I have a PIX 501 firewall. Is there a way to test wheter its intrusion detection feature really works? How can I get notified that theres a real-time intrusion happening? Any tools to simulate this task at least to prove to clients that this thing is really working?
You could try using 'shields up' from www.grc.com - basically a shields up tests your external PIX interface + probes the PIX ports to see if there are any open 'holes' on your PIX - and gives you a report at the end, it's all FREE !!! - It's very very good try it and see what you think.
Table of ContentsIntroductionVersion HistoryPossible Future
UpdatesDocuments PurposeNAT Operation in ASA 8.3+ SectionsRule Types
Network Object NATTwice NAT / Manual NATRule Types used per SectionNAT
Types used with Twice NAT / Manual NAT and Network Obje...
Table of Contents Introduction:This document describes details on how
NAT-T works. Background: ESP encrypts all critical information,
encapsulating the entire inner TCP/UDP datagram within an ESP header.
ESP is an IP protocol in the same sense that TCP an...