Hot Downloads

Welcome, Guest
Username: Password: Remember me

TOPIC: LAN Access from internet

LAN Access from internet 12 years 8 months ago #3024

  • manuel
  • manuel's Avatar
  • Offline
  • New Member
  • Posts: 3
  • Karma: 0
Hello!, I want to know if it is possible to access a LAN that uses the 192.168.x.x addresses from internet? If yes, how can I protect it?
There's no limit for a thinking mind
The administrator has disabled public write access.

Re: LAN Access from internet 12 years 8 months ago #3026

  • Neon
  • Neon's Avatar
  • Offline
  • Distinguished Member
  • Posts: 101
  • Karma: 0
Hi manuel

Seeing as how you are using the 192.168.0.0 network (Private Class C) you are pretty safe as these addresses are not routed along the Internet. The only way that you would be in danger is if someone has port forwarding or DMZs setup on the router.

But to be simple as possible you should be pretty safe.

If you are still not sure you can always goto Steve Gibsons ShieldsUP site which will test your security.
Best thing to do is grab a free firewall product from www.zonelabs.com and you will be secure.

Also note that you still can catch reverse Trojans which connect to an external server which can pass your routers firewall… So have antivirus installed.
The administrator has disabled public write access.

Re: LAN Access from internet 12 years 8 months ago #3032

  • sahirh
  • sahirh's Avatar
  • Offline
  • Honored Member
  • Posts: 1700
  • Karma: 0
Well there are a couple of dirty TCP/IP tricks that could be used but most of them are too complicated and theoretical to be practical. For example in theory someone could use source routing to try and route through the NAT device and access the internal LAN.

There is also a technique known as NAT breaking which is a fairly new concept, frankly I don't think you need to worry about any of them. Your biggest threat comes from other avenues of attack, notably email borne threats and insecurities on the NAT device itself.

Consider, if you use a router for the NAT, and someone breaks into the router, then the internal network is exposed completely.

Nobody would really bother breaking the NAT, the NAT device is a much more likely target.
Sahir Hidayatullah.
Firewall.cx Staff - Associate Editor & Security Advisor
tftfotw.blogspot.com
The administrator has disabled public write access.
Time to create page: 0.076 seconds

CCENT/CCNA

Cisco Routers

  • SSL WebVPN
  • Securing Routers
  • Policy Based Routing
  • Router on-a-Stick

VPN Security

  • Understand DMVPN
  • GRE/IPSec Configuration
  • Site-to-Site IPSec VPN
  • IPSec Modes

Cisco Help

  • VPN Client Windows 8
  • VPN Client Windows 7
  • CCP Display Problem
  • Cisco Support App.

Windows 2012

  • New Features
  • Licensing
  • Hyper-V / VDI
  • Install Hyper-V

Linux

  • File Permissions
  • Webmin
  • Groups - Users
  • Samba Setup