Re: [fw-wiz] How automate firewall tests

From: "R. DuFresne" <dufresne@xxxxxxxxxxx>
Date: Tue, 22 Aug 2006 15:48:21 -0400 (EDT)

-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA1

On Fri, 18 Aug 2006, Keith A. Glass wrote:

Marcus J. Ranum wrote:

Durga Prasad wrote:

There are couple of tools which test if a firewalling is leaking any
packets.

People still rely on packet-based firewalls??!!! You're joking, right? It's
2006!

Well. . .we packet-filter at the border routers and switches prior to the
border firewall to take some of the load off. . .but then ALL our routers are
set to packet filter as an additional security measure. . .

It might amaze a number of folks to learn how uncommon this setup is these
days. Afterall the routers are for routing, and the switches are for
switching, and the new FW appliance with built in anti-viri and IDS.IPS
abilities does it all!

Thanks,

Ron DuFresne
- --
~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~
admin & senior security consultant: sysinfo.com
http://sysinfo.com
Key fingerprint = 9401 4B13 B918 164C 647A E838 B2DF AFCC 94B0 6629

...We waste time looking for the perfect lover
instead of creating the perfect love.

-Tom Robbins <Still Life With Woodpecker>
-----BEGIN PGP SIGNATURE-----
Version: GnuPG v1.4.5 (GNU/Linux)

iD8DBQFE61+Ist+vzJSwZikRAnL0AKCC+tFg5utvH2VCQHlUV4v+cD3SwwCfe/h6
3KJRmnqZQzSpYW/j+JdB0r4=
=mdDq
-----END PGP SIGNATURE-----
_______________________________________________
firewall-wizards mailing list
firewall-wizards@xxxxxxxxxxxxxxxxxxxxx
https://listserv.icsalabs.com/mailman/listinfo/firewall-wizards

Follow-Ups:
- Re: [fw-wiz] How automate firewall tests
  - From: Jim Seymour

References:
- Re: [fw-wiz] How automate firewall tests
  - From: Marcus J. Ranum
- Re: [fw-wiz] How automate firewall tests
  - From: Durga Prasad
- Re: [fw-wiz] How automate firewall tests
  - From: Marcus J. Ranum
- Re: [fw-wiz] How automate firewall tests
  - From: Keith A. Glass

Prev by Date: Re: [fw-wiz] How automate firewall tests
Next by Date: Re: [fw-wiz] How automate firewall tests
Previous by thread: Re: [fw-wiz] How automate firewall tests
Next by thread: Re: [fw-wiz] How automate firewall tests
Index(es):
- Date
- Thread

Relevant Pages

Re: Port trunking / link aggregation problem
... A port trunk always sends packets from a particular source ... A single link is designated for flooding broadcasts and packets ... As a result typical switches allow you to do load balancing based ...
(comp.dcom.lans.ethernet)
Re: Detecting a swtich
... Some switches, such as Cisco switches, may send out proprietary ... packets such as CDP packets. ... CDP packets and the IP embedded in the CDP matches the device ... You can always try sending SNMP or RMON packets with a community ...
(comp.security.firewalls)
Re: How to findout which a device (switch/hub/Router) is based on bridge implementtaion?
... - hubs are not able to mix speeds, so if there are a mix of 10 and 100 ... remote switches; switches are not supposed to pass on BPDU from ... hubs will transparently pass on "overlength" packets ...
(comp.dcom.lans.ethernet)
Re: Strange logon attempts
... - sniff the packets from this machine to get extra info such as its MAC ... And that's provided that the switches are managed switches ... you'd need to swap in a hub in order to do the sniffing. ...
(comp.security.misc)
Re: IP Options - alert packets?
... We use Cisco 2950 switches as our floor switches ... the IP Options field that I expected to be zero. ... Which probably means all of the router alert packets get process ...
(comp.dcom.sys.cisco)