Penetration Testing: RE: [PEN-TEST] Detecting the presence of a firewall

Nmap Security Scanner

Intro

Ref Guide

Install Guide

Download

Changelog

Book

Docs
Security Lists

Bugtraq

Basics

More
Security Tools

More
Site News
Site Search:
Exploit World
Advertising
About/Contact
Credits
Sponsors:

Penetration Testing mailing list archives

RE: [PEN-TEST] Detecting the presence of a firewall

From: railwayclubposse () hushmail com
Date: Tue, 15 May 2001 10:49:14 -0500 (EDT)

You get the same results if the default Checkpoint ports are closed. You 
still need to find one or two open ports, but they don't have to be on the 
firewall itself. The giveaway is in how the headers are rewritten for one-
to-many NAT. 

Frank Knobbe [FKnobbe () KnobbeITS com] wrote:

What criteria is nMap using? What would the result be if a) the
well-known-Checkpoint-ports are closed, and b) the default TTL has
been monkied with? (Not you, Doug)

Regards,
Frank

Free, encrypted, secure Web-based email at www.hushmail.com

By Date By Thread

Current thread:

RE: [PEN-TEST] Detecting the presence of a firewall, (continued)
- RE: [PEN-TEST] Detecting the presence of a firewall railwayclubposse (May 14)
- Re: [PEN-TEST] Detecting the presence of a firewall Mule, Andrew (May 14)
  - Re: [PEN-TEST] Detecting the presence of a firewall PinGer (May 16)
- RE: [PEN-TEST] Detecting the presence of a firewall Geoghegan, Glyn (ISS London) (May 14)
- RE: [PEN-TEST] Detecting the presence of a firewall Frank Knobbe (May 14)
- RE: [PEN-TEST] Detecting the presence of a firewall railwayclubposse (May 15)
  - RE: [PEN-TEST] Detecting the presence of a firewall - Layer 2 Lance Spitzner (May 15)
- RE: [PEN-TEST] Detecting the presence of a firewall Balunos, Don (May 15)
- RE: [PEN-TEST] Detecting the presence of a firewall Frank Knobbe (May 15)
- RE: [PEN-TEST] Detecting the presence of a firewall railwayclubposse (May 16)