Re: Access behind Firewall

From: Craig Columbus (Craig.Columbus@xxxxxxxxxxxxxxxxxxxxxx)
Date: Tue Mar 12 2002 - 10:50:01 GMT-3

• Next message: Shane Miles: "RE: FR load-balancing"
• Previous message: Craig Columbus: "RE: Router (boot) #"
• Maybe in reply to: Lab Candidate: "Access behind Firewall"
• Next in thread: Frank Jimenez: "RE: Access behind Firewall"
• Messages sorted by: [ date ] [ thread ] [ subject ] [ author ] [ attachment ]

   
Unless you really want to get fired, I suggest talking with the firewall
admin before trying to circumvent existing security. Put yourself in the
shoes of the business owner when the security guy sends him an e-mail
stating that there's someone who's disregarding IT security policy and
trying to open holes in the firewall. What would be your response to
someone jeopardizing your hard earned business? At the least it'll cause
some probing questions to be asked about your integrity and intentions.
As other users have suggested, there are other ways to address the problem
besides circumventing security. I personally like the idea of putting your
lab in the DMZ and securing access using one of the many methods
available. As long as he doesn't have to open holes in the firewall, I bet
your security guy would go along; especially if you let him/her have access
to the lab occasionally. ;-)

Craig

At 11:39 PM 3/11/2002 -0800, you wrote:
>I am looking for ideas and suggestions from you genius people.
>Currently I've got a small lab at work that is behind company's firewall,
>as diagram below:
>
> PC [Cisco LAB]
> | |
> | |
> ================Firewall
> |
> {INTERNET}
> |
>
>I want to be able to access to the lab from home over the Internet, the
>firewall allows any
>sessions established(such as telnet, ftp, web, etc.) with outside if the
>connection is initiated
>from inside the firewall. I have the ownership of the lab and the PC, but
>not the firewall. I
>guess what I'm looking for is a way to kick off an outbound session from
>inside in order for me to
>connect back into the firewall so I can get access to the lab. Is there
>any kind of software (or
>even trojan horse :-) that allows me to have a little secret backdoor into
>the firewall? I can run
>any software on the PC, or maybe a proxy/relay site outside firewall both
>I and the PC can be
>connected to and get hooked up? what's the best way to do it, any
>suggestions? I'd appreciate it.
>
>---
>
>
>
>
>
>
>

• Next message: Shane Miles: "RE: FR load-balancing"
• Previous message: Craig Columbus: "RE: Router (boot) #"
• Maybe in reply to: Lab Candidate: "Access behind Firewall"
• Next in thread: Frank Jimenez: "RE: Access behind Firewall"
• Messages sorted by: [ date ] [ thread ] [ subject ] [ author ] [ attachment ]

This archive was generated by hypermail 2.1.4 : Thu Jun 13 2002 - 10:57:01 GMT-3