Security Basics mailing list archives

RE: Writing firewall ruleserts ... Recommend good procedure and resource for ports lookup?

From: "Mark (fat)" <fat () users sourceforge net>
Date: Fri, 16 May 2003 09:27:24 +0100

Sorry, I kept the request vague to stay away from specific technology
but all I ended up doing was being confusing.

I am not looking for an explanation of how to write rules for a specific
platform. What I am interested in is the procedural steps to take to
capture requirements from a large user and developer base. i.e. a "non
technical explanation of what the firewall needs to do".

Turning these into platform specific rulesets is something I am ok with.

A good example would be the "open source pen testing manual". This lays
out the steps to take to "do" a comprehensive pen test but does not
explain how to use any tools, write code etc.... A procedural thing.

Thanks for all the replys so far :).... Appreciated

Mark(fat)

-----Original Message-----
From: Mark (fat) [mailto:fat () users sourceforge net] 
Sent: 14 May 2003 22:02
To: security-basics () securityfocus com
Subject: Writing firewall ruleserts ... Recommend good procedure and
resource for ports lookup?


I have to write firewall rulesets for a pair of back to back dual vendor
firewalls with multiple DMZ's from each.

Can anyone recommend a good procedure to use. Opensource would be great
but you cant really beat a good book.

Also can anyone recommend a good resource for translating services into
ports etc

Thanks

Mark(fat)


------------------------------------------------------------------------
---
Thinking About Security Training? You Can't Afford Not To!

Vigilar's industry leading curriculum includes:  Security +, Check
Point, 
Hacking & Assessment, Cisco Security, Wireless Security & more! Register
Now! --UP TO 30% off classes in select cities-- 
http://www.securityfocus.com/Vigilar-security-basics
------------------------------------------------------------------------
----


---------------------------------------------------------------------------
Thinking About Security Training? You Can't Afford Not To!

Vigilar's industry leading curriculum includes:  Security +, Check Point, 
Hacking & Assessment, Cisco Security, Wireless Security & more! Register Now!
--UP TO 30% off classes in select cities-- 
http://www.securityfocus.com/Vigilar-security-basics
----------------------------------------------------------------------------

Current thread:

suggestions on a good firewall Beaney, Derek (May 14)
- Re: suggestions on a good firewall Dan Tesch (May 15)
  - Re: suggestions on a good firewall Rick Hale (May 15)
    - Re: suggestions on a good firewall Jim Miller @ Cox (May 16)
- Writing firewall ruleserts ... Recommend good procedure and resource for ports lookup? Mark (fat) (May 15)
  - Re: Writing firewall ruleserts ... Recommend good procedure and resource for ports lookup? Brian J. Smith-Sweeney (May 15)
  - Re: Writing firewall ruleserts ... Recommend good procedure and resource for ports lookup? Devdas Bhagat (May 16)
  - Re: Writing firewall ruleserts ... Recommend good procedure and resource for ports lookup? Niels Obst (May 16)
  - Re: Writing firewall ruleserts ... Recommend good procedure and resource for ports lookup? Neal K. Groothuis (May 16)
  - RE: Writing firewall ruleserts ... Recommend good procedure and resource for ports lookup? Mark (fat) (May 16)
    - RE: Writing firewall ruleserts ... Recommend good procedure and resource for ports lookup? David Gillett (May 17)
- RE: suggestions on a good firewall matt willson (May 15)
  - Re: suggestions on a good firewall Joseph (May 16)
- RE: suggestions on a good firewall Chris Carter (May 15)
- Re: suggestions on a good firewall Steffen Mueller (May 15)
- <Possible follow-ups>
- RE: suggestions on a good firewall Robert Gibons (May 16)
- RE: suggestions on a good firewall Michael J. Panchula (May 16)
- RE: suggestions on a good firewall Mike Moore (May 16)
  - RE: suggestions on a good firewall Dan DeVoe (May 17)
- RE: suggestions on a good firewall Tom Sevy (May 17)

(Thread continues...)