RE: How to discover firewall rules

[Avishai Wool <avishai_w () yahoo com>]

Richard,

As the creator of the Lumeta Firewall Analyzer (LFA), I can tell you
that:

 (1) it is based on research I was involved in at Bell Labs
 (2) I co-authored 2 papers discussing some of that basic research.
   they appeared in the IEEE security & privacy conferences of 
   1999 and 2000.
   you can get them from my research web page (below)
 (3) a recent paper about the technology will appear in the
   upcoming USENIX Security conference (aug'2001, in Washington DC)

If you want to evaluate LFA or see it in action, 
check out our web site http://www.lumeta.com/firewall.html,
or contact me directly.

Avishai

--- "Scott, Richard" <Richard.Scott () BestBuy com> wrote:
> I'm pretty interested in how this technology works.  Are there any
> RFC/IETF/white papes that describe such techniques?
>
> Cheers
> r.
>
>
> ---> snip
> Lumeta (Bill Cheswick's new company) has a tool that will do this
> (the 
> network mapper) they also have a tool that will analyze firewall
> ruless. 
> The mapper is capable of finding what a firewall will allow as
> opposed to 
> the analyzer that requires the configuration as input.
>
> www.lumeta.com
>
>
> later...
> chad
>
> <<------
>
>
>
> _______________________________________________
> firewall-wizards mailing list
> firewall-wizards () nfr com
> http://www.nfr.com/mailman/listinfo/firewall-wizards


=====
Avishai Wool, Ph.D.,  Chief Scientist & Co-Founder, Lumeta Corp.
220 Davidson Ave, 4th Floor, Somerset, NJ 08873, USA
Email: yash () acm org      Web: http://research.lumeta.com/yash/
Phone: (732) 357-3511     Cell (973) 420-5919

__________________________________________________
Do You Yahoo!?
Get personalized email addresses from Yahoo! Mail
http://personal.mail.yahoo.com/
_______________________________________________
firewall-wizards mailing list
firewall-wizards () nfr com
http://www.nfr.com/mailman/listinfo/firewall-wizards