RE: [PEN-TEST] Detecting the presence of a firewall

• Previous message: MadHat: "RE: [PEN-TEST] Detecting the presence of a firewall"
• Maybe in reply to: priya subramanian: "[PEN-TEST] Detecting the presence of a firewall"
• Next in thread: railwayclubposseat_private: "RE: [PEN-TEST] Detecting the presence of a firewall"
• Next in thread: Magnus Bodin: "Re: [PEN-TEST] wireless LAN traffic sniffing"
• Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]

-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA1

> -----Original Message-----
> From: railwayclubposseat_private
> [mailto:railwayclubposseat_private]
> Sent: Monday, May 14, 2001 11:44 AM
> 
> For Checkpoint, use nmap and do a TCP and OS detection scan. 
> If they are 
> doing one-to-many NAT the machines will be detected as 
> "behind a Checkpoint 
> Firewall-1 4.1 SP2 Server" or whatever. The firewall itself 
> is likely to 
> have some combination of  TCP ports 256-259, 264-265 open for 
> management,
> auth, key exchange, etc. 

What criteria is nMap using? What would the result be if a) the
well-known-Checkpoint-ports are closed, and b) the default TTL has
been monkied with? (Not you, Doug)

Regards,
Frank

-----BEGIN PGP SIGNATURE-----
Version: PGP Personal Privacy 6.5.8
Comment: PGP or S/MIME encrypted email preferred.

iQA/AwUBOwBr75ytSsEygtEFEQIE4wCg+fYkOVgnUUKAJln7YbQYeNM4qzcAoM2u
8LKpwZ4q3fUbsdkz/YFxbDel
=3TZs
-----END PGP SIGNATURE-----

• Next message: Haroon Meer: "Sequential IP id's (fwd)"
• Previous message: MadHat: "RE: [PEN-TEST] Detecting the presence of a firewall"
• Maybe in reply to: priya subramanian: "[PEN-TEST] Detecting the presence of a firewall"
• Next in thread: railwayclubposseat_private: "RE: [PEN-TEST] Detecting the presence of a firewall"
• Next in thread: Magnus Bodin: "Re: [PEN-TEST] wireless LAN traffic sniffing"
• Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]

This archive was generated by hypermail 2b30 : Mon May 14 2001 - 20:41:18 PDT