Firewall Question

[Bohogg]

Correct me if I am wrong but these sites that "test" your firewall only test a few ports

At http://www.blackcode.com you can scan all of your ports in batches of 100 at a time.

[emrys]

cool....it scanned and i had all my ports closed :P w00t w00t

[dev_ocean]

i also have same firewall but at symantec.com they reported vulnerability in my firewall.
which edition do u have i have ed.5 free one.

[chefer]

Correct me if I am wrong but these sites that "test" your firewall only test a few ports

At http://www.blackcode.com you can scan all of your ports in batches of 100 at a time.

Not wrong, most of the sites out there will only check up to port 1024. It seems that they are
just the free level scans that do that for the most part. It seems that there are some out there that will check all ports if you are willing to pay. Either that, or get a friend with good connection who can test for you through Saint, Nessus, or even the deprecated Nmap.

[dev_ocean]

test it at symantec.com and it'll tell u a lot of vulnerability as it told me for same firewall configuration

[jcdux]

online testers are useful, I prefer Sygate (theres more than the basic probes found on grc)

You should also ask some third parties to portscan & probe you (there's nearly always someone on IRC that'll nmap you free of charge), at the end of the day, a portscan & probe is only as good as your logging, if your not monitoring the logs your a sitting duck, also thinking that any personal firewall is going to protect you from every k1dd13 and haz0r out there is stupid, yes it'll stop a lot of the crap but if your serious about security then a secure set-up is a must.
An old 486 with *nix will be of more long term value than any window$ based solution.


J.

[Ferret]

Out of outpost and sygate which is better?