Home page logo
/

pen-test logo Penetration Testing mailing list archives

Re: [PEN-TEST] NAT / Stateful Packet Inspection Questions
From: Jose Nazario <jose () BIOCSERVER BIOC CWRU EDU>
Date: Wed, 27 Sep 2000 12:04:02 -0400

On Wed, 27 Sep 2000, Leon Rosenstein wrote:

Is there anyway to circumvent this firewall (or any firewalls that
employ NAT and SPI as there primary defense mechanisms?)  Is there
anyway to get direct access to the server?  I have port scanned the
router and found listening ports and remote administration software
but I am curious as to how one could circumvent the firewall (if this
is done through hijacking the router I would be curious about that
also).

NAT would be difficult, but SPI has had recent problems. check some of the
firewall testing tools from dugsong:    

        http://www.monkey.org/~dugsong/

like ozone and such. have some fun.

jose nazario                                    jose () biochemistry cwru edu
PGP fingerprint: 89 B0 81 DA 5B FD 7E 00  99 C3 B2 CD 48 A0 07 80
Public key available at http://biocserver.cwru.edu/~jose/pgp-key.asc


  By Date           By Thread  

Current thread:
[ Nmap | Sec Tools | Mailing Lists | Site News | About/Contact | Advertising | Privacy ]