Server prevents connection to a remote desktop when you connect through ... Remote Web Workplace on a Windows Small Business Server 2003-based computer ... Acceleration Server as a firewall. ... connection uses TCP port 4125. ...
(microsoft.public.windows.server.sbs)
Re: How to Maintain an IIS Server?
... >> server running on a Windows 2000 server. ... > before a firewall and antivirus have been installed]. ... > program or executable using that port. ...
(microsoft.public.inetserver.iis.security)
Re: Activesync / Airsync - Alternative Ports
... Setup a reverse HTTP proxy. ... Another idea is to use the PPTP capabilities of a Windows Server to allow ... Satellite - Cisco Firewall - Exchange Server ... So on the server side you would configure the port 80 to redirect to ...
(microsoft.public.pocketpc.activesync)
Re: Activesync / Airsync - Alternative Ports
... "Chris De Herrera" wrote: ... Another idea is to use the PPTP capabilities of a Windows Server to allow ... Satellite - Cisco Firewall - Exchange Server ... So on the server side you would configure the port 80 to redirect to 8888 ...
(microsoft.public.pocketpc.activesync)