On Thu, Feb 21, 2002 at 03:33:23PM +0100, Richard van den Berg wrote: > With the risk of being flamed: I've used nessus from behind a Checkpoint > FW-1 using NAT without any problems.
That's *behind* a firewall - on the protected side - I'm in *front* - the nasty, Internet side. Different rules usually apply. Anyway, as mentioned in my last message, I'm beginning to think this is actually how Nessus is designed to work(?) If it can't "ping" (via ICMP or a single-port TCP scan) a host, then it won't bother scanning anythin on that host. That means I'm going to look at the nmap file option. I'm hoping it'll override the "sanity check"? -- Cheers Jason Haar Information Security Manager Trimble Navigation Ltd. Phone: +64 3 9635 377 Fax: +64 3 9635 417
