LinuxQuestions.org
Latest LQ Deal: Latest LQ Deals
Home Forums Tutorials Articles Register
Go Back   LinuxQuestions.org > Forums > Linux Forums > Linux - General
Reload this Page firewall traffic simulation
User Name
Password
Linux - General This Linux forum is for general Linux questions and discussion.
If it is Linux Related and doesn't seem to fit in any other forum then this is the place.

Notices


Reply
  Search this Thread
Old 01-31-2006, 10:14 AM   #1
props666999
Member
 
Registered: Oct 2003
Location: Greece
Posts: 260

Rep: Reputation: 30
firewall traffic simulation

Hello

I need to demonstrate my firewall script to my supervisor. Unfortunately there is no Internet connection at my supervisor's office. Moreover the
Iptables script assumes the usual eth0( ISP) and 2 clients( LAN). My laptop has just eth0 and threfore will be no connected to any other clients.

My question is : Is there a way to demonstrate the functionality(SNAT,DNAT etc) of this script somehow ?

Kind regards
 
Old 02-01-2006, 06:59 PM   #2
gilead
Senior Member
 
Registered: Dec 2005
Location: Brisbane, Australia
Distribution: Slackware64 14.0
Posts: 4,141

Rep: Reputation: 168Reputation: 168
Not without changing the script around - and that breaks the validity of the test (I'm not including the possibility of lugging your PC to your supervisor's office). Where did you develop the script initially? Do you have a test network or a window of time that you can use the production network?

Tools like nmap and hping (even telnet and a web browser) can be used to demonstrate connectivity. You can also use ethereal (or tcpdump) to show the packet traffic.
 
Old 02-01-2006, 07:29 PM   #3
props666999
Member
 
Registered: Oct 2003
Location: Greece
Posts: 260

Original Poster
Rep: Reputation: 30
Thanks gilead for the reply

my script assumes many things BUT i have concluded that using the nmap i will attack my loopback
the nmap reports inability to send packets( good) and the syslog many entries of attack. Not the best thing but how to test a firewall without being connected to other clients?
 
Old 02-02-2006, 02:49 AM   #4
gilead
Senior Member
 
Registered: Dec 2005
Location: Brisbane, Australia
Distribution: Slackware64 14.0
Posts: 4,141

Rep: Reputation: 168Reputation: 168
You really need to test in an environment as close to production as possible. There's a good chance you'll miss something if you try testing without connectivity to other hosts.
 
  


Reply



Posting Rules
You may not post new threads
You may not post replies
You may not post attachments
You may not edit your posts
BB code is On
Smilies are On
[IMG] code is On
HTML code is Off


Similar Threads
Thread Thread Starter Forum Replies Last Post
Proxy traffic through firewall syd2001 Linux - Security 3 11-18-2005 01:43 AM
What is the best way to log traffic trough firewall? G-Fox Linux - Networking 3 05-04-2005 01:55 PM
Traffic still going pass Firewall extremebfn Linux - Networking 1 10-04-2004 01:43 AM
firewall and traffic Vladix Linux - Networking 0 07-15-2003 12:20 PM
firewall traffic blocking help jaylee Linux - Security 8 06-30-2003 10:44 AM

LinuxQuestions.org > Forums > Linux Forums > Linux - General

All times are GMT -5. The time now is 06:57 PM.

Contact Us - Advertising Info - Rules - Privacy - LQ Merchandise - Donations - Contributing Member - LQ Sitemap -
Main Menu
Advertisement
My LQ
Write for LQ
LinuxQuestions.org is looking for people interested in writing Editorials, Articles, Reviews, and more. If you'd like to contribute content, let us know.
Main Menu
Syndicate
RSS1  Latest Threads
RSS1  LQ News
Twitter: @linuxquestions
Open Source Consulting | Domain Registration