Ronneil Camara wrote:
>
> Would nmap for
> linux be enough to test the IBM firewall? I think, nmap can only do os
> fingerprinting, checking of opened ports, am I right?
On another note:
Nmap is the best tool there is to determine what ports are "open"
according to the standard definition of "open".
Don't let anyone else fool you into other port scanners, commercial
or free. Nmap is the best port scanner there is. Period. It also
has OS fingerprinting options; a firewall should attempt to make
OS fingerprinting as hard as possible.
There are other tools that could be of interest in doing rudimentary
firewall testing. Go check the "Tools" section of
http://www.securityfocus.com for a pretty comprehensive list.
Three tools of special interest (other than nmap) are
"hping", "firewalk" and "fragrouter". All three are designed
to get packets past an ACL filter that weren't supposed to get
past. This is something that nmap does not test.
--
Mikael Olsson, EnterNet Sweden AB, Box 393, S-891 28 �RNSK�LDSVIK
Phone: +46 (0)660 29 92 00 Direct: +46 (0)660 29 92 05
Mobile: +46 (0)70 66 77 636 Fax: +46 (0)660 122 50
WWW: http://www.enternet.se/ E-mail: [EMAIL PROTECTED]
-
[To unsubscribe, send mail to [EMAIL PROTECTED] with
"unsubscribe firewalls" in the body of the message.]
