Hi 1. If memory serves me correct (and it frequently doesn't), open TCP ports 256,257 and 258 are a good indication. I have also noticed that NMAP can often detect Check Point Firewall-1 using the fingerprinting option, and it seems to be quite accurate. 2. There is probably a fair easier way of doing this, but if I want to find the internal IP address scheme, I often try to perform a download VPN topology request using Checkpoint Secureclient. Once the download is done, any request for the Internal IP address scheme will prompt for a username and password. Of course this method is far from perfect and makes all sorts of assumptions (VPN license, correctly configured encryption domain, non authenticated topology requests are allowed etc), but its better than nothing, sometimes, maybe. Regards Dave Wray Sec-Tec Ltd ------- > Pl clarify the following > > 1. Are there any means of detecting the presence of a > checkpoint firewall at a company's premises, from a > remote location. > > 2.Knowing one interface of the firewall machine, is it > possible for me to find the ip addresses of the other > interfaces. > > Kindly reply at the earliest. > > Priya > > > > > > > ____________________________________________________________ > Do You Yahoo!? > For regular News updates go to http://in.news.yahoo.com
This archive was generated by hypermail 2b30 : Mon May 14 2001 - 09:21:05 PDT