Have firewall/internal network, but still receiving probes from AOL user -- how?

From: Anonymous User (googleTrashBin_at_yahoo.com)
Date: 12/07/03

  • Next message: Ugo Bay: "Re: Zyxel content filter" 
    Date: 7 Dec 2003 01:34:18 -0800

    I checked my software-firewall's log (Sygate Personal) today, and
    noticed that it showed what looked like someone at AOL hitting of my
    ports. I didn't write down the info before clearing the log,
    unfortunately, but *did* note that it was IP 172.198.145.77, which
    traceroute showed to be "ACC6914D.ipt.aol.com"
    (could always be spoofed, I suppose).

    I don't know a whole lot about setting up firewalls, but I know that
    my DSL modem can function as a rudimentary firewall, and I have it set
    up to act as one, and assign internal IP's with DHCP, and using NAT.

    I'd think that with such a setup, I'd be safe. How could someone get
    through both hardware and software firewalls (Sygate was allowing the
    access), know my internal IP (okay, it's a typical one for an internal
    network), etc.?

    Or am I somehow mistaken in this, and I'm not seeing what I *think*
    I'm seeing?

  • Next message: Ugo Bay: "Re: Zyxel content filter"

    Relevant Pages

    • Re: Re: [Full-Disclosure] Microsoft urging users to buy Harware Firewalls
      ... no OS that listens on ports ... and firewalls can defend against all ... The only attack that you can pull on a ... More and more ISPs are blocking port 135 ...
      (Full-Disclosure)
    • Re: Linksys router with xp network
      ... What firewalls did you turn off? ... and the mentioned ports only opened for the assigned ip addresses. ... Don't disable SSID broadcast - some configurations require the SSID broadcast. ... Install a software firewall on every computer connected to a wireless LAN. ...
      (microsoft.public.windowsxp.network_web)
    • RE: The RPC,server is unavailable
      ... Firewalls buddy - what is your firewall structure like? ... Have you configured any special ports to be used by RPC or have you left it ... Unable to obtain Terminal Server User Configuration. ...
      (microsoft.public.windows.server.general)
    • Re: iChat firewall question
      ... 16384-16403 - Audio/video chats use ports in this range to move ... If your ports are open for outbound-only connections (e.g. behind a home ... I had a problem with outbound iChat ports through a firewall. ... in the general case with firewalls that do not support "consistent NAT ...
      (comp.sys.mac.system)
    • Re: iChat firewall question
      ... Does the firewall at work affect the iChat connection if one of the> viewers is outside the firewall, but not if both viewers are inside? ... 16384-16403 - Audio/video chats use ports in this range to move ... If your ports are open for outbound-only connections (e.g. behind a home ... After unsuccessfully attempting to get iChat to work for audio/video, I discovered that there is another major limitation - iChat will not work in the general case with firewalls that do not support "consistent NAT translation". ...
      (comp.sys.mac.system)