How do I know my firewall is working? - Tilted Forum Project Discussion Community

Jesus Pimp · 09-17-2003, 04:30 AM

I have a linksys router. How do I know my firewall is working? Is there a way to check?

dogzilla · 09-17-2003, 05:04 AM

I use http://grc.com and follow the links for the Shields Up test. There is a link there to test the first thousand or so ports.

Unless you have a good reason to have a server runing on your machine with an open port, all ports should be either closed or stealth mode.

Pragma · 09-17-2003, 05:12 AM

Well, one thing you could do is start up a webserver on one of your computers inside and specifically not forward that port to the machine.

Then go a friend's house, launch IE, and try to navigate to your IP, see if you can bring up the webserver. If you can, something ain't right.

Feel free to substitute whatever protocol you like best for a webserver [SSH server, telnet, FTP, etc.]

wondash · 09-17-2003, 08:11 AM

I checked, and it's not working. By the way, I found some very interesting pictures on your pc.

Kidding of course

Pragma · 09-18-2003, 06:15 AM

Honestly, GRC's shield's up test is not the greatest. I've had it give me wildly inaccurate readings on my OpenBSD machine -- even different results between two back-to-back tests without changing anything.

If you really want to test, you can't beat NMap

The_Dude · 09-18-2003, 06:37 AM

Norton has a test that I use

http://security.symantec.com/ssc/

I dont know if it requires subscription to NAV, but give it a shot.

Banginblaz · 09-18-2003, 08:56 AM

Norton's test dosent work in Mozilla.....

j8ear · 09-18-2003, 11:52 AM

what's your IP...I'll scan your router for adequate firewall protection.

If you want to do it yourself get a port scanner and run it against your IP address from outside your network (i.e. everything behind your linksys).

I like GFI's LanGuard plus. Comprehensive and nice report type output.

A firewall is only one tool to use in protecting your network. Make sure that the nodes behind it are also not running any services that don't need to be running, and that you have mitigated vulnerabilities for the services which are. Also make sure you don't have vulnerabilities to the firewall itself. Those SOHO dealios from linksys or netgear have default passwords (did you change them?), and remote administration (did you turn it off?) capabilities.

-bear

Cocktopus · 09-18-2003, 04:49 PM

i use nmap from an outside pc...i think there's a win version now.

09-17-2003, 04:30 AM	#1 (permalink)
Jesus Pimp The Original JizzSmacka	How do I know my firewall is working? I have a linksys router. How do I know my firewall is working? Is there a way to check? __________________ Never date anyone who doesn't make your dick hard.

09-18-2003, 06:15 AM	#5 (permalink)
Pragma I am Winter Born Location: Alexandria, VA	Honestly, GRC's shield's up test is not the greatest. I've had it give me wildly inaccurate readings on my OpenBSD machine -- even different results between two back-to-back tests without changing anything. If you really want to test, you can't beat NMap __________________ Eat antimatter, Posleen-boy!

09-18-2003, 06:37 AM	#6 (permalink)
The_Dude The GrandDaddy of them all! Location: Austin, TX	Norton has a test that I use http://security.symantec.com/ssc/ I dont know if it requires subscription to NAV, but give it a shot. __________________ "Luck is what happens when preparation meets opportunity." - Darrel K Royal

09-18-2003, 11:52 AM	#8 (permalink)
j8ear Gentlemen Farmer Location: Middle of nowhere, Jersey	what's your IP...I'll scan your router for adequate firewall protection. If you want to do it yourself get a port scanner and run it against your IP address from outside your network (i.e. everything behind your linksys). I like GFI's LanGuard plus. Comprehensive and nice report type output. A firewall is only one tool to use in protecting your network. Make sure that the nodes behind it are also not running any services that don't need to be running, and that you have mitigated vulnerabilities for the services which are. Also make sure you don't have vulnerabilities to the firewall itself. Those SOHO dealios from linksys or netgear have default passwords (did you change them?), and remote administration (did you turn it off?) capabilities. -bear __________________ It's alot easier to ask for forgiveness then it is to ask for permission.

09-17-2003, 05:04 AM	#2 (permalink)
dogzilla Junkie Location: New York	I use http://grc.com and follow the links for the Shields Up test. There is a link there to test the first thousand or so ports. Unless you have a good reason to have a server runing on your machine with an open port, all ports should be either closed or stealth mode.

09-17-2003, 05:12 AM	#3 (permalink)
Pragma I am Winter Born Location: Alexandria, VA	Well, one thing you could do is start up a webserver on one of your computers inside and specifically not forward that port to the machine. Then go a friend's house, launch IE, and try to navigate to your IP, see if you can bring up the webserver. If you can, something ain't right. Feel free to substitute whatever protocol you like best for a webserver [SSH server, telnet, FTP, etc.]

09-17-2003, 08:11 AM	#4 (permalink)
wondash Psycho	I checked, and it's not working. By the way, I found some very interesting pictures on your pc. Kidding of course

09-18-2003, 08:56 AM	#7 (permalink)
Banginblaz Dont stop here; This is bat country! Location: North East	Norton's test dosent work in Mozilla.....

09-18-2003, 04:49 PM	#9 (permalink)
Cocktopus Insane	i use nmap from an outside pc...i think there's a win version now.