Whitepaper titled Filtering Of ICMP Error Messages.
d0a9291555fea0ba236126a45e33f2c9Relevant Technologies product review paper on InsideOut Firewall Reporter by Stonylake Solutions. This product is a Java-based server application that runs on both Windows and Linux and has a demo version available.
1bc7034a4ca43e83f0832aee896d6f44Combating reverse telnet using OpenBSD Packet Filter (pf) - This paper goes into detail on how to set up a firewall properly to disallow outbound traffic from reverse telnet attacks from compromised machines.
a17fbb20af199726341779197070c7dbBypassing firewalls through protocol stenography - You can often bypass firewalls by using trojans that send commands over port 80.
dbfc62d0887c5defc5faa2fa4e884a30OS/2 Packet Filtering - OS/2 machines are good for firewalls and the packet filtering code is not documented.
5c5c3f6c11f6c6fe60369f0d3478b778This howto walks you through building a FreeBSD-STABLE firewall with IPFILTER. This is a checklist that walks you through the entire process from beginning to end: installing FreeBSD-stable, recompiling the kernel, OpenSSH security, TCP-wrappers, VESA video modes, and special syslog logging for your firewall.
85a429380d1944e843d563d87426900eHow to use Iptables - Explains the new features, how to use them, how to write rulesets, and includes a sample firewall script.
19d436b9ffb68b7a7ba5150f79f4b6a6A Stateful Inspection of FireWall-1 - In this advisory we summarize our findings from BlackHat 2000 on Checkpoint Firewall-1. It is susceptible to several trivial attacks against its inter-module authentication protocols, IP address verification has flaws, FWN1 and FWA1 is vulnerable to a replay attack, Fastmode vulnerabilities, FWZ Encapsulation vulnerabilities, and Stateful Inspection problems, and much more. Included in the tarball is the presentation in two formats, the technical documentation for the vulnerabilities, and the source code used in the demonstation.
91477466f1f877e3f89271565b27a371Linux Firewalling - Insights and Explainations. Covers basic IPchains firewall building, advanced IPchains firewalling, and linux firewall related insights and recommendations on which traffic to allow.
7ff543a1e829f9edeb3ec8965ad7c2b4Benchmarking Terminology for Firewall Performance - This document defines terms used in measuring the performance of firewalls. It extends the terminology already used for benchmarking routers and switches with definitions specific to firewalls.
407deba492a227b099a7b51305db26caThis document answers the question: I've seen <something> on my firewall; what does it mean? Firewall administrators regularly see strange behaviour showing up in their logfiles. This document describes some of the common things seen on these firewalls, and what they mean. Note that this document is intended both for owners of personal firewalls as well as corporate firewalls. Version 0.3.0. (Jan 15, 2000)
9ed1cee16b9f53de8927e87dcf9972eaFAQ: Firewall Admins Guide to Porn version 1.0.1 (Jan 15, 2000). One of the more frequent problem security administrators will face is porn. It is a popular Internet application, and even when restrictions are put into place, users find ways of getting around them. At the same time, users tend to be clueless as to the knowledge firewall admins have of their surfing habits. Every administrator of a large company that I know of has had to confront this issue, but not much is discussed about the topic in the literature. This document is intended as a guide for firewall admins in this area.
5759a7d609d42114b58b3b2b846944faBuilding Your Firewall Rulebase - One of the largest risks with a firewall is a misconfigured rulebase. The most expenseive firewall in the world does not help you if you have a rule misconfigured. "Building Your Firewall Rulebase" helps to address this problem. The paper focuses on the concepts of how to build a secure rulebase. It goes step by step through the design process, explaining each rule and it signifigance. The paper is focused for beginner/intermediate firewall admins, but even the gurus can hopefully learn a trick or two (I know I did).
e4e67de0308f72fae3140eff9e739f6fHow to build a BSD firewall using ipfilter. Covers everything from kernel config to allowing traffic.
8db290dcfa35c0e52d7b2abaa54ab4e9Packet Filtering in an IP Router: A description of how the packet filtering facility in the Telebit NetBlazer was designed and developed.
58e61f4346e87952f444e7a559896c9fA Network Firewall: A description of Digital Equipment Corporation's network firewall between its corporate network and the Internet.
dbfad3c3cee7f545b15a7077c34803eeThinking About Firewalls: A description of some of the considerations and trade-offs in designing network firewalls.
49af2ebc54d54cdde439690005372203An Internet Gatekeeper: A description of how to construct an Internet firewall
1ac2292a38d0cda4c96735f5b1bca241A Network Perimeter With Secure External Access: A description of the firewall in use at whitehousegov
feb5e7fa94013ad248e85b1d018ed858Packets Found on an Internet: A description of the types of packets, particularly the anomalous ones, that appeared at the AT&T firewall
1d509af86b49369f0076478d377e2117Simple and Flexible Datagram Access Controls for Unix-based Gateways: A description of the screend packet filtering system
42c625ebde081fa97ffbc75c8bef2824TCP Wrapper: Network Monitoring, Access Control, and Booby Traps (Text): A description of the author's tcpwrapper software
ca952f2a01017341e9927799c5e28035A Toolkit and Methods for Internet Firewalls: A description of the Trusted Information Systems Firewall Toolkit
e892b4d7daa511835dfaf991e839786aAn Architectural Overview of UNIX Network Security: A description of a number of UNIX-related components of network security, particularly as they pertain to firewalls
3c2da4e4019173d9b7297acb8686a6bfX Through the Firewall, and Other Application Relays: A description of how to create application-specifc relays to pass traffic through a network firewall
b0c5e9455c240ba8eae64f3f7426a8e7
© 2012 Packet Storm. All rights reserved.
%7Cutmcsr%3D(direct)%7Cutmcmd%3D(none)){kind=small}
Follow us on Twitter
Follow us on Facebook
Subscribe to an RSS Feed