[Dshield] testing a firewall
efritz at glja.com
Mon Dec 22 21:30:23 GMT 2003
There's a few of these tools around. The one I like is nmap. It's at www.insecure.org.
michael nancarrow wrote:
> I have recently deployed a new firewall system and spent
> a lot of time testing the new rules. The one problem I found
> was that whilst I could test for known rules it was hard to test
> for unknown rules or unexpected results. Since we were not familiar
> with the new firewall we got some nasty surprises. What I was missing
> amongst the tool set was a means of getting every port from every
> ip address on the Internal network to respond. The idea being that
> I could do a complete port scan and guarantee a device behind the
> firewall would respond if it got through. Does anybody no if such
> a tool exists ? everybody has been working hard to stop this type
> of response occurring on b/cast addresses but it can be handy at times.
> Particularly if you don't want to do the testing in-situ.
More information about the list