Ronneil,
#Hi everyone. We'll be starting the pre-staging of our project next week. I
#was tasked to test the effectiveness of the IBM Firewall for AIX. So what
#tools can you suggest to test against this IBM firewall? Would nmap for
#linux be enough to test the IBM firewall? I think, nmap can only do os
#fingerprinting, checking of opened ports, am I right?
#I need firewall gurus advice here :-)
#Btw, on wednesday, I will submit to the IBM engr. the ports that needs to
be
#opened. I need MsSQL to be opened and I found out in services file that
#run's on 1433/tcp. So I asked one of my colleage to do a connection to
the
#MsSQL server using ODBC, I run ethereal for linux to capture that packets,
I
#found out that it was talking to MsSQL through \PIPE and SMB something. I
#was expecting the port 1433 to appear on the capture packet but it didn't.
#Any ideas?
I don't have any experience with the IBM AIX firewall directly but IBM
ported that firewall over to OMVS on the mainframe and I have a little bit
of experience with that. First of all, the firewall is just a packet
filtering firewall with SOCKS V5 for the application layer proxies. Not
exactly a first rate commercial firewall. The IBM engineers told me that
this firewall is NOT intended for use as an Internet firewall. NMAP should
work fine. I would also suggest looking for a tool that has some AIX hacks
in it. I would look in the SQL manual to see what MSSQL uses \PIPE and SMB
for.
Regards,
Jeffery Gieser
-
[To unsubscribe, send mail to [EMAIL PROTECTED] with
"unsubscribe firewalls" in the body of the message.]
