[Openvas-discuss] Firewall scanning
lists at securityspace.com
Tue Oct 26 02:03:05 CEST 2010
It would be useful (even if you send it off list) to provide info on
what OpenVAS is missing. That would help folks improve it, should it
be an issue of tests missing as opposed to a misconfigured scanner.
Tom Powers wrote:
> Sound Solutions, Inc.
> 8400 Highland Dr.
> Wausau, WI 54401
> Tel: 715-842-7665
> Fax: 715-842-7620
> Yeah...but the Qualys scanner we use does find stuff on that firewall....so I'm thinking I have something setup wrong on my OpenVAS
> -----Original Message-----
> From: Scott Damron [mailto:sdamron at gmail.com]
> Sent: Monday, October 25, 2010 11:24 AM
> To: Tom Powers
> Cc: openvas-discuss at wald.intevation.org
> Subject: Re: [Openvas-discuss] Firewall scanning
> Not finding anything on an external firewall is generally a good thing...
> On Mon, Oct 25, 2010 at 11:12 AM, Tom Powers <tomp at sound-solutions.biz> wrote:
>> Hello all,
>> Anyone have any good tips for scanning firewalls from the outside. I'm
>> at a remote office, trying to scan the firewall at our main office
>> with OpenVAS
>> 3 on ubuntu 10.04.
>> Internal scans are AWESOME and find more than I though they would.
>> External scans (with default settings) against the firewall's external
>> IP addresses return absolutely nothing.
>> I am accessing the home office firewall, from the outside, using the
>> branch office internet connection (which is seperate from the
>> network). The home office firewall external addresses to not respond
>> to a ping (they are configured that way)...and I think that may be the
>> issue for the portscanners?
>> Any good configuration tips to get this to go?
>> All help is appreciated
>> Tom P
>> Openvas-discuss mailing list
>> Openvas-discuss at wald.intevation.org
> This message has been scanned for viruses and dangerous content by Sound Solutions' Avalon Spam Wizard, and is believed to be clean.
> Sound Solutions, Inc. - Since 1995
> We Appreciate Your Business and Referrals
> This message (and any associated files) is intended only for the use of the individual or entity to which it is addressed and may contain information that is confidential, subject to copyright or constitutes a trade secret. If you are not the intended recipient you are hereby notified that any dissemination, copying or distribution of this message, or files associated with this message, is strictly prohibited. If you have received this message in error, please notify us immediately by replying to the message and deleting it from your computer. Messages sent to and from us may be monitored.
> Internet communications cannot be guaranteed to be secure or error-free as information could be intercepted, corrupted, lost, destroyed, arrive late or incomplete, or contain viruses. Therefore, we do not accept responsibility for any errors or omissions that are present in this message, or any attachment, that have arisen as a result of e-mail transmission. If verification is required, please request a hard-copy version. Any views or opinions presented are solely those of the author and do not necessarily represent those of the company.
> Openvas-discuss mailing list
> Openvas-discuss at wald.intevation.org
More information about the Openvas-discuss