Re: [fw-wiz] Hidden ISP firewall/filtering
- From: "Paul Melson" <pmelson@xxxxxxxxx>
- Date: Fri, 4 Jun 2010 15:59:25 -0400
I recently purchased a Watchguard XTM2 to handle our firewall and VPN withIPSec, but when
attempting to connect via VPN with IPSec, it gives a message of ?VPNgateway not responding
(waiting for MSG2)? I have removed our watchguard from the network andwhen I do a ?shields
up? scan it shows all ports being closed. Long story short . . . doesanyone know if there is > a way to find out if our ISP actually has a
firewall/filtering in place, or b) have any other > thoughts.
You should be able to portscan with a tool like NMap or similar from a
switch connected to the external interface of the firewall and then scan
from another vantage point that traverses the ISP (home, coffee shop,
airport, etc.) If the ports appear open on the attached switch and closed
from another location, then you know there's filtering going on.
Determining exactly where along the path can be difficult, but trying from
multiple vantage points should yield some different results if it's not your
ISP.
PaulM
_______________________________________________
firewall-wizards mailing list
firewall-wizards@xxxxxxxxxxxxxxxxxxxxx
https://listserv.icsalabs.com/mailman/listinfo/firewall-wizards
- References:
- [fw-wiz] Hidden ISP firewall/filtering
- From: Jerrod Fuller
- [fw-wiz] Hidden ISP firewall/filtering
- Prev by Date: Re: [fw-wiz] Hidden ISP firewall/filtering
- Next by Date: [fw-wiz] Firewall Best Practice regarding XMPP traffic?
- Previous by thread: Re: [fw-wiz] Hidden ISP firewall/filtering
- Next by thread: [fw-wiz] Firewall Best Practice regarding XMPP traffic?
- Index(es):
