Is there any tool which can help us compare the results of the two scan results - One is a scan from outside the firewall and one is from inside, this could give us an idea of how good the firewall is?
---------------------------------------------- To have known the best, and to have known it for the best, is success in life. -----Original Message----- From: [EMAIL PROTECTED] [mailto:[EMAIL PROTECTED] On Behalf Of Dan Bowman Sent: Wednesday, March 23, 2005 6:48 AM To: [EMAIL PROTECTED]; Nessus Subject: Re: Scan a subnet behind a firewall Rick, Hugo is correct, I have this question from customers all the time and from personal experience prior to working for Tenable and what I see on a weekly basis now, scanning through a firewall gives you less than desirable results. The scans will yield inconsistent results, hosts may disappear and reappear in subsequent scans, vulns will be missed, ports may be reported as open that are not, others closed, scanning is nearly useless if you don't control the firewall and it's pretty ugly even when you do. You can use Nessus to perform detached scans which will likely best suit your needs. If you only have Windows systems on the other side of your network, you may want to try downloading our Windows based scanner, NeWT which uses the same plugins as Nessus and is worked on by the same developers. In the complimentary version (free of charge) it is able to scan the local class C network it resides on. If you can remote to any of your systems on the other side of that firewall, you could run the scans and pull the results. See here for the download page: http://www.tenablesecurity.com/products/newt.shtml Scroll down to the request link. Regards, -- Dan Daniel Bowman Director of Support & QA Tenable Network Security mailto:[EMAIL PROTECTED] ----- Original Message ----- From: "Rick Eagles" <[EMAIL PROTECTED]> To: "Nessus" <[email protected]> Sent: Tuesday, March 22, 2005 11:49 PM Subject: Scan a subnet behind a firewall > hello everyone! > > I want to scan a subnet behind a firewall in another location, but I > cannot shutdown the firewall,I am the administrator of the subnet but not > the firewall's. > > How can I scan my computers? > > I want to open a socks5 proxy server on the firewall and let nessus scan > them through socks5 proxy, it will be OK? > > Thanks in advance for any help provided. > and I am sorry for my poor English. > > Rick > [EMAIL PROTECTED] > 2005-03-23 >----------------------------------------------------------------------- ---- > _______________________________________________ > Nessus mailing list > [email protected] > http://mail.nessus.org/mailman/listinfo/nessus _______________________________________________ Nessus mailing list [email protected] http://mail.nessus.org/mailman/listinfo/nessus _______________________________________________ Nessus mailing list [email protected] http://mail.nessus.org/mailman/listinfo/nessus
