Penetration Testing mailing list archives

Re: Comprehensive firewall test using Nmap?

From: Gabriele Brosulo <brosulo () edisoft net>
Date: Tue, 26 Aug 2008 09:33:11 +0200

On Saturday 23 August 2008 21:32:07 Bill Weiss wrote:

Gabriele Brosulo(brosulo () edisoft net)@Thu, Aug 21, 2008 at 11:08:02AM +0200:

On Thursday 21 August 2008 09:00:02 Alexander Sandstr?m Krantz A wrote:

Is it possible to automatically alter the source port when using Nmap
to test a firewall?


Apparently it's not possible. I tryed this:

nmap -sS -P0 -g 2000-2010 127.0.0.1

but all packet comes from port 2000. Does anybody know a workaround? The
only way I thinked about is to use a script to randomize source port on a
dest port base, but I think it will be not efficient..


Hmm...

$ man nmap | grep -- -g
             -g/--source-port <portnum>: Use given port number

That doesn't look like it takes a range.


Of course, I just tried it.. Anyway, I think it will be a useful options, 
isn't it?

-- 
g4b0, linux user n. 369000
http://gabo.homelinux.com

------------------------------------------------------------------------
This list is sponsored by: Cenzic

Top 5 Common Mistakes in
Securing Web Applications
Get 45 Min Video and PPT Slides

www.cenzic.com/landing/securityfocus/hackinar
------------------------------------------------------------------------

Current thread:

Comprehensive firewall test using Nmap? Alexander Sandström Krantz A (Aug 21)
- SV: Comprehensive firewall test using Nmap? Carl-Johan Bostorp (Aug 21)
  - Re: Comprehensive firewall test using Nmap? M.B.Jr. (Aug 25)
- Re: Comprehensive firewall test using Nmap? Tim Brown (Aug 21)
- Re: Comprehensive firewall test using Nmap? Joe Sechman (Aug 21)
- Re: Comprehensive firewall test using Nmap? Gabriele Brosulo (Aug 21)
  - Re: Comprehensive firewall test using Nmap? Bill Weiss (Aug 25)
    - Re: Comprehensive firewall test using Nmap? Gabriele Brosulo (Aug 26)
- <Possible follow-ups>
- Re: Comprehensive firewall test using Nmap? publists (Aug 25)