Penetration Testing mailing list archives
Re: Security test of firewall dose not show UDP port 500 is open
From: Daniel Lucq <daniel () scanit be>
Date: Tue, 28 Mar 2006 11:10:30 +0200
Well, could be that the IKE service (if it is enabled) only responds to IKE handshake requests containing a supported IKE transform (or vendor ID, authentication type, etc.).
I would suggest using ike-scan to poke a bit at the target with different transforms etc.
Regards, Daniel mtk () mrc dk wrote:
Hi all, We have been using Nessus for security scanning the Cisco Pix firewalls we install for our custemers. I have one "old" repport showing ISAKMP UDM port 500 is open. The firewall isn't updated but now the port has disapeard fro the new rapport? We have asked Cisco if the securiyt scanner is supposed to find UDP port 500 (I don't think so) and a CCIE from Cisco have told us "no the port is hidden." I wonder how the port can be in the old repport? If any one has any input please let me know. Best regards, MTK ------------------------------------------------------------------------------ This List Sponsored by: CenzicConcerned about Web Application Security? As attacks through web applications continue to rise, you need to proactively protect your applications from hackers. Cenzic has the most comprehensive solutions to meet your application security penetration testing and vulnerability management needs. You have an option to go with a managed service (Cenzic ClickToSecure) or an enterprise software (Cenzic Hailstorm). Download FREE whitepaper on how a managed service can help you: http://www.cenzic.com/forms/ec.php?pubid=10025 And, now for a limited time we can do a FREE audit for you to confirm your results from other product. Contact us at request () cenzic com------------------------------------------------------------------------------
------------------------------------------------------------------------------ This List Sponsored by: CenzicConcerned about Web Application Security? As attacks through web applications continue to rise, you need to proactively protect your applications from hackers. Cenzic has the most comprehensive solutions to meet your application security penetration testing and vulnerability management needs. You have an option to go with a managed service (Cenzic ClickToSecure) or an enterprise software (Cenzic Hailstorm). Download FREE whitepaper on how a managed service can help you: http://www.cenzic.com/forms/ec.php?pubid=10025 And, now for a limited time we can do a FREE audit for you to confirm your results from other product. Contact us at request () cenzic com
------------------------------------------------------------------------------
Current thread:
- Security test of firewall dose not show UDP port 500 is open mtk (Mar 28)
- Re: Security test of firewall dose not show UDP port 500 is open Daniel Lucq (Mar 28)
- <Possible follow-ups>
- SV: Security test of firewall dose not show UDP port 500 is open Martin Thor-Kristiansen (Mar 28)
- Re: SV: Security test of firewall dose not show UDP port 500 is open Davide Carnevali (Mar 29)
- RE: Security test of firewall dose not show UDP port 500 is open Arley Barros Leal (Mar 28)