Calling all you network security uber-gurus...….should I be worried?When I go to this web site:
http://isc.sans.org/ they have a sniffer that detects my internal IP – not the public router address like it does everywhere else that sniffs me. Also, only one machine does this? From every other client on my network if I go to a site that says you IP is: blah.blah.blah.1 - it only sees my router (sme 6.01-01 w/smeplus). However, from one client machine the Internet Storm Center’s port detector sees my internal address and get’s it right every time! I talked to them and they said they looked at the browser headers and the proxy.
The box is Win-XP Pro running IIS and SMTP. – BUT, …I have several of these that are exactly the same and this is the only one that is doing this.
(1) Should I be worried / Pull the box off line?
(2) What would push my 192.168.. address out on port 80?
Nate