Hello
Testing firewall in isolated network where is only three machines is
tricky. I think this is too hard way to do testing because you need to
read FW logs and packet analyzer logs.
----- scan ----->
--------- ---- -----------------
| netscan | | FW | | packet analyzer |
--------- ---- -----------------
I got idea and I am sure someone else has got same idea earlier. Let us
attach machine with broken daemon on private network interface and in
other interface we need to attach network scanner machine (like nmap).
This broken daemon replies to all ports and all addresses what it sees.
----- scan ----->
--------- ---- ---------------
| netscan | | FW | | broken daemon |
--------- ---- ---------------
<--- answers ----
So you don need to read any other log than scan result and you'll see is
ruleset ok. This also makes configuring easier if you put FW
administrating program on netscan machine and you configure logs to come
there. In other words everything goes into one machine and you don't need
to run anywhere.
My problem is that I have not ever wrote daemon which answers wrong IP
addresses and I have no idea how to do that. Mayby someone has made that
daemon but where I can find it?
Regards,
Sami
===
(__) Sami Kerola
(oo) RTT Ohjelmistopankki Oy
/-------\/ Rantakatu 8 phone +358 8 2104210
/ | || 92101 RAAHE mobile +358 50 3438138
* ||----|| FINLAND fax +358 8 2104201
^^ ^^ http://www.ohjelmistopankki.fi/
My PGP key http://www.pgp.net/wwwkeys.html
-
[To unsubscribe, send mail to [EMAIL PROTECTED] with
"unsubscribe firewalls" in the body of the message.]
