Ethical Hacking

Learn to find vulnerabilities before the bad guys do! Gain real world hands on hacking experience in our state of the art hacking lab. Course designed and taught by expert instructors with years of penetration testing experience. 12 student maximum in every class. Certification attempt included in every package.
Computer Forensics Training at InfoSec Institute

Gain the in-demand skills of a certified computer examiner, learn to recover trace data left behind by fraud, theft, and cybercrime perpetrators. Discover the source of computer crime and abuse at your organization so that it never happens again. All of our class sizes are guaranteed to be 12 students or less to facilitate one-on-one interaction with one of our expert instructors.




Network Security Nessus-Users
[Top] [All Lists]
<prev [Date] next>
[Advanced]
 <prev [Thread] next>

Re: Nessus Scan against PIX ( Statefull firewalls )

from [Michel Arboi] Network Security [Permanent Link]
Subject: Re: Nessus Scan against PIX ( Statefull firewalls )
Date: Tue, 28 Aug 2007 15:26:39 +0200 
Le Tue, 28 Aug 2007 18:47:46 +0530,
"hariprasad hariprasad" <harryhouse@gmail.com> a écrit :


Nesssus scan on PIX firewalls


I'm not sure that this will be very useful. Anyway...


 " *The remote host is considered as dead - not scanning* "


This comes from the ping_host plugin.


   - Ports range -- 0-65535


0 is not a valid port number. Use 1-65535


   - Port scanners -- all enabled


This will be slow. Choose the TCP scanner or the SYN scanner, this
should be enough.


Need to customize anywhere since there are many  open ports at
destination .


If you are sure that the IP are up, you may disable all ping methods in
the "preferences" of the ping_host script. Thus Nessus will scan all
IPs.
You can also try to enable all ping methods (although I don't think
that UDP ping would be efficient against a firewall) and/or use
"extended" as the port range for TCP ping. Keep in mind that all this
will considerably slow down the ping_host script; and this will be
inefficient if the firewall drops all incoming packets.
_______________________________________________
Nessus mailing list
Nessus@list.nessus.org
http://mail.nessus.org/mailman/listinfo/nessus
[More messages with this same subject...]




<Prev in Thread] Current Thread [Next in Thread>
Previous by Date:  Nessus Scan against PIX ( Statefull firewalls ), hariprasad hariprasad
Next by Date:  Plugin 20989 FreeBSD nfsd Malformed NFS Mount Request Denial of Service Vulnerability, jfvanmeter
Previous by Thread:  Nessus Scan against PIX ( Statefull firewalls ), hariprasad hariprasad
Next by Thread:  Re: Nessus Scan against PIX ( Statefull firewalls ), Ron Gula
Indexes:  [Date] [Thread] [Top] [All Lists]