Test
Section |
Sub
Section |
Detail |
| run-log |
log |
14:27:46: Fragmented scan: requested |
|
|
14:27:46: IP address: |
|
|
14:27:46: Pings-of-death: requested |
|
|
14:27:46: Testing level: standard |
|
|
14:27:46: doing basic ICMP ping |
|
|
14:27:50: Running tcp SYN (half-open) port scan, source port
20, over 1-1024 plus 1026 common tcp service ports. |
|
|
14:57:52: ** Last phase failed due to a sub-command
timeout. |
|
|
14:57:52: ** test results from this phase may not be
reliable. |
|
|
14:57:52: Running tcp SYN (half-open) portscan, source port
20, over first 140 ports. |
|
|
14:57:52: using fragmented packets, which can get past some
firewalls |
|
|
15:12:53: ** Last phase failed due to a sub-command
timeout. |
|
|
15:12:53: ** test results from this phase may not be
reliable. |
|
|
15:12:53: Running quick udp portscan over port
1-16 |
|
|
15:13:29: Running tcp FULL CONNECT portscan over 1-1024 plus
services (limit 15 minutes). |
|
|
15:23:23: Attack with targa. |
|
|
15:23:23: Sending each different ping-of-death.. |
|
|
15:23:30: Done Attack with targa. |
|
|
15:23:31: Attack with sping. |
|
|
15:23:31: Done Attack with sping. |
|
|
15:23:32: Attack with fawx. |
|
|
15:23:32: Done Attack with fawx. |
|
|
15:23:33: Attack with kod. |
|
|
15:25:03: Done Attack with kod. |
 |
| icmp |
comment |
if
your security logs are good, you may have logged a
ping. |
|
advice |
To
be totally invisible to the internet, your IP address should not
even be pingable. No points are lost in this test for being
pingable, as it is not a security risk. |
|
result |
Your address is
pingable |
|
| udp |
comment |
since all UDP ports are silent, there is no
information. |
|
result |
Nothing can be determined
about your UDP ports. |
|
|
target IP is silent, or throttling speed of UDP icmp return
packets |
|
|
udp port scan would take too long! full udp scan
cancelled. |
|
| tcp |
comment |
One or more ports are showing as unfiltered. An unfiltered
port responds to an open request with a CLOSED packet. Software
firewalls common leave port 113 as unfiltered, and sometimes ports
beyond 1024 are also left as visibly closed. |
|
advice |
For ultimate invisibility, ALL ports must be filtered and
unresponsive. |
|
result |
some ports are
unfiltered |
|
score |
Points
Deducted:1 |
|
| smtphealth |
result |
Cannot do requested SMTP
server health check because I dont see port 25 open |
|
| nmap-syn |
comment |
No
results from the SYN (stealth) scan) |
|
| nmap-synfrag |
comment |
fragmented packet scans are network intensive, so only first
140 ports are tried since if your firewall blocks services, it would
certainly be trying to block something in this range. |
|
| nmap-tcp |
comment |
TCP port results from basic scan: |
| |
|
| Port |
State |
Protocol |
Commonly |
| 113 |
unfiltered |
tcp |
auth | |
|
| nmap-syn |
comment |
If
your security is good, you get an alert of a scan attempt but this
is a stealth scan, so it is difficult to detect. |
|
| nmap-synfrag |
comment |
No
results from the FRAGMENTED PACKET scan |
|
| nmap-udp |
comment |
UDP Ports. Could not complete UDP scan because within the
timeout allowed, we got no responses. It is probably you have an
effective UDP firewall. |
|
| final |
comment |
Conclusion:
FINAL SCORE: -1 |
|
|
** good
result. |
SMC 7004WBR Firewall Test
Menu:
rom SMC