iptables testing program

metallica1973 · 04-28-2005, 07:32 PM

I have been constructing my IPTABLES firewall and I want to know if there were any programs out there to test my firewall and if there are any major flaws in it that need to be adjusted. Any Ideas?

macemoneta · 04-28-2005, 11:26 PM

metallica1973 · 04-29-2005, 03:55 PM

that is a program for port sniffing (scanner)! I am talking about maybe an external website designed to test yoiur firewall or a program!

win32sux · 04-29-2005, 03:58 PM

Quote:

Originally posted by dabeast93
that is a program for port sniffing (scanner)! I am talking about maybe an external website designed to test yoiur firewall or a program!

nmap is one of the most commonly used tools for testing iptables... but you say you want to test your programs now?? like, for security flaws?? try nessus then: http://www.nessus.org/

i'm not sure what kinda website you are looking for, but if it's the typical "scan your firewall" type of site, well, they usually don't do anything but port-scan anyways...

macemoneta · 04-29-2005, 04:02 PM

nmap is a program designed to test your firewall. Read the documentation. If you still think it is not a good match for your request, please provide more details on the functionality you require.

metallica1973 · 04-29-2005, 07:05 PM

thanks! I will use nmap to scan my ports and test out that website!

Question: Is it better to use nmap from a remote pc as opposed to my own personal pc?

macemoneta · 04-29-2005, 08:56 PM

It should be used from outside the firewall, preferably run as root so that it can use raw sockets and construct custom packets.

metallica1973 · 04-29-2005, 09:50 PM

Super! I will so!