Penetration Testing mailing list archives

Re: SV: Security test of firewall dose not show UDP port 500 is open

From: Davide Carnevali <carnevali () protechta it>
Date: Wed, 29 Mar 2006 15:57:20 +0200

Which scan option are you using with Nessus 3.0?
Which have you used with 2.0?
If you use and have used nmap, which version?

Regards

Martin Thor-Kristiansen wrote:

This lead me back to the following question:
Why dose Nessus 2.x find the open port and Nessus 3.0 don't?

Best regards
Martin Thor-Kristiansen
Cisco CCSP, Microsoft MCSE
Chefkonsulent
----------------------------------
MRC Computer A/S
Thistedvej 66
9400 Nørresundby
Mobil:  +45 23 21 62 66
Tlf.:   +45 96 32 45 00
Fax:    +45 96 32 45 01
Direkte:        +45 96 32 45 04
www.mrc.dk
-----------------------------------


-----Oprindelig meddelelse-----
Fra: Daniel Lucq [mailto:daniel () scanit be]Sendt: 28. marts 2006 11:11
Til: pen-test () securityfocus com
Cc: Martin Thor-Kristiansen
Emne: Re: Security test of firewall dose not show UDP port 500 is open
Well, could be that the IKE service (if it is enabled) only responds toIKE handshake requests containing a supported IKE transform (or vendorID, authentication type, etc.).
I would suggest using ike-scan to poke a bit at the target withdifferent transforms etc.
Regards,
Daniel

mtk () mrc dk wrote:
Hi all,

We have been using Nessus for security scanning the Cisco Pix firewalls we install for our custemers. I have one "old" 
repport showing ISAKMP UDM port 500 is open. The firewall isn't updated but now the port has disapeard fro the new rapport?
We have asked Cisco if the securiyt scanner is supposed to find UDP port 500 (I don't think so) and a CCIE from Cisco have told 
us "no the port is hidden."

I wonder how the port can be in the old repport?

If any one has any input please let me know.

Best regards,

MTK

------------------------------------------------------------------------------
This List Sponsored by: Cenzic
Concerned about Web Application Security?As attacks through web applications continue to rise, you need to proactivelyprotect your applications from hackers. Cenzic has the most comprehensivesolutions to meet your application security penetration testing andvulnerability management needs. You have an option to go with a managedservice (Cenzic ClickToSecure) or an enterprise software (Cenzic Hailstorm).Download FREE whitepaper on how a managed service can help you:http://www.cenzic.com/forms/ec.php?pubid=10025And, now for a limited time we can do a FREE audit for you to confirm yourresults from other product. Contact us at request () cenzic com
------------------------------------------------------------------------------
------------------------------------------------------------------------------
This List Sponsored by: Cenzic
Concerned about Web Application Security?As attacks through web applications continue to rise, you need to proactivelyprotect your applications from hackers. Cenzic has the most comprehensivesolutions to meet your application security penetration testing andvulnerability management needs. You have an option to go with a managedservice (Cenzic ClickToSecure) or an enterprise software (Cenzic Hailstorm).Download FREE whitepaper on how a managed service can help you:http://www.cenzic.com/forms/ec.php?pubid=10025And, now for a limited time we can do a FREE audit for you to confirm yourresults from other product. Contact us at request () cenzic com
------------------------------------------------------------------------------


--

Davide Carnevali
CTO
Protechta - Information Security
OPST, CCSP
Tel. +39 0521 2021
Fax. +39 0521 207461
http://www.protechta.it/
e-mail: davide () protechta it
Disclaimer: http://www.protechta.it/disclaimer

------------------------------------------------------------------------------
This List Sponsored by: Cenzic

Concerned about Web Application Security?As attacks through web applications continue to rise, you need to proactivelyprotect your applications from hackers. Cenzic has the most comprehensivesolutions to meet your application security penetration testing andvulnerability management needs. You have an option to go with a managedservice (Cenzic ClickToSecure) or an enterprise software (Cenzic Hailstorm).Download FREE whitepaper on how a managed service can help you:http://www.cenzic.com/forms/ec.php?pubid=10025And, now for a limited time we can do a FREE audit for you to confirm yourresults from other product. Contact us at request () cenzic com

------------------------------------------------------------------------------

Current thread:

Security test of firewall dose not show UDP port 500 is open mtk (Mar 28)
- Re: Security test of firewall dose not show UDP port 500 is open Daniel Lucq (Mar 28)
- <Possible follow-ups>
- SV: Security test of firewall dose not show UDP port 500 is open Martin Thor-Kristiansen (Mar 28)
  - Re: SV: Security test of firewall dose not show UDP port 500 is open Davide Carnevali (Mar 29)
- RE: Security test of firewall dose not show UDP port 500 is open Arley Barros Leal (Mar 28)