At 22:44 1/30/95, Tim Keanini wrote:
>HELO everyone,
>
>I went to Brent's tutorial on Firewalls and I really got a lot out of
>it. I had done a lot of homework prior to the tutorial and that
>helped.
Thanks!
>The reason that I am finally posting to this list is because I want to
>check if such a tool exist. Here is my project.
>
>I am going to get a choke router and setup a BSD box on the clean and
>dirty side of it.
>
>The BSD box would straddle the choke router and it could pound on it
>from the dirty side to see what can get in.
>One could build a test suite that could implement the policy.
>One could build a test matrix that you could use over as a template.
>
>I would write the tool in PERL for starters so that I get it done :-)
Yahoo!! I've been waiting for somebody to tackle this project; I think
such a tool could be very useful.
One suggestion: use tcpdump on the receiving side (probably running under a
perl process to monitor its output) so that you can monitor _everything_
that comes through the choke.
Good luck!
-Brent
--
== For info about the Internet Security Firewalls Tutorial and a schedule ==
== of upcoming dates, please send email to Tutorial-Info @
GreatCircle .
COM ==
==============================================================================
== Brent Chapman Great Circle Associates ==
== Brent @
GreatCircle .
COM 1057 West Dana Street ==
== +1 415 962 0841 Mountain View, CA 94041 ==
Follow-Ups:
|
|
