Nmap Security Scanner
*Intro
*Ref Guide
*Install Guide
*Download
*Changelog
*Book
*Docs
Security Lists
*Nmap Hackers
*Nmap Dev
*Bugtraq
*Full Disclosure
*Pen Test
*Basics
*More
Security Tools
*Pass crackers
*Sniffers
*Vuln Scanners
*Web scanners
*Wireless
*Exploitation
*Packet crafters
*More
Site News
Site Search:
Exploit World
Advertising
About/Contact
Credits
Sponsors:
edgeos



Firewall Wizards: Help

Help

From: Dave Piscitello <dave_at_corecom.com>
Date: Wed, 15 Nov 2006 07:25:37 -0500

Can I ask some of you who live behind commercial firewalls to do the
following DNS dig for a small study I would like to conduct?

dig hk ns +bufsize=4096 @203.119.2.18 > <file>

If you could tell me the OS you used to dig, the firewall between your
resolver and the name server and if you know, the firewall SW version,
you'd really make my day. BTW, if you don't get an answer, that is a
very useful data point.

I am trying to gather some anecdotal evidence regarding how firewalls
deal with EDNS0 responses (esp. DNS messages > 512) and AAAA records.

I have results for
Netscreen (ScreenOS V5.30r3, 4.0.3r4.0)
Sonicwall (SonicOS Standard 3.1.0.7-77s)
Cisco PIX version 7.2.1
Cisco C2600 IOS 12.2(37)
Watchguard FBX1000 (Fireware v8.2)

I could really use some data from current and previous versions of
Checkpoint, Symantec, Sidewinder, Fortinet to help fill out the "market
share tested" pie chart.

_______________________________________________
firewall-wizards mailing list
firewall-wizards_at_listserv.icsalabs.com
https://listserv.icsalabs.com/mailman/listinfo/firewall-wizards

Received on Nov 15 2006
[ Nmap | Sec Tools | Mailing Lists | Site News | About/Contact | Advertising | Privacy ]