From: Jeremy O'Dette (jeremyodette@hotmail.com)
Date: Thu Dec 29 2005 - 13:36:39 GMT-3
This seems to be a layer 7 issue... I fired up ethereal and took a visit to
the site. It did find my private IP but looking at the capture all its
doing is executing some .asp and java code from their web server. Their
script is contacting the java client loaded on your machine(s) and having it
spit out our private IP. Its not a layer 3/4 network issue.
The only thing that comes to my mind would be CBAC's java blocking feature -
but I don't know how reliable that would be as I don't have the .asp and
java background to know how easy it is to code around a CBAC Java rule...
Jeremy O'Dette
CCIE #14973
jeremyodette@hotmail.com
>From: David Cearlock <dcgroupstudy@gmail.com>
>Reply-To: David Cearlock <dcgroupstudy@gmail.com>
>To: "ccielab@groupstudy.com" <ccielab@groupstudy.com>
>Subject: Keeping your Private IP address Private
>Date: Thu, 29 Dec 2005 10:04:48 -0600
>
>A user in my office stumbled upon
>http://www.auditmypc.com/acronym/FTTH.asp which
>displayed his private LAN address. I have been searching for away to stop
>this but I have been unsuccessful. Below is our basic setup. Any help
>would
>be great.
>
>PS. I am able to reproduce this in the lab.
>
>
>INSIDE ++++ PIX 525 ++++ 7200 ++++++++++ INTERNET
>
>--
>Thank you,
>David Cearlock
>MCSE - CCNP
>
>_______________________________________________________________________
>Subscription information may be found at:
>http://www.groupstudy.com/list/CCIELab.html
This archive was generated by hypermail 2.1.4 : Mon Jan 09 2006 - 07:07:52 GMT-3