t0s
Dec 22 2003, 10:30 PM
I was wondering if there is a way that you can scan through a firewall and see the servers open ports behind the firewall if this info helps i trying to scan througha netscreen 5xp hardware firewall
krackatoa
Dec 23 2003, 05:01 AM
Depends on how the firewall responds to open and closed ports as well as how it handles different flags in the packet.. Try nmap and some of the optional scan types, like Ack, fin, blah,blah,blah
GSecur
Dec 23 2003, 05:04 AM
Also lookup information on firewalker or hping2 which allows you to probe internal devices. I will look for the texts I used to learn with
andydis
Dec 23 2003, 09:30 AM
if the telnetport is open on the netscreen (port 23).
the defualt password is
user netscreen
pass netscreen
(you may have to go up a ip or two)
then you can have READ ONLY aCCESS to the console and can ping internal subnets and use other built in tools
Yorn
Dec 23 2003, 03:29 PM
hping2 is really, really, cool. It will let you listen to broadcast on one machine and spoof ICMPs from that machine to another one and such. ICMP is a unique protocol and hping2 really shines in exploiting it.
This is a "lo-fi" version of our main content. To view the full version with more information, formatting and images, please
click here.
