Network Security: Detailed info on RE: Strange entries in Cisco PIX 515e

Ethical Hacking

Learn to find vulnerabilities before the bad guys do! Gain real world hands on hacking experience in our state of the art hacking lab. Course designed and taught by expert instructors with years of penetration testing experience. 12 student maximum in every class. Certification attempt included in every package.

Computer Forensics Training at InfoSec Institute

Gain the in-demand skills of a certified computer examiner, learn to recover trace data left behind by fraud, theft, and cybercrime perpetrators. Discover the source of computer crime and abuse at your organization so that it never happens again. All of our class sizes are guaranteed to be 12 students or less to facilitate one-on-one interaction with one of our expert instructors.

Network Security Firewalls

[Top] [All Lists]

RE: Strange entries in Cisco PIX 515e

from [Matias Siri] Network Security

[Permanent Link]

Subject:	RE: Strange entries in Cisco PIX 515e
Date:	Tue, 3 Jan 2006 21:52:40 +0100

I would check if the access lists are applied to any of the interfaces:

 

sh access-group

 

  _____  

From: Compuoso [mailto:compuoso@gmail.com] 
Sent: Sunday, January 01, 2006 5:38 AM
To: firewalls@securityfocus.com
Subject: Strange entries in Cisco PIX 515e

 

Would someone please tell me the overall meaning and implications of the
following PIX command lines? I discovered them in our PIX 515e
configuration earlier this morning. I suspect that our corporate network
has been hacked. Thanks for your collective insight. 

 

nameif ethernet2 intf2 security4

 

access-list test permit udp host 172.17.7.10 any eq domain
access-list test permit udp any eq domain host 172.17.7.10
access-list test1 permit udp host 63.176.109.161 any eq domain
access-list test1 permit udp any eq domain host 63.176.109.161
access-list test1 permit udp any any eq domain
access-list test1 permit udp any eq domain any  

 

mtu intf2 1500

 

no ip address intf2

[More with this subject...]

<Prev in Thread]	Current Thread	[Next in Thread>
Strange entries in Cisco PIX 515e, Compuoso RE: Strange entries in Cisco PIX 515e, Chris Serafin Re: Strange entries in Cisco PIX 515e, Matt Ostiguy Re: Strange entries in Cisco PIX 515e, Compuoso RE: Strange entries in Cisco PIX 515e, David Gillett RE: Strange entries in Cisco PIX 515e, Wyatt, Jon RE: Strange entries in Cisco PIX 515e, Matias Siri <= RE: Strange entries in Cisco PIX 515e, Andrew Shore

Previous by Date:	Re: Strange entries in Cisco PIX 515e, Compuoso
Next by Date:	Re: Log analyzers, ajaykumar
Previous by Thread:	RE: Strange entries in Cisco PIX 515e, Wyatt, Jon
Next by Thread:	RE: Strange entries in Cisco PIX 515e, Andrew Shore
Indexes:	[Date] [Thread] [Top] [All Lists]