APNIC Home APNIC Home
Info & FAQ |  Resource services |  Training |  Meetings |  Membership |  Documents |  Whois & Search |  Internet community

You're here:  Home  Mailing Lists pacnog 
[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]

RE: [pacnog] Tools for Testing of Firewalls

I just wanted to chime in on ethereal. They've changed the name to
WireShark (http://www.wireshark.org/) since the original dev team went
to work for CACE.

- Alo

-------------------------------------------------------
Aloiamoa Anesi, Jr.
Network Operations Engineer
Blue Sky Communications
478 Laufou Shopping Ctr
Pago Pago, American Samoa 96799
--
Ph: +1.684.699.2759 ext 1098
Cell: +1.684.258.1098
VoIP: 2098@voip.bluesky.as

-----Original Message-----
From: Hervey Allen [mailto:hervey@nsrc.org] 
Sent: Monday, July 03, 2006 11:33 AM
To: Alo Anesi; Alex Abraham
Cc: PacNOG
Subject: Re: [pacnog] Tools for Testing of Firewalls

Alo Anesi wrote:
> Hey Alex,
> 
> I'd recommend nessus (http://www.nessus.org/) and nmap 
> (http://www.insecure.org/nmap/). Joel might also have some further 
> recommendations for you.
> 

There are some Nessus workshop pages here:

http://ws.edu.isoc.org/workshops/2006/PacNOG2/track1/day3/nessus/

We didn't get to this in detail in the ccTLD track, but you might find
it useful. Nessus is here:

http://www.nessus.org/

You might find nmap useful as well:

http://www.insecure.org/nmap/

There were some example commands listed in the security overview
presentation (slide 44). A PDF version of the presentation is here:

http://ws.edu.isoc.org/workshops/2006/PacNOG2/track1/day3/security/secur
ity-overview.pdf

If you are getting fancy you might run Snort behind your firewall to see
if you are blocking what you think you are blocking... Or tcpdump, or
ethereal, or... ;-)

Joel discussed Snort last year at PacNOG1:

http://ws.edu.isoc.org/workshops/2005/PACNOG-I/day3/snort/

The software is here:

http://www.snort.org/

Cheers,
	- Hervey

> Thanks,
> - Alo
> 
> -----Original Message-----
> From: pacnog-bounces@pacnog.org [mailto:pacnog-bounces@pacnog.org] On 
> Behalf Of Alex Abraham
> Sent: Monday, July 03, 2006 9:46 AM
> To: 'PacNOG'
> Subject: [pacnog] Tools for Testing of Firewalls
> 
> Hi All,
> 
> Wondering if anyone has win/unix tools for simulating tests for 
> firewall ie,
> 
> 1.Against syn-flood:
> 
> 2.Against udp/icmp flood:
>  
> 3.Against Ping of death /Teardrop:
> 
> 4.Against IP spoofing:
> 
> 5.Against Smurf:
> 
> Regards
> 
> alex
> 
> ============================================
> Alex Abraham
> Network Operations Manager
> SamoaTel Limited
> Maluafou HQ
> Private Bag
> Apia
> Samoa
> 
> Tel: +685 67853
> Fax: +685 24000
> Email: alex.abraham@samoatel.ws
> website: www.samoatel.ws
> 
> 
> 
> _______________________________________________
> pacnog mailing list
> pacnog@pacnog.org
> http://mailman.apnic.net/mailman/listinfo/pacnog
> 
> _______________________________________________
> pacnog mailing list
> pacnog@pacnog.org
> http://mailman.apnic.net/mailman/listinfo/pacnog
> 


--
-------------------------------------------------
Hervey Allen      Network Startup Resource Center
hervey@nsrc.org GPG Key Fingerprint:
AC08 31CB E453 6C65 2AB3 4EDB CEEB 5A74 C6E5 624F