Ethical Hacking

Learn to find vulnerabilities before the bad guys do! Gain real world hands on hacking experience in our state of the art hacking lab. Course designed and taught by expert instructors with years of penetration testing experience. 12 student maximum in every class. Certification attempt included in every package.
Computer Forensics Training at InfoSec Institute

Gain the in-demand skills of a certified computer examiner, learn to recover trace data left behind by fraud, theft, and cybercrime perpetrators. Discover the source of computer crime and abuse at your organization so that it never happens again. All of our class sizes are guaranteed to be 12 students or less to facilitate one-on-one interaction with one of our expert instructors.




Network Security Security-Basics
[Top] [All Lists]
<prev [Date] next>
[Advanced]
 <prev [Thread] next>

RE: Reflexive firewalls?

from [Jason M. Beauford] Network Security [Permanent Link]
Subject: RE: Reflexive firewalls?
Date: Thu, 27 Dec 2007 14:22:19 -0500 
Port triggering, or Port Knocking.

heres the first url I found:

Multiple-port knocking Netfilter/IPtables only implementation
http://www.debian-administration.org/articles/268

 
jmb

-----Original Message-----
From: Tom Corelis [mailto:tomc@targetbilling.com] 
Sent: Thursday, December 27, 2007 12:41 PM
To: security-basics@securityfocus.com
Subject: RE: Reflexive firewalls?

Would this be called port triggering? I've seen a few commercial router
boxes that support that feature, though I've never looked into it
myself.

tom


--
Tom

-----Original Message-----
From: listbounce@securityfocus.com [mailto:listbounce@securityfocus.com]
On Behalf Of Danilo Chilene
Sent: Thursday, December 27, 2007 10:03 AM
To: Ong Chin Kiat
Cc: security-basics@securityfocus.com
Subject: Re: Reflexive firewalls?

I know how do this with PF.

Don't have any idea with iptables. :(

Ong Chin Kiat wrote:

Hi list,

I've recently used an SSH server that had an interesting 
authentication mechanism. You first had to telnet to the machine on a 
certain port. After doing this (it will just time out - no prompt), 
you then SSH to the server in question. The telnet step has to be 
carried out, if not SSH will just time out.

My question is, is this called reflexive firewalling, and can I 
duplicate this with iptables?

Thanks.


--
Danilo F. Chilene

Especialista SO

Global Crossing Limited

Tel.: (55 11) 3957-2945

Cel.: (55 11) 8231-1851

danilo.chilene@globalcrossing.com

 
www.globalcrossing.com

 

Att,
[More messages with this same subject...]




<Prev in Thread] Current Thread [Next in Thread>
Previous by Date:  Re: Reflexive firewalls?, Ansgar -59cobalt- Wiechers
Next by Date:  Re: RDP sniffing, MaddHatter
Previous by Thread:  RE:Reflexive firewalls?, securitylists
Next by Thread:  Re: Reflexive firewalls?, nobledark
Indexes:  [Date] [Thread] [Top] [All Lists]