<a href="http://g.adspeed.net/ad.php?do=clk&zid=14678&wd=728&ht=90&pair=as" target="_top"><img style="border:0px;" src="http://g.adspeed.net/ad.php?do=img&zid=14678&wd=728&ht=90&pair=as" alt="i" width="728" height="90"/></a>

Nmap Security Scanner

Docs
Security Lists

Full Disclosure

More
Security Tools

Packet crafters

More
Site News
Site Search:
Exploit World
Advertising
About/Contact
Credits
Sponsors:

edgeos

Firewall Wizards: Auditing Firewalls

Auditing Firewalls

From: Lance Spitzner <lance_at_spitzner.net>
Date: Tue, 12 Dec 2000 18:33:55 -0600 (CST)

I've updated my "Auditing Your Firewall Setup".
The paper goes into more technical detail on
how to use the tools to audit a firewall rulebase.

I'm looking for input on a good tool to use
TTL's to map a rulebase. Something along the lines
of setting the TTL with an namp scan so one
can firewalk a rulebase. Unfortunately, the
actual tool firewalk is designed to work against
a router behind the firewall. I'm looking to
have TTL's expire on the firewall itself. For
now I am using hping2 as a proof of concept.
The paper covers this, however I'm still
searching for a good tool for this scan method.

Auditing Your Firewall Setup
http://www.enteract.com/~lspitz/audit.html

Thanks!

-- 
Lance Spitzner
http://project.honeynet.org
_______________________________________________
firewall-wizards mailing list
firewall-wizards_at_nfr.com
http://www.nfr.com/mailman/listinfo/firewall-wizards

Received on Dec 14 2000

This message: [ Message body ]
Next message: Ryan Russell: "Re: Token based OTP: SafeWord or SecurID?"
Previous message: Eric Vyncke: "Re: Cisco IOS"

Contemporary messages sorted: [ by date ] [ by thread ] [ by subject ] [ by author ] [ by messages with attachments ]

[ Nmap | Sec Tools | Mailing Lists | Site News | About/Contact | Advertising | Privacy ]