Hosting Provided By

Re: Firewall Load Testing

From: Gene <gyoo(at)attbi.com>
Date: Tue Dec 10 2002 - 15:45:20 EST

trying running ntop or nagios to monitor the load on your firewall, it might even be interesting to run an nids to see what happens when you utilize your pentool.

depending on what you're trying to achieve through your pentest on your firewall, try something like firestorm or firewalk:

Firewalk 5.0 [gateway ACL scanner]
firewalk: invalid option -- -
Usage : firewalk [options] target_gateway metric

                    [-d 0 - 65535] destination port to use (ramping phase)
                    [-h] program help
                    [-i device] interface
                    [-n] do not resolve IP addresses into hostnames
                    [-p TCP | UDP] firewalk protocol
                    [-r] strict RFC adherence
                    [-S x - y, z] port range to scan
                    [-s 0 - 65535] source port
                    [-T 1 - 1000] packet read timeout in ms
                    [-t 1 - 25] IP time to live
                    [-v] program version
                    [-x 1 - 8] expire vector

Usage: fragroute [-f file] dst
Rules:

        delay first|last|random 
        drop first|last|random 
        dup first|last|random 
        echo  ...
        ip_chaff dup|opt|
        ip_frag  [old|new]
        ip_opt lsrr|ssrr   ...
        ip_ttl 
        ip_tos 
        order random|reverse
        print
        tcp_chaff cksum|null|paws|rexmit|seq|syn|
        tcp_opt mss|wscale 
        tcp_seg  [old|new]

there are other nix tool that you would use to start the recon the understand the perimeter before you actually starting using injecting/hijacking/analysis tool for full penetration...

/gene

Jason Dixon wrote:
> My apologies if this isn't the right forum for this question; I'm

-- 
Gene Yoo, gyoo@attbi.com


----------------------------------------------------------------------------
This list is provided by the SecurityFocus Security Intelligence Alert (SIA)
Service. For more information on SecurityFocus' SIA service which
automatically alerts you to the latest security vulnerabilities please see:
https://alerts.securityfocus.com/

Received on Tue Dec 10 16:43:12 2002

Do you need help?

This message: [ Message body ]
Next message: Mr. The Brain: "Re: XSS Questions"
Previous message: H D Moore: "Re: ASP Files"
In reply to Jason Dixon: "Firewall Load Testing"

Contemporary messages sorted: [ By Date ] [ By Thread ] [ By Subject ] [ By Author ] [ By messages with attachments ]

This archive was generated by hypermail 2.1.8 : Wed Aug 23 2006 - 14:02:31 EDT