your right net stat is a command line tool that displays network connections (incoming and outgoing),port numbers and ports (tcp/udp) and they are avaliable on unix ,windows and unix like operating systems ..
But they can be blocked through the ips .If i am an ips administrator and i dont want my users to use netstat command
i can do that by making a custom signature in ips and i will be selecting the udp option while making the custom signature
and specify all the service port range .Although i was a bit confused which option should i select (udp or tcp or icmp string) while making a custom signature.so i neede a clarification on that.
Doesn't make sense to me... how will your users be connecting to the command line of those machines to issue the netstat command?
IPS can only work in the way you describe if they connect over an unencrypted connection, or if your encryption is certificate based and you are decrypting/re-encrypting/swapping certificates on the IPS unit.
u r misunderstanding the question .lets assume i am the network admin and i dont want the users inside my network i.e behind the ips to successfully use the netstat command through the ips ? ..it works coz this question exists in the certification exams...
Table of ContentsIntroductionVersion HistoryPossible Future
UpdatesDocuments PurposeNAT Operation in ASA 8.3+ SectionsRule Types
Network Object NATTwice NAT / Manual NATRule Types used per SectionNAT
Types used with Twice NAT / Manual NAT and Network Obje...
Table of Contents Introduction:This document describes details on how
NAT-T works. Background: ESP encrypts all critical information,
encapsulating the entire inner TCP/UDP datagram within an ESP header.
ESP is an IP protocol in the same sense that TCP an...