Morpheus: set up IPs 206.142.53.17 + 206.142.53.21 + 206.142.53.19 Block these IPs from machine:unprivports out externif to www proto In addition to machine:unprivports to universe on 1214 so they won't even be able to search nor p2p
Had to lockdown my teenager this way... -----Original Message----- From: [EMAIL PROTECTED] [mailto:[EMAIL PROTECTED]] Sent: Wednesday, January 16, 2002 6:33 PM To: [EMAIL PROTECTED] Subject: Firewalls digest, Vol 1 #479 - 11 msgs Send Firewalls mailing list submissions to [EMAIL PROTECTED] To subscribe or unsubscribe via the World Wide Web, visit http://lists.gnac.net/mailman/listinfo/firewalls or, via email, send a message with subject or body 'help' to [EMAIL PROTECTED] You can reach the person managing the list at [EMAIL PROTECTED] When replying, please edit your Subject line so it is more specific than "Re: Contents of Firewalls digest..." Today's Topics: 1. RE: Two ISP's (David Lang) 2. Using Cisco IOS firewall feature set (Eric Appelboom) 3. SOCKS Question (ZOERNER, KENNETH R, ALBAS) 4. CISCO VPN (Maung, Than Contractor) 5. RE: Question (Steve Smith) 6. RE: Question (Clark, Steve) 7. RE: Question (Paul Robertson) 8. RE: How to Block Morpheus, Napster, etc. (Adam Mead) (Janbaz Qamar) 9. Re: How to test a firewall. (Florian Hobelsberger / BlueScreen) 10. RE: SOCKS Question (Ben Nagy) 11. RE: SOCKS Question (Peter Merrick) --__--__-- Message: 1 From: David Lang <[EMAIL PROTECTED]> To: Frank <[EMAIL PROTECTED]> Cc: "Kotakoski Harri (EXT-Novosys/Copenhagen)" <[EMAIL PROTECTED]>, [EMAIL PROTECTED] Date: Wed, 16 Jan 2002 11:13:54 -0800 (PST) Subject: RE: Two ISP's although that's jsut doing dynamic DNS. David Lang On Wed, 16 Jan 2002, Frank wrote: > Date: Wed, 16 Jan 2002 09:26:34 -0800 (PST) > From: Frank <[EMAIL PROTECTED]> > To: "Kotakoski Harri (EXT-Novosys/Copenhagen)" > <[EMAIL PROTECTED]> > Cc: [EMAIL PROTECTED] > Subject: RE: Two ISP's > > > Radware's Link-Proof will do it without BGP. However it's $$$ > > > On Wed, 16 Jan 2002, Kotakoski Harri (EXT-Novosys/Copenhagen) wrote: > > > In this case you could use any router capable of handling BGP (such as > > Cisco 72xx series) or Firewall like Nokia IP series (starting IP440). > > Cisco 72xx not necessary. If you don't need a full routing table you can > do BGP/Static with as little as a Cisco 1600. > > > _______________________________________________ > Firewalls mailing list > [EMAIL PROTECTED] > http://lists.gnac.net/mailman/listinfo/firewalls > --__--__-- Message: 2 Subject: Using Cisco IOS firewall feature set Date: Wed, 16 Jan 2002 21:15:26 +0200 From: "Eric Appelboom" <[EMAIL PROTECTED]> To: <[EMAIL PROTECTED]> Cc: <[EMAIL PROTECTED]> This is a multi-part message in MIME format. ------_=_NextPart_001_01C19EC2.2769D4B5 Content-Type: text/plain; charset="us-ascii" Content-Transfer-Encoding: quoted-printable I am looking at complimenting our FW-1's with switches installed with the Cisco IOS firewall feature set. =20 I would like to implement this on 6500 switches also using layer 3 switching so inspection can be done on switches and not on fw nic. We primarily would like to reduce unessesary internal to internal traffic. =20 We will use the Cisco Policy Manager version 3 which appears to be similar to the FW-1 GUI and not commandline. =20 There doesn't appear to be many people using the IOS firewall feature set and it appears quite apt and manageable. I am aware of the TCP\UDP only inspection limitation of CBAC. =20 Does anyone used the IOS firewall in production and can give advice? Are there any peformance comparisons? =20 Regards Eric =20 =20 =20 *** Disclaimer: The information in this email is confidential and is intended solely for the addressee(s). Access to this email by anyone else is unauthorised. If you are not an intended recipient, you must not read, forward, print, use or disseminate the information contained in the email. Any representations (contractual or otherwise), views or opinions presented are solely those of the author and do not necessarily represent those of the employer or any of its affiliates. =20 ------_=_NextPart_001_01C19EC2.2769D4B5 Content-Type: text/html; charset="us-ascii" Content-Transfer-Encoding: quoted-printable <!DOCTYPE HTML PUBLIC "-//W3C//DTD HTML 4.0 Transitional//EN"> <HTML><HEAD> <META HTTP-EQUIV=3D"Content-Type" CONTENT=3D"text/html; = charset=3Dus-ascii"> <TITLE>Message</TITLE> <META content=3D"MSHTML 6.00.2712.300" name=3DGENERATOR></HEAD> <BODY> <DIV><FONT face=3DArial size=3D2><SPAN class=3D958582017-16012002>I = am looking at=20 complimenting our FW-1's with switches installed with = the Cisco=20 IOS firewall feature set.</SPAN></FONT></DIV> <DIV><FONT face=3DArial size=3D2><SPAN=20 class=3D958582017-16012002></SPAN></FONT> </DIV> <DIV><FONT face=3DArial size=3D2><SPAN = class=3D958582017-16012002>I would like to=20 implement this on 6500 switches also using layer 3 switching so = inspection=20 can be done on switches and not on fw nic.</SPAN></FONT></DIV> <DIV><FONT face=3DArial size=3D2><SPAN class=3D958582017-16012002>We = primarily would=20 like to reduce unessesary internal to internal = traffic.</SPAN></FONT></DIV> <DIV><FONT face=3DArial size=3D2><SPAN=20 class=3D958582017-16012002></SPAN></FONT> </DIV> <DIV><FONT face=3DArial size=3D2><SPAN class=3D958582017-16012002>We = will use the=20 Cisco Policy Manager version 3 which appears to be similar to the FW-1 = GUI and=20 not commandline.</SPAN></FONT></DIV> <DIV><FONT face=3DArial size=3D2><SPAN=20 class=3D958582017-16012002></SPAN></FONT> </DIV> <DIV><FONT face=3DArial size=3D2><SPAN class=3D958582017-16012002>There = doesn't appear=20 to be many people using the IOS firewall feature set and it appears = quite apt=20 and manageable.</SPAN></FONT></DIV> <DIV><FONT face=3DArial size=3D2><SPAN class=3D958582017-16012002>I am = aware of the=20 TCP\UDP only inspection limitation of CBAC.</SPAN></FONT></DIV> <DIV><FONT face=3DArial size=3D2><SPAN=20 class=3D958582017-16012002></SPAN></FONT> </DIV> <DIV><FONT face=3DArial size=3D2><SPAN class=3D958582017-16012002><SPAN=20 class=3D958582017-16012002>Does anyone used the IOS firewall in = production and can=20 give advice</SPAN><FONT face=3DArial size=3D2><SPAN=20 class=3D958582017-16012002>?</SPAN></FONT></SPAN></FONT></DIV> <DIV><FONT face=3DArial size=3D2><SPAN class=3D958582017-16012002><FONT = face=3DArial=20 size=3D2><SPAN class=3D958582017-16012002>Are there any peformance=20 comparisons?</SPAN></FONT></SPAN></FONT></DIV> <DIV><FONT face=3DArial size=3D2><SPAN class=3D958582017-16012002><FONT = face=3DArial=20 size=3D2><SPAN = class=3D958582017-16012002></SPAN></FONT></SPAN></FONT> </DIV> <DIV><FONT face=3DArial size=3D2><SPAN class=3D958582017-16012002><FONT = face=3DArial=20 size=3D2><SPAN = class=3D958582017-16012002>Regards</SPAN></FONT></SPAN></FONT></DIV> <DIV><FONT face=3DArial size=3D2><SPAN class=3D958582017-16012002><FONT = face=3DArial=20 size=3D2><SPAN = class=3D958582017-16012002>Eric</SPAN></FONT></SPAN></FONT></DIV> <DIV><FONT face=3DArial size=3D2><SPAN=20 class=3D958582017-16012002></SPAN></FONT> </DIV> <P style=3D"MARGIN-TOP: 0px; MARGIN-BOTTOM: 0px" align=3Dleft><FONT=20 face=3D"Times New Roman" size=3D2></FONT></P><FONT face=3DArial = size=3D2></FONT> <DIV><FONT face=3D"Times New Roman" size=3D2></FONT> </DIV> <DIV><FONT face=3D"Times New Roman" size=3D2></FONT> </DIV> <DIV><FONT face=3D"Times New Roman" size=3D2>*** Disclaimer: The = information in this=20 email is confidential and is intended solely for the addressee(s). = Access to=20 this email by anyone else is unauthorised. If you are not an intended = recipient,=20 you must not read, forward, print, use or disseminate the information = contained=20 in the email. Any representations (contractual or otherwise), views or = opinions=20 presented are solely those of the author and do not necessarily = represent those=20 of the employer or any of its affiliates.</FONT></DIV> <DIV> </DIV></BODY></HTML> ------_=_NextPart_001_01C19EC2.2769D4B5-- --__--__-- Message: 3 Subject: SOCKS Question Date: Wed, 16 Jan 2002 14:48:30 -0500 From: "ZOERNER, KENNETH R, ALBAS" <[EMAIL PROTECTED]> To: <[EMAIL PROTECTED]> Does anybody out there know of a vendor who makes a SOCKS V5 compliant = firewall appliance? Short of that, what software vendors sell SOCKS V5 = server? Thanks. Kenneth R. Zoerner AT&T Labs Firewall Development M, T, Th, F (847) 407-7609 W (847) 516-8630 Cell: (847) 226-7480 [EMAIL PROTECTED] Fax: (847) 407-7941 Pager: 1-888-858-7243 Pin: 116327 or [EMAIL PROTECTED] --__--__-- Message: 4 From: "Maung, Than Contractor" <[EMAIL PROTECTED]> To: [EMAIL PROTECTED] Subject: CISCO VPN Date: Wed, 16 Jan 2002 15:48:43 -0500 This message is in MIME format. Since your mail reader does not understand this format, some or all of this message may not be legible. ------_=_NextPart_001_01C19ECF.2F5D0A10 Content-Type: text/plain; charset="iso-8859-1" I'm trying to set up a Cisco VPN 3000 box using NT domain authentication and having some problems. Problem 1. When I configured PPTP encryption required on the VPN box, I will get an 691 error User name/ password wrong message. (I'm using a 95 laptop and Microsoft VPN). If I configure PPTP encryption not required on the VPN box I can connect fine. Problem 2. If I select "required data encryption" on the Microsoft VPN client configuration I will get "742 error, encryption method not supported". I have both 40 and 128 bits enabled on the VPN box. Thanks Than M Maung ------_=_NextPart_001_01C19ECF.2F5D0A10 Content-Type: text/html; charset="iso-8859-1" Content-Transfer-Encoding: quoted-printable <!DOCTYPE HTML PUBLIC "-//W3C//DTD HTML 3.2//EN"> <HTML> <HEAD> <META HTTP-EQUIV=3D"Content-Type" CONTENT=3D"text/html; = charset=3Diso-8859-1"> <META NAME=3D"Generator" CONTENT=3D"MS Exchange Server version = 5.5.2653.12"> <TITLE>CISCO VPN</TITLE> </HEAD> <BODY> <P><FONT SIZE=3D2 FACE=3D"Arial">I'm trying to set up a Cisco VPN 3000 = box using NT domain authentication and having some problems. </FONT> </P> <P><FONT SIZE=3D2 FACE=3D"Arial">Problem 1.</FONT> </P> <P><FONT SIZE=3D2 FACE=3D"Arial">When I configured PPTP encryption = required on the VPN box, I will get an 691 error User name/ password = wrong message. (I'm using a 95 laptop and Microsoft VPN). If I = configure PPTP encryption not required on the VPN box I can connect = fine.</FONT></P> <P><FONT SIZE=3D2 FACE=3D"Arial">Problem 2.</FONT> </P> <P><FONT SIZE=3D2 FACE=3D"Arial">If I select "required data = encryption" on the Microsoft VPN client configuration I will get = "742 error, encryption method not supported". I have both 40 = and 128 bits enabled on the VPN box.</FONT></P> <P><FONT SIZE=3D2 FACE=3D"Arial">Thanks</FONT> </P> <P><FONT SIZE=3D2 FACE=3D"Arial">Than M Maung</FONT> </P> </BODY> </HTML> ------_=_NextPart_001_01C19ECF.2F5D0A10-- --__--__-- Message: 5 Subject: RE: Question Date: Wed, 16 Jan 2002 13:59:09 -0600 From: "Steve Smith" <[EMAIL PROTECTED]> To: "Mike Fetherston" <[EMAIL PROTECTED]>, "Network Operations" <[EMAIL PROTECTED]>, <[EMAIL PROTECTED]> Come on now, we have our networks covered by a PII with XP as the firewall. Works great! -----Original Message----- From: Mike Fetherston [mailto:[EMAIL PROTECTED]] Sent: Wednesday, January 16, 2002 1:43 PM To: Network Operations; [EMAIL PROTECTED] Subject: Re: Question yeah, i just about choked when i read that. ----- Original Message -----=20 From: "Network Operations" <[EMAIL PROTECTED]> To: <[EMAIL PROTECTED]> Sent: Wednesday, January 16, 2002 2:05 PM Subject: RE: Question ROFL, Thats almost as funny as that "Your son is a computer hacker piece".... cheers.. >>> Dan McGinn-Combs <[EMAIL PROTECTED]> 01/16 10:45 AM >>> stop! don't move! don't spend! XP has a built in firewall!!! check it out! Dan -----Original Message----- From: Jamie [mailto:[EMAIL PROTECTED]]=20 Sent: Wednesday, January 16, 2002 10:10 AM To: [EMAIL PROTECTED]=20 Subject: Question I'm looking for a firewall for a personal computer using XP, any suggestions. =20 Please advise _______________________________________________ Firewalls mailing list [EMAIL PROTECTED] http://lists.gnac.net/mailman/listinfo/firewalls _______________________________________________ Firewalls mailing list [EMAIL PROTECTED] http://lists.gnac.net/mailman/listinfo/firewalls --__--__-- Message: 6 From: "Clark, Steve" <[EMAIL PROTECTED]> To: "'[EMAIL PROTECTED]'" <[EMAIL PROTECTED]> Subject: RE: Question Date: Wed, 16 Jan 2002 15:14:53 -0500 ZoneAlarm Pro if you want software based Netscreen 5 for hardware based. My preference Steve Clark Clark Systems Support, LLC AVIEN Charter Member "Who's watching your network?" www.clarksupport.com 301-610-9584 voice 240-465-0323 Efax =A0 The data furnished in connection with this document is deemed by Clark Systems Support, LLC., to contain proprietary and privileged = information and shall not be disclosed or used for the benefit of others without the = prior written permission of Clark Systems Support, LLC. -----Original Message----- From: Mike Fetherston [mailto:[EMAIL PROTECTED]]=20 Sent: Wednesday, January 16, 2002 2:43 PM To: Network Operations; [EMAIL PROTECTED] Subject: Re: Question yeah, i just about choked when i read that. ----- Original Message -----=20 From: "Network Operations" <[EMAIL PROTECTED]> To: <[EMAIL PROTECTED]> Sent: Wednesday, January 16, 2002 2:05 PM Subject: RE: Question ROFL, Thats almost as funny as that "Your son is a computer hacker piece".... cheers.. >>> Dan McGinn-Combs <[EMAIL PROTECTED]> 01/16 10:45 AM >>> stop! don't move! don't spend! XP has a built in firewall!!! check it out! Dan -----Original Message----- From: Jamie [mailto:[EMAIL PROTECTED]]=20 Sent: Wednesday, January 16, 2002 10:10 AM To: [EMAIL PROTECTED]=20 Subject: Question I'm looking for a firewall for a personal computer using XP, any suggestions. =20 Please advise _______________________________________________ Firewalls mailing list [EMAIL PROTECTED] http://lists.gnac.net/mailman/listinfo/firewalls _______________________________________________ Firewalls mailing list [EMAIL PROTECTED] http://lists.gnac.net/mailman/listinfo/firewalls --__--__-- Message: 7 Date: Wed, 16 Jan 2002 16:35:37 -0500 (EST) From: Paul Robertson <[EMAIL PROTECTED]> To: Dan McGinn-Combs <[EMAIL PROTECTED]> Cc: <[EMAIL PROTECTED]> Subject: RE: Question On Wed, 16 Jan 2002, Dan McGinn-Combs wrote: > stop! don't move! don't spend! > XP has a built in firewall!!! > check it out! > Dan Which doesn't filter broadcasts if I recall correctly... Paul ----------------------------------------------------------------------------- Paul D. Robertson "My statements in this message are personal opinions [EMAIL PROTECTED] which may have no basis whatsoever in fact." --__--__-- Message: 8 From: "Janbaz Qamar" <[EMAIL PROTECTED]> To: [EMAIL PROTECTED], [EMAIL PROTECTED] Subject: RE: How to Block Morpheus, Napster, etc. (Adam Mead) Date: Wed, 16 Jan 2002 21:58:01 +0000 <html><div style='background-color:'><DIV> <P>This shouldn't be an issue for an ALG firewall where all the 65000+ ports are marked closed by default and you open ports only as they are needed. Checkout SecurIT Firewall, formerly known as Blackhole.</P> <P>Cheers</P> <P>Janbaz<BR><BR></P></DIV> <DIV></DIV> <DIV></DIV>>From: Egdares Futch <[EMAIL PROTECTED]> <DIV></DIV>>To: [EMAIL PROTECTED] <DIV></DIV>>Subject: RE: How to Block Morpheus, Napster, etc. (Adam Mead) <DIV></DIV>>Date: Tue, 15 Jan 2002 20:30:09 -0800 (PST) <DIV></DIV>> <DIV></DIV>>I have blocked Kazzaa/Morpheus by blocking port 1214 <DIV></DIV>>both inbound and outbound. It is incredible how much <DIV></DIV>>bandwidth these things eat...but using traffic shaping <DIV></DIV>>on CISCOs one can manage it. <DIV></DIV>> <DIV></DIV>>Hope this helps, <DIV></DIV>> <DIV></DIV>>Egdares Futch <DIV></DIV>> <DIV></DIV>>__________________________________________________ <DIV></DIV>>Do You Yahoo!? <DIV></DIV>>Send FREE video emails in Yahoo! Mail! <DIV></DIV>>http://promo.yahoo.com/videomail/ <DIV></DIV>>_______________________________________________ <DIV></DIV>>Firewalls mailing list <DIV></DIV>>[EMAIL PROTECTED] <DIV></DIV>>http://lists.gnac.net/mailman/listinfo/firewalls <DIV></DIV></div><br clear=all><hr>MSN Photos is the easiest way to share and print your photos: <a href='http://go.msn.com/bql/hmtag3_etl_EN.asp'>Click Here</a><br></html> --__--__-- Message: 9 From: "Florian Hobelsberger / BlueScreen" <[EMAIL PROTECTED]> To: "Devdas Bhagat" <[EMAIL PROTECTED]> Cc: "Firewall" <[EMAIL PROTECTED]> Subject: Re: How to test a firewall. Date: Wed, 16 Jan 2002 23:49:52 +0100 I didn't check all of these links, http://security.norton.com/default.asp?productid=symhome&langid=de&venid=sym http://www.dslreports.com/tools (quite large as far as i know) http://scan.sygatetech.com/ so it could be that not all of them still work. Good luck and have fun :) Mostly these are just some kind of portscanners. ------------------------------------------------------- BlueScreen / Florian Hobelsberger (UIN: 101782087) Member of: www.IT-Checkpoint.net www.Hackeinsteiger.de www.NGSecurity.de www.DvLdW.de.vu F�r Fragen im Bereich Datensicherheit wenden Sie sich bitte an: www.Hackeinsteiger-Board.de www.Securitypoint-board.de.vu ================================================================== This email and any files transmitted with it are confidential and intended solely for the use of the individual or entity to whom they are addressed. Forwarding this E-Mail or parts of information out of it is strictly forbidden - legal actions may be taken. If you are not the intended recipient or the person responsible for delivering to the intended recipient, be advised that you have received this email in error and that any use of the information contained within this email or attachments is strictly prohibited. Internet communications are not secure and BlueScreen/Florian Hobelsberger does not accept any legal responsibility for the content of this message. Any opinions expressed in the email are those of the individual and not necessarily those of the Company. If you have received this email in error, or if you are concerned with the content of this email please notify the Sender by telephone on +49 (0)162 337 98 40. ================================================================== To encrypt classified messages, please use this PGP-Key: -----BEGIN PGP PUBLIC KEY BLOCK----- mQGiBDoSjNYRBADwxmFyGCYJVVwoYx6jh69D7Kbu5vLmLGz4LqW7ukFa5YhsdQ2g hqw7iH4FL7UXSyvnQR2O+avrZtn6JgiLr9YvEBuGR4KwmNHzNAdWt1ftPqL/4932 K20XOfzewatJf23gpzpxQ6q7qqN0XKW9zvmBpJqNNosOBbj/Q4257Dao1QCg/9lI 77kKxR9HkiFnFWstiQ/tfOUD/jLogwExYHYYhqKoLG7Pgv+K1+64LXHrwiU53udP PyIBLMx+/nD11dT9GcgH8BKqqYNIewBtTUfe4TzNqdmyOHkGzSk/uWagopXVAWYe lwrFjHSbL5Hgkyuxu26O5UzJeIM74X2lTpXMS2Xeas5/9OGCEZEcrgLzcpwup/Ww L4jCA/9ScTZ7hJlLAF8SsmKtG06UpTLhbHj2JHLYpuS9okcW+tf7KIoc1BytqJyX VwTB3dCZQHzlCBd515k/9n+G2IWmUhh4FWyIOcf9pUPvrrxg6cUMs2C9p5pan0dW huCCXtqOo/ii8QShwJ1Z2QgclNqa7NU9zKWKLAvdEhlzCtofBLRELT1CbHVlU2Ny ZWVuPS0gLyBGbG9yaWFuIEhvYmVsc2JlcmdlciAoMjkuMTEuMjAwMSkgPE11bmlj aEFDQGdteC5kZT6JAFgEEBECABgFAjoSjNYICwMJCAcCAQoCGQEFGwMAAAAACgkQ lZAUaM5lFc7p+QCgwueO8h1r+tePys2abqKrpYTJNTcAmwcgd0zQ5pS9pWf6qqIs WlET5qgluQQNBDoSjNYQEAD5GKB+WgZhekOQldwFbIeG7GHszUUfDtjgo3nGydx6 C6zkP+NGlLYwSlPXfAIWSIC1FeUpmamfB3TT/+OhxZYgTphluNgN7hBdq7YXHFHY UMoiV0MpvpXoVis4eFwL2/hMTdXjqkbM+84X6CqdFGHjhKlP0YOEqHm274+nQ0YI xswdd1ckOErixPDojhNnl06SE2H22+slDhf99pj3yHx5sHIdOHX79sFzxIMRJitD YMPj6NYK/aEoJguuqa6zZQ+iAFMBoHzWq6MSHvoPKs4fdIRPyvMX86RA6dfSd7ZC LQI2wSbLaF6dfJgJCo1+Le3kXXn11JJPmxiO/CqnS3wy9kJXtwh/CBdyorrWqULz Bej5UxE5T7bxbrlLOCDaAadWoxTpj0BV89AHxstDqZSt90xkhkn4DIO9ZekX1KHT UPj1WV/cdlJPPT2N286Z4VeSWc39uK50T8X8dryDxUcwYc58yWb/Ffm7/ZFexwGq 01uejaClcjrUGvC/RgBYK+X0iP1YTknbzSC0neSRBzZrM2w4DUUdD3yIsxx8Wy2O 9vPJI8BD8KVbGI2Ou1WMuF040zT9fBdXQ6MdGGzeMyEstSr/POGxKUAYEY18hKcK ctaGxAMZyAcpesqVDNmWn6vQClCbAkbTCD1mpF1Bn5x8vYlLIhkmuquiXsNV6z3W FwACAhAAyeDU/CZegfCp3VmSKfIorYKjbtvSpriZ3KMmD9Qp9GlxwxJOQWUuqtPT WMJnBwXgYKW34jvSw5gDBByOrzHyqolaKvqjG6QXenWcAt2Z5KkIUEFBHrFxUSr4 gwCexwLW1NxGILE6j4O1ZpWj5BJQTqZZpJzJarnzv2cXof0VK8SJodEEu21VHzxP yvU2FTmwsPU5fs+6mppkPdZgb0cqmNTVqak0xyfZzPd4lLOEZIuauOoruTE0a6XV AEx/ns5uY/U16FNq1WNaeJIulGZZNLT5DXwpGPqxm05XRineI8U2mgw+1KVGOnXM 1YfFAIjkpwy9zjjT752m3KNLe3wiWjF+SeH9USCm9KtQZHYQn6jB1hY67rKT2m8p G1qBdbb2sZJCJRlROCe4W/vxevRe7TGdYaNy/hvV7i4OMl/pmeRnKqTpdLLP0Nah 2Cqa7+ddKdwdVtGxzowqKtQOzLF3wnXoixHtKtK8AG2gEa74rsuUamt6alnkFxKQ SsaufCEa6aw/ttJHSEX9HHsbsJ+nmp2RRB+K8Eawln2LZliMb9xnZa3OGMwvkJCU ZyGurrezM8MKGID5PsvV0z/jXP4yhy+Y0szYks2xbq6yAxa86D3LH/AC++l1tV6s iw49duIvnFrlTPzY5qF8P0ywxVbSnXHl+TrVPUsWV8Z4L0mPA4uJAEwEGBECAAwF AjoSjNYFGwwAAAAACgkQlZAUaM5lFc537wCgrEO460bbrm220zd9Mn9Nv/IB9LcA oNeYVeRb2JfeQJkMwu7bfaCqEuoz =Vkyz -----END PGP PUBLIC KEY BLOCK----- ----- Original Message ----- From: "Devdas Bhagat" <[EMAIL PROTECTED]> To: "Vishal Mukherjee" <[EMAIL PROTECTED]> Cc: "Firewall" <[EMAIL PROTECTED]> Sent: Wednesday, January 16, 2002 10:51 AM Subject: Re: How to test a firewall. > On 16/01/02 14:34 +0530, Vishal Mukherjee wrote: > > I have installed a software firewall. > > Any site to check how secure the firewall is. > > with http://grc.com it shows all the port as closed. > Scan your firewall from a machine outside your trusted network using > nmap. > Repeat from the trusted network. > > I suggest using lots of nmap options for thorough testing. > > Devdas Bhagat > _______________________________________________ > Firewalls mailing list > [EMAIL PROTECTED] > http://lists.gnac.net/mailman/listinfo/firewalls > --__--__-- Message: 10 From: "Ben Nagy" <[EMAIL PROTECTED]> To: "'ZOERNER, KENNETH R, ALBAS'" <[EMAIL PROTECTED]>, <[EMAIL PROTECTED]> Subject: RE: SOCKS Question Date: Thu, 17 Jan 2002 10:18:57 +1030 The NAI "e-ppliance" (Gauntlet) supports SOCKS. I've never been interested enough to remember which versions though. Cheers, -- Ben Nagy Network Security Specialist Mb: +61 414 411 520 PGP Key ID: 0x1A86E304 > -----Original Message----- > From: [EMAIL PROTECTED] > [mailto:[EMAIL PROTECTED]] On Behalf Of ZOERNER, > KENNETH R, ALBAS > Sent: Thursday, January 17, 2002 6:19 AM > To: [EMAIL PROTECTED] > Subject: SOCKS Question > > > Does anybody out there know of a vendor who makes a SOCKS V5 > compliant firewall appliance? Short of that, what software > vendors sell SOCKS V5 server? > > Thanks. > > Kenneth R. Zoerner [...] --__--__-- Message: 11 From: Peter Merrick <[EMAIL PROTECTED]> To: "'ZOERNER, KENNETH R, ALBAS'" <[EMAIL PROTECTED]>, "'[EMAIL PROTECTED]'" <[EMAIL PROTECTED]> Subject: RE: SOCKS Question Date: Thu, 17 Jan 2002 11:25:13 +1100 Hi Kenneth Not 100% sure about SOCKS complianty firewall appliances, but the Permeo e-border products (http://www.permeo.com/products/products.htm) may meet some of your needs. Alternatively, (not an appliance) the IBM Secureway firewall product supports tcp and udp apps through socks v5 (http://www-4.ibm.com/software/security/firewall/). Cheers, Pete Merrick -----Original Message----- From: ZOERNER, KENNETH R, ALBAS [mailto:[EMAIL PROTECTED]] Sent: Thursday, 17 January 2002 06:49 To: [EMAIL PROTECTED] Subject: SOCKS Question Does anybody out there know of a vendor who makes a SOCKS V5 compliant firewall appliance? Short of that, what software vendors sell SOCKS V5 server? Thanks. Kenneth R. Zoerner AT&T Labs Firewall Development M, T, Th, F (847) 407-7609 W (847) 516-8630 Cell: (847) 226-7480 [EMAIL PROTECTED] Fax: (847) 407-7941 Pager: 1-888-858-7243 Pin: 116327 or [EMAIL PROTECTED] _______________________________________________ Firewalls mailing list [EMAIL PROTECTED] http://lists.gnac.net/mailman/listinfo/firewalls --__--__-- _______________________________________________ Firewalls mailing list [EMAIL PROTECTED] http://lists.gnac.net/mailman/listinfo/firewalls End of Firewalls Digest ************************************************************ Omaha World-Herald Company computer systems are for business use only. This e-mail was scanned by MailSweeper ************************************************************ _______________________________________________ Firewalls mailing list [EMAIL PROTECTED] http://lists.gnac.net/mailman/listinfo/firewalls
