Fredy, The tool Adam refers to is now called the Lumeta Firewall Analyzer (LFA). http://www.lumeta.com/firewall.html Lumeta spun out of Bell Labs - Lucent in 2000. The LFA report will show you exactly which services your FW-1 firewall is letting in, without reverting to probing the firewall with scanners like nmap. In fact, no packets will hit your firewall at all - the analysis is offline.
Oh, and 79 FW-1 rules is respectable but not huge. I've seen LFA reports on FW-1 firewalls with hundreds of rules and thousands of objects. And you can have the analysis run for you using secure email, it doesn't matter whether you are in New Jersey or in Santiago de Chile. Avishai Disclaimer: LFA was built around my research in Bell Labs, so I'm biased. --- Adam Safier <[EMAIL PROTECTED]> wrote: > Check with Lucent. A while back they were working on a product that > expanded and reformated the rules and gave some interesting views. Sorry I > don't have more on it - I only got a sneak peek at a beta tester. > > Adam > > > ----- Original Message ----- > From: "Fredy Santana" <[EMAIL PROTECTED]> > To: <[EMAIL PROTECTED]> > Sent: Thursday, March 21, 2002 2:13 PM > Subject: Firewall rules analisis > > > > Hi Everybody: > > > > I'm analizing a firewall-1 rulebase of 79 rules. Maybe you're thinkin I'm > > driving crazy wich is certainly true. Does anybody know some method to > > analize the rules of a firewall-1 or in general a huge firewall rulebase? > > > > I'm trying to find, by example, which services are allowed from internet > > to internal network or which machines are visible from internet... things > > like that. > > > > I hope your help > > > > Regards from Chile > > Fredy R. Santana V. > > Ingeniero Civil El�ctrico - CCSA - CCDA > > Orion 2000 - Servicios Profesionales en Seguridad Inform�tica > > La Concepcion 322 piso 12, Providencia. > > Santiago, Chile > > Fono: 56-2-6403944, Fax: 56-2-6403990 > > e-mail: [EMAIL PROTECTED] > > http://www.orion.cl > > > > > > _______________________________________________ > > Firewalls mailing list > > [EMAIL PROTECTED] > > http://lists.gnac.net/mailman/listinfo/firewalls > > > _______________________________________________ > Firewalls mailing list > [EMAIL PROTECTED] > http://lists.gnac.net/mailman/listinfo/firewalls ===== Avishai Wool, Ph.D., Chief Scientist & Co-Founder, Lumeta Corp. http://research.lumeta.com/yash/ http://www.eng.tau.ac.il/~yash [EMAIL PROTECTED] Tel: +972-3-640-7206 Fax: +972-3-640-7095 ** Want to audit or debug your firewall's policy? ** Lumeta Firewall Analyzer: http://www.lumeta.com/firewall.html __________________________________________________ Do You Yahoo!? Yahoo! Movies - coverage of the 74th Academy Awards� http://movies.yahoo.com/ _______________________________________________ Firewalls mailing list [EMAIL PROTECTED] http://lists.gnac.net/mailman/listinfo/firewalls
