[Honeywall] Re: Honeywall Digest, Vol 34, Issue 3 -- to Vincent R Ragosta

Brett Ussher breusshe at hotmail.com
Tue Mar 9 14:24:21 EST 2010

It is not a good idea.

The eth0 interface should be on a network segment that is isolated
from the rest of your network.  The eth2 interface should be on a
network segment that is not segregated from your network.  If you
think about it, it makes sense.  The idea is that eth2 is how you
connect to and manage your honeywall server while the eth0 interface
is how hacker traffic is piping into your honeynet.

If your management traffic is coming off the same physical interface
as your hacker traffic, you leave yourself open to your management
traffic being sniffed and blowing the cover on your honeynet.

Brett Ussher

honeywall-request at public.honeynet.org wrote:
> Send Honeywall mailing list submissions to
>     honeywall at public.honeynet.org
> To subscribe or unsubscribe via the World Wide Web, visit
>     https://public.honeynet.org/mailman/listinfo/honeywall
> or, via email, send a message with subject or body 'help' to
>     honeywall-request at public.honeynet.org
> You can reach the person managing the list at
>     honeywall-owner at public.honeynet.org
> When replying, please edit your Subject line so it is more specific
> than "Re: Contents of Honeywall digest..."
> Today's Topics:
>    1. Honeywall - Management Interface (Vincent R Ragosta)
> ----------------------------------------------------------------------
> Message: 1
> Date: Mon, 08 Mar 2010 15:20:21 -0500
> From: Vincent R Ragosta <vrr6 at pitt.edu>
> Subject: [Honeywall] Honeywall - Management Interface
> To: honeywall at public.honeynet.org
> Message-ID: <4B955C05.8070404 at pitt.edu>
> Content-Type: text/plain; charset=ISO-8859-1
> In most configuration tutorials, the management interface (eth2), is
> shown to be configured with a different subnet than the interface
> serving the honeypots (eth0).  Is it "not a good idea" to share both
> eth0 and eth2 over the same physical interface?  Or, does it not matter?
> Thanks.
> Vincent
> ------------------------------
> _______________________________________________
> Honeywall mailing list
> Honeywall at public.honeynet.org
> https://public.honeynet.org/mailman/listinfo/honeywall
> End of Honeywall Digest, Vol 34, Issue 3
> ****************************************

Brett D. Ussher

More information about the Honeywall mailing list