Security Basics mailing list archives

Re: Writing firewall ruleserts ... Recommend good procedure and resource for ports lookup?

From: "Brian J. Smith-Sweeney" <bsweeney () physics ucsb edu>
Date: 15 May 2003 10:19:39 -0700

Firewall Builder is a nice interface; it looks a lot like the firewall
creation tool for Checkpoint's Firewall-1, which I always liked a lot.

You can check out fwbuilder at:

        http://www.fwbuilder.org/

It was also just featured in LinuxJournal I believe, but I don't have
that link.

For something a little less GUI and a little simpler, I use the MonMotha
firewall script at home with quite a bit of success.  You can find that
one at 

        http://monmotha.mplug.org/firewall/index.php

Which really just uses bash/iptables.

For others, search around on www.sourceforge.net or www.freshmeat.net. 
There are tons.

As for translating services into ports...how about /etc/services on
linux? ;-)  Are you just trying to get a list of what ports use what
services? If so, you can just search on google for "tcp ports" or "udp
ports".
 
-Brian
On Wed, 2003-05-14 at 14:02, Mark (fat) wrote:

I have to write firewall rulesets for a pair of back to back dual vendor
firewalls with multiple DMZ's from each.

Can anyone recommend a good procedure to use. Opensource would be great
but you cant really beat a good book.

Also can anyone recommend a good resource for translating services into
ports etc

Thanks

Mark(fat)


---------------------------------------------------------------------------
Thinking About Security Training? You Can't Afford Not To!

Vigilar's industry leading curriculum includes:  Security +, Check Point, 
Hacking & Assessment, Cisco Security, Wireless Security & more! Register Now!
--UP TO 30% off classes in select cities-- 
http://www.securityfocus.com/Vigilar-security-basics
----------------------------------------------------------------------------

-- 
========================================
Brian Smith-Sweeney
Senior Systems Administrator
University of California, Santa Barbara
Physics Department
bsweeney () physics ucsb edu
(805)-893-8366
========================================


---------------------------------------------------------------------------
Thinking About Security Training? You Can't Afford Not To!

Vigilar's industry leading curriculum includes:  Security +, Check Point, 
Hacking & Assessment, Cisco Security, Wireless Security & more! Register Now!
--UP TO 30% off classes in select cities-- 
http://www.securityfocus.com/Vigilar-security-basics
----------------------------------------------------------------------------

Current thread:

suggestions on a good firewall Beaney, Derek (May 14)
- Re: suggestions on a good firewall Dan Tesch (May 15)
  - Re: suggestions on a good firewall Rick Hale (May 15)
    - Re: suggestions on a good firewall Jim Miller @ Cox (May 16)
- Writing firewall ruleserts ... Recommend good procedure and resource for ports lookup? Mark (fat) (May 15)
  - Re: Writing firewall ruleserts ... Recommend good procedure and resource for ports lookup? Brian J. Smith-Sweeney (May 15)
  - Re: Writing firewall ruleserts ... Recommend good procedure and resource for ports lookup? Devdas Bhagat (May 16)
  - Re: Writing firewall ruleserts ... Recommend good procedure and resource for ports lookup? Niels Obst (May 16)
  - Re: Writing firewall ruleserts ... Recommend good procedure and resource for ports lookup? Neal K. Groothuis (May 16)
  - RE: Writing firewall ruleserts ... Recommend good procedure and resource for ports lookup? Mark (fat) (May 16)
    - RE: Writing firewall ruleserts ... Recommend good procedure and resource for ports lookup? David Gillett (May 17)
- RE: suggestions on a good firewall matt willson (May 15)
  - Re: suggestions on a good firewall Joseph (May 16)
- RE: suggestions on a good firewall Chris Carter (May 15)
- Re: suggestions on a good firewall Steffen Mueller (May 15)
- <Possible follow-ups>
- RE: suggestions on a good firewall Robert Gibons (May 16)

(Thread continues...)