Results 1 to 9 of 9

Thread: Linux firewall scanner

  1. #1
    Junior Member
    Join Date
    Jan 2003
    Posts
    11

    Linux firewall scanner

    I just installed shorewall on my linux system and it seems to be working great . I got it up and running in about 15 minutes (and can be downloaded here ). Now I want to test the firewall on it to see if it is fairly secure. I downloaded SATAN but I have no idea how to use it and I'm wondering if there are any good GUI programs out there.
    Only stupid choices remind you of what the smart choices are.

  2. #2
    Senior Member
    Join Date
    Feb 2002
    Posts
    130
    As far as I can see (and I am sure someone will correct me if I am wrong) you will have trouble scanning yourself to test for firewall security from your own box. The fact of the matter is the requests are not coming from outside the firewall (unless they are routed out through a proxy and back). If you want to test it I would suggest one of these methods

    1) Getting another machine, building your own LAN (could just be 2 machines connected via a hub or crossover RJ45 crossover cable). If the other machine was another Linux one you could run something like Nessus ( http://www.nessus.org ) which IMHO is pretty easy to use and has a nice GUI. Step by step insturctions are available on their site if you fancy giving it a go.

    2) Go to a web site that will perform a scan for you such as

    http://www.symantec.com/securitycheck/

    that way you will be scanned from outside your firewall.

    Cheers

  3. #3
    Antionline's Security Dude instronics's Avatar
    Join Date
    Dec 2002
    Posts
    901
    Just one little thing more. You said you got satan. Get Saint, its satan's followup. Satan is ancient as far as im aware. And also like UKnetsec said, nessus is cool too. The tests you can perfom from inside your firewall are the destination ports (if you have defined any). Point is, in a firewall to dissallow everything, then to allow only what you really need. eg.

    dns - destination port 53

    web - destination port 80 and 443

    etc....

    But thats only if you actually have defined any outgoing rules. Good luck.

    Cheers.
    Ubuntu-: Means in African : "Im too dumb to use Slackware"

  4. #4
    Master-Jedi-Pimps0r & Moderator thehorse13's Avatar
    Join Date
    Dec 2002
    Location
    Washington D.C. area
    Posts
    2,885
    You can also try NMAP. This is what I would use for simple port discovery.

    Good luck!
    Our scars have the power to remind us that our past was real. -- Hannibal Lecter.
    Talent is God given. Be humble. Fame is man-given. Be grateful. Conceit is self-given. Be careful. -- John Wooden

  5. #5

    The difference

    Hi there,

    Just to elaborate a bit for you.

    NMAP is a nice port scanner, that will tell you what ports are open on your firewall. Its a good start for any scan on a host.

    Nessus (better then SATAN) is more a vulnerability scanner on the actual services. Don't get me wrong, Nessus picks up open ports and all, but not as extensively as what NMAP will. Nessus is more for telling you why those ports are bad for being open.

    Finally, I always finish off with a Langaurd Network Scan. Its a Doze based scanner, but it is highly effictive. I have often found that NMAP will find ports that LanGaurd will not, and Vice Versa. Making them a team is often the most thorough way of scanning a host.

    Anyway,
    Just thought your might enjoy the info.

    Pink ribbon scars, That never forget
    I tried so hard, To cleanse these regrets
    My angel wings, Were bruised and restrained
    My belly stings

  6. #6
    Junior Member
    Join Date
    Dec 2002
    Posts
    14
    Offers a complete vulnerability assessment for free.

    http://www.remoteassessment.com

    The reports are extremely detailed as well.

  7. #7
    Senior Member
    Join Date
    Oct 2001
    Posts
    186
    I think Sara is a nice tool. Its pretty friendly too. get it at insecure.org in the security tools section.
    Ben Franklin said it best. \"They that can give up essential liberty to obtain a little temporary safety deserve neither liberty nor safety.\"

  8. #8
    Junior Member
    Join Date
    Dec 2002
    Posts
    14

    Thumbs up

    Try the following service from Secureworx

    GOD is my CEO.

  9. #9
    Junior Member
    Join Date
    Dec 2002
    Posts
    14
    secureworx.com offers a free port scan
    remoteassessment.com offers a free vulnerability assessment
    hackerwhacker.com offers another free port scan

    Secureworx and Remoteassessment both appear professional. Hmmmm....

Posting Permissions

  • You may not post new threads
  • You may not post replies
  • You may not post attachments
  • You may not edit your posts
  •