I'm glad you had the exact link. I have to say that the Beta I saw was impressive in the amount of data it reported. If I were auditing firewalls with large rule sets I would definitely want it as a tool.
BTW, at my prior company we had a VPN connection with Fortune 100 business partner with over 900 Check Point rules. Took about 1/2 hour to load his policy if he needed to change anything. Adam ----- Original Message ----- From: "Avishai Wool" <[EMAIL PROTECTED]> To: "Adam Safier" <[EMAIL PROTECTED]>; <[EMAIL PROTECTED]>; "Fredy Santana" <[EMAIL PROTECTED]> Sent: Thursday, March 21, 2002 6:13 PM Subject: Re: Firewall rules analisis > Fredy, > > The tool Adam refers to is now called the Lumeta Firewall Analyzer (LFA). > http://www.lumeta.com/firewall.html > Lumeta spun out of Bell Labs - Lucent in 2000. The LFA report will show you > exactly which services your FW-1 firewall is letting in, without reverting > to probing the firewall with scanners like nmap. In fact, no packets will > hit your firewall at all - the analysis is offline. > > Oh, and 79 FW-1 rules is respectable but not huge. I've seen LFA reports > on FW-1 firewalls with hundreds of rules and thousands of objects. > > And you can have the analysis run for you using secure email, it doesn't > matter whether you are in New Jersey or in Santiago de Chile. > > Avishai > > Disclaimer: LFA was built around my research in Bell Labs, so I'm biased. > > > --- Adam Safier <[EMAIL PROTECTED]> wrote: > > Check with Lucent. A while back they were working on a product that > > expanded and reformated the rules and gave some interesting views. Sorry I > > don't have more on it - I only got a sneak peek at a beta tester. > > > > Adam > > > > > > ----- Original Message ----- > > From: "Fredy Santana" <[EMAIL PROTECTED]> > > To: <[EMAIL PROTECTED]> > > Sent: Thursday, March 21, 2002 2:13 PM > > Subject: Firewall rules analisis > > > > > > > Hi Everybody: > > > > > > I'm analizing a firewall-1 rulebase of 79 rules. Maybe you're thinkin I'm > > > driving crazy wich is certainly true. Does anybody know some method to > > > analize the rules of a firewall-1 or in general a huge firewall rulebase? > > > > > > I'm trying to find, by example, which services are allowed from internet > > > to internal network or which machines are visible from internet... things > > > like that. > > > > > > I hope your help > > > > > > Regards from Chile > > > Fredy R. Santana V. > > > Ingeniero Civil El�ctrico - CCSA - CCDA > > > Orion 2000 - Servicios Profesionales en Seguridad Inform�tica > > > La Concepcion 322 piso 12, Providencia. > > > Santiago, Chile > > > Fono: 56-2-6403944, Fax: 56-2-6403990 > > > e-mail: [EMAIL PROTECTED] > > > http://www.orion.cl > > > > > > > > > _______________________________________________ > > > Firewalls mailing list > > > [EMAIL PROTECTED] > > > http://lists.gnac.net/mailman/listinfo/firewalls > > > > > _______________________________________________ > > Firewalls mailing list > > [EMAIL PROTECTED] > > http://lists.gnac.net/mailman/listinfo/firewalls > > > ===== > Avishai Wool, Ph.D., Chief Scientist & Co-Founder, Lumeta Corp. > http://research.lumeta.com/yash/ http://www.eng.tau.ac.il/~yash > [EMAIL PROTECTED] Tel: +972-3-640-7206 Fax: +972-3-640-7095 > ** Want to audit or debug your firewall's policy? ** > Lumeta Firewall Analyzer: http://www.lumeta.com/firewall.html > > __________________________________________________ > Do You Yahoo!? > Yahoo! Movies - coverage of the 74th Academy Awards� > http://movies.yahoo.com/ > _______________________________________________ > Firewalls mailing list > [EMAIL PROTECTED] > http://lists.gnac.net/mailman/listinfo/firewalls > _______________________________________________ Firewalls mailing list [EMAIL PROTECTED] http://lists.gnac.net/mailman/listinfo/firewalls
