(ASCEND) Our IP Spoofed a MAX ... !

To: ascend-users@bungi.com
Subject: (ASCEND) Our IP Spoofed a MAX ... !
From: Bill Hamel <bill@hamel.net>
Date: Sat, 25 Oct 1997 18:53:04 -0400
Sender: owner-ascend-users@max.bungi.com

Hello,

Well maybe not spoofing *BUT*.

I noticed some connectivity problems to one of our MAXes with SNMP. I
telnet'ed to the MAX and did a "show users". Which showed this

I 245348133 2:20    7:11  26400 MP[0]       204.120.80.167 mcar
I 245348124
2:23    4:2   28800 MP[0]       204.120.80.161 geme
< a bunch more IP's and
then >
I 245348028 1:17    3:4   26400 MP[0]       205.164.157.2  mkm

This is the IP address of one of our servers < 205.164.157.2 >, I suspect
this user is playing some sort of spoofing game which is not a good thing.

Is there a way to deny the max from accepting a connection from certain IP
addresses within our Network ?

Our boarder routers are configured not to allow traffic that originates
outside of our network with IP's of our network ( anti-spoofing ) but what
about this sort of attack where someone logs in with an IP of a server on
the network ?

Any insight here greatly appreciated.

Regards,
Bill Hamel




++ Ascend Users Mailing List ++
To unsubscribe:	send unsubscribe to ascend-users-request@bungi.com
To get FAQ'd:	<http://www.nealis.net/ascend/faq>

Follow-Ups:

Re: (ASCEND) Our IP Spoofed a MAX ... !

From: Jason Nealis <nealis@babylon.erols.com>

Re: (ASCEND) Our IP Spoofed a MAX ... !

From: nolan@cp-tel.net (Nolan W. Bailey, Jr.)

Re: (ASCEND) Our IP Spoofed a MAX ... !

From: Brett Hawn <blh@texas.net>

Prev by Date: Re: (ASCEND) Our IP Spoofed a MAX ... !
Next by Date: xDSL mailing list [WAS: Re: (ASCEND) Pipeline List?]
Prev by thread: xDSL mailing list [WAS: Re: (ASCEND) Pipeline List?]
Next by thread: Re: (ASCEND) Our IP Spoofed a MAX ... !
Index(es):
- Main
- Thread