Re: Firewall Stealth Mode?
- From: Jason <Jason@xxxxxxxxxxxxxxxxxxx>
- Date: Sat, 11 Mar 2006 13:45:09 GMT
* Sebastian Gottschalk <seppi@xxxxxxxxx>:
a_monk wrote:
As I understand, when the external interface of a firewall is being
scanned by "nessus", "nmap", or/and other scanning tools, one should
not be able to "see" any opening services, EVEN though services, e.g.,
web, mail, ftp, are published their services using the IP address of
the external interface of the firewall.
Recently, a security consultant explained to me that the stealth mode
of a firewall is meant just that the firewall does not respond to ICMP
only, therefore when the firewall is scanned, the services published
using that IP address are still visible/reported.
Both your understanding, the explaination and the "stealth mode" itself
are nonsense.
So then help them smart guy instead of insulting them, or is that all
you can do?
Jason
.
- Follow-Ups:
- Re: Firewall Stealth Mode?
- From: optikl
- Re: Firewall Stealth Mode?
- From: Sebastian Gottschalk
- Re: Firewall Stealth Mode?
- References:
- Firewall Stealth Mode?
- From: a_monk
- Re: Firewall Stealth Mode?
- From: Sebastian Gottschalk
- Firewall Stealth Mode?
- Prev by Date: Re: Firewall Stealth Mode?
- Next by Date: Re: Firewall Stealth Mode?
- Previous by thread: Re: Firewall Stealth Mode?
- Next by thread: Re: Firewall Stealth Mode?
- Index(es):
Relevant Pages
|
