A recent internal penetration test on our LAN flagged the IP address of our systems IP-Pad Card as having "IP Forwarding" enabled.
I know that IP Forwarding is what routers do. My question is "should an IP-Pad Card should be performing IP Forwarding?". I'm guessing the answer _might_ be yes since it this card "sort of" acts as a router between IP and TDM devices in a WAN environment, but I don't know much about this system.
This card did NOT get flagged for this in our previous years penetration test, which was performed almost exactly like this years test. That may just mean it got missed last year, that something changed, or this may be a false positive.
Our system is as follows: NEAX 2000 IPS serving IP phones on several different subnets across a WAN, with two other NEC systems networked to it at offices that have their own PRI's. Most offices are purely IP phones, with one that has a mix of IP/TDM, and one that is purely TDM.
I have posed this question to our phone vendor and asked them to check with NEC, but I wanted to pose the question here as well, since I've not been able to find any info about this on the Internet.
Thanks!
---------------------
I'd rather learn from other peoples mistakes than have them learn from mine!
I know that IP Forwarding is what routers do. My question is "should an IP-Pad Card should be performing IP Forwarding?". I'm guessing the answer _might_ be yes since it this card "sort of" acts as a router between IP and TDM devices in a WAN environment, but I don't know much about this system.
This card did NOT get flagged for this in our previous years penetration test, which was performed almost exactly like this years test. That may just mean it got missed last year, that something changed, or this may be a false positive.
Our system is as follows: NEAX 2000 IPS serving IP phones on several different subnets across a WAN, with two other NEC systems networked to it at offices that have their own PRI's. Most offices are purely IP phones, with one that has a mix of IP/TDM, and one that is purely TDM.
I have posed this question to our phone vendor and asked them to check with NEC, but I wanted to pose the question here as well, since I've not been able to find any info about this on the Internet.
Thanks!
---------------------
I'd rather learn from other peoples mistakes than have them learn from mine!