SV: Comprehensive firewall test using Nmap?

["Carl-Johan Bostorp" <Carl-Johan.Bostorp () hps se>]

Hi,

Using simple scripting would be a good way to get things done quickly.  E.g.

#!/bin/bash

srcport=$1
end=$2

while [ $srcport -le $end ]; do
   nmap -g $srcport -oA blabla-$srcport etc
   $srcport = `expr $srcport + 1`
done

/CJ

> -----Ursprungligt meddelande-----
> Från: listbounce () securityfocus com
> [mailto:listbounce () securityfocus com] För Alexander Sandström Krantz A
> Skickat: den 21 augusti 2008 09:00
> Till: pen-test () securityfocus com
> Ämne: Comprehensive firewall test using Nmap?
>
> Is it possible to automatically alter the source port when using Nmap
> to test a firewall? It would be very nice if it was possible to provide
> a port range instead of one single source port, even though I realise
> that such as scan would take a long time to execute. Anyone knows of
> any patches for Nmap that allows a source port range to be provided?
>
> If not, do you have any other suggestion on what application to use to
> perform a more comprehensive firewall test?
>
> Thanks,
> Alexander
>
> -----------------------------------------------------------------------
> -
> This list is sponsored by: Cenzic
>
> Top 5 Common Mistakes in
> Securing Web Applications
> Get 45 Min Video and PPT Slides
>
> www.cenzic.com/landing/securityfocus/hackinar
> -----------------------------------------------------------------------
> -


------------------------------------------------------------------------
This list is sponsored by: Cenzic

Top 5 Common Mistakes in
Securing Web Applications
Get 45 Min Video and PPT Slides

www.cenzic.com/landing/securityfocus/hackinar
------------------------------------------------------------------------