Penetration Testing mailing list archives

Previous By Date Next
Previous By Thread Next

Re: Firewall rulebase checking tool

From: anthony.cicalla () gmail com
Date: Tue, 17 Aug 2010 09:43:56 +0000
To validate a rule base would be to audit and verify that what is documented as the configuration / rule set 
implemented on a firewall or router is in fact acting as it should and properly filtering or dropping the packets as 
they should rather than someone making a mistake in their implementation of a command and it going overlooked because 
nobody went and verified that a particular rule is fact in effect and properly working as expected and intended. That 
is what and why you would validate a rule set. 
Sent via BlackBerry from T-Mobile

-----Original Message-----
From: Tracy Reed <treed () copilotco com>
Sender: listbounce () securityfocus com
Date: Tue, 17 Aug 2010 00:30:28 
To: Jirka Vejrazka<jirka.vejrazka () gmail com>
Cc: <pen-test () securityfocus com>
Subject: Re: Firewall rulebase checking tool

On Fri, Aug 13, 2010 at 04:17:49PM +0200, Jirka Vejrazka spake thusly:

  I'm trying to figure out if there is a tool that would help
validating firewall rulebase(s), if the configuration is available


In your opinion, what does it mean to validate a firewall rulebase?

I googled "validate firewall rulsebase" and got this thread at the top
of the list. I'm surprised anyone was able to answer this question as
phrased.

-- 
Tracy Reed
http://tracyreed.org
Previous By Date Next
Previous By Thread Next

Current thread: