El lun, 25 de 10 de 2004 a las 16:52, J.R. Barreras escribiÃ: > Hi all! > How can I do compare iptables rule sets produced by different scripts? > Any tools? Ideas? > > Waiting for yours reply, thanks in advance... > > Best wishes! > Barreras The best thing you can do it's run each of the scripts and do some firewall stressing to the firewall. You can use the following tools to check your firewall rules: nmap: Check opened/closed ports and combinations of attacks to them hping2: Check the ICMP configuration of the firewall and do some attacks to it. nessus: See what attacks the firewall it's blocking or not. As you can see you can use any tool that helps you to check the firewall, it's like doing penetration testing on your own firewall. This way you can find what script works better and blocks/accepts the packets you want. Another good idea it's to check the scripts by hand if you know iptables syntax. I would advise you this it's the best way to check the firewall, and see what rules you are using. -- Jose Maria Lopez Hernandez Director Tecnico de bgSEC jkerouac@xxxxxxxxx bgSEC Seguridad y Consultoria de Sistemas Informaticos http://www.bgsec.com ESPAÃA The only people for me are the mad ones -- the ones who are mad to live, mad to talk, mad to be saved, desirous of everything at the same time, the ones who never yawn or say a commonplace thing, but burn, burn, burn like fabulous yellow Roman candles. -- Jack Kerouac, "On the Road"
