It is my impression that what was meant by "compromising" the card was
utilization of MAC spoofing........
But I could be wrong....
Also this brings up a project that I am currently involved with and that
is
the dangers of MAC spoofing in relationship to Cisco's
Catalysts 5000. All and any comments / references will be welcomed.
Thanks,
Joe Hoffman
-----Original Message-----
From: peterpajak [mailto:[EMAIL PROTECTED]]
Sent: Tuesday, August 24, 1999 5:55 AM
To: art.coble; cory; firewalls
Cc: peterpajak
Subject: Re: quad cards on firewalls
not exactly, since all NICs on sun boxes always have the same mac
address
(burnt into the motherboard) all switches are designed to handle that
all
right. besides, all comunications start with the ip address being mapped
to
mac address by arp, so the switch port which has the ip address you want
to
talk to is being used as the communication channel anyway. in regard to
the
second part ask the guy what he means by compromisig the card. to do
that
one would have to have phisical access to the machine and that's another
issue.
later, peter
>From: Art Coble <[EMAIL PROTECTED]>
>To: Corbett Waddingham <[EMAIL PROTECTED]>, [EMAIL PROTECTED]
>Subject: Re: quad cards on firewalls
>Date: Mon, 23 Aug 1999 17:04:25 -0700
>
>I don't see a problem with it.
>I've implemented the configuration you are describing.
>Make sure you configure the qfe card to give each
>port a unique MAC address. By default each port
>has the same MAC. This can wreak some havoc on switches.
>
> -Art
>
>
>At 04:20 PM 8/23/99 -0700, Corbett Waddingham wrote:
> >
> >Hello,
> >
> >Recently, the subject of using quad ethernet cards on firewalls was
>brought up
> >here at work. One person was convinced that this is a Bad Thing(c),
>because
> >someone could compromise the card and get access to the entire
network.
> >Everyone else (myself included) felt that he was just being overly
>paranoid,
> >and that just keeping the subnets logically seperated would be fine.
But
>I
> >thought I would ask the people who be most likely to know.
> >
> >The card in this case was a Sun Quad Fast Ethernet, the firewall
itself
>was
> >an UltraSPARC with Solaris 2.6 and Checkpoint.
> >
> >
> >Corbett Waddingham
> >E-greetings Network Data Wrangler
> >415-536-1861
> >http://www.egreetings.com
> >-
> >[To unsubscribe, send mail to [EMAIL PROTECTED] with
> >"unsubscribe firewalls" in the body of the message.]
> >
>
>===========================================
>Art Coble
>International Network Services
>Senior Network Consultant
>Email: [EMAIL PROTECTED]
>Page: 800 INS 1 INS or [EMAIL PROTECTED]
>"Fix the problem, not the blame"
>=============================================
>-
>[To unsubscribe, send mail to [EMAIL PROTECTED] with
>"unsubscribe firewalls" in the body of the message.]
>
______________________________________________________
Get Your Private, Free Email at http://www.hotmail.com
-
[To unsubscribe, send mail to [EMAIL PROTECTED] with
"unsubscribe firewalls" in the body of the message.]
