Private IP address leaked (Full Version)

All Forums >> [ISA 2006 Publishing] >> Exchange Publishing



Message


bryand -> Private IP address leaked (29.Aug.2008 1:54:22 PM)

Hi,

I am running ISA 2006 in my DMZ behind an ASA 5520 firewall. The ISA server is publishing an OWA site located on my Exchange front end server on my internal network.
I recently had a penetration test done and it showed that the private ip address of my ISA server was being revealed in the HTTP header. I have found fixes for IIS concerning this issue but nothing for ISA. I contacted Microsoft and they said it's a ASA NAT'ing problem.

Has anyone had this problem? Any ideas would be greatly appreciated!

Thanks

Bryan




Page: [1]