If you want to audit your firewall rulesets, nmap (http://www.insecure.org) is good. I remember a paper circulating a while back about 'firewalking' - building up rulesets by sending packets with crafted TTL values to determine if a packet would make it past a firewall, and making whether the host itself was actually alive or running a service irrelevant. Can't think of any software that'll do this for you off the top of my head, but have a look around - I'm sure there is something. Also, look in the databases at www.securityfocus.com, packetstorm.securify.com, et al, and search for vulnerabilities for the software and version you are running. Satan, saint and nessus are all decent public domain security scanners, and IIS and several other vendors produce commerical scanners, if you are willing to spend the money. Take care, Andrew -----Original Message----- From: [EMAIL PROTECTED] [mailto:[EMAIL PROTECTED]] Sent: Sunday, January 14, 2001 6:49 PM To: [EMAIL PROTECTED] Subject: Hello everybody, I look for some of the best firewall scanners. Thanks for any help. M. Hasan - [To unsubscribe, send mail to [EMAIL PROTECTED] with "unsubscribe firewalls" in the body of the message.] - [To unsubscribe, send mail to [EMAIL PROTECTED] with "unsubscribe firewalls" in the body of the message.]
