_
News:
Bookmark Page
.
Bookmark Page
ZoomPIX Sample Firewall Report
This is an extract of a ZoomPIX report. ZoomPix is a perl script to analyse Cisco PIX firewall configuration files.1. Interface Summary
| Cisco PIX - Interfaces | |||||||
| # | Interface | IP-Address | Netmask | Security | ACL | MTU | State |
| 1. | external | 10.5.4.244 | 255.255.255.0 | 0 | acl_ext | 1500 | up |
| 2. | inside | 10.66.211.193 | 255.255.255.224 | 100 | acl_int | 1500 | up |
| 3. | intf2 | 127.0.0.1 | 255.255.255.255 | 10 | 1400 | up | |
| 4. | intf3 | 127.0.0.1 | 255.255.255.255 | 15 | 1400 | shutdown | |
2. Access Control List Summary
| Summery (acl_ext) | |||
| ACL-Name | acl_ext | ||
| ACL size | 11 entries (lines) | ||
| Interface(s) | external | ||
| Note | The access list is applied to traffic inbound to an interface. Only packets that fit a permit-rule will be processed by the PIX. | ||
| Distinct Ports | 8 permitted, 0 denied | ||
| ACL remarks | |||
| Port Summery (acl_ext) | |
| Ports-permitted | domain, echo, echo-reply, ntp, syslog, time-exceeded, unreachable, www |
| Ports-denied | |
3. Access Control List Entries
| ACL Details | ||||||
| # | Mode | Proto | Src-IP | Dest-IP | Ports | Risk |
| 1. | permit | udp | 192.168.17.149 | any | eq domain | |
| 2. | permit | tcp | 192.168.17.149 | any | eq domain | |
| 3. | permit | udp | 192.168.17.149 | 10.19.0.5 | eq syslog | |
| 4. | permit | udp | 192.168.17.149 | 10.19.0.6 | eq syslog | |
| 5. | permit | udp | 192.168.17.149 | 10.14.100.20 | eq ntp | |
| 6. | permit | icmp | any | any | echo | |
| 7. | permit | icmp | any | any | echo-reply | |
| 8. | permit | icmp | any | any | time-exceeded | |
| 9. | permit | icmp | any | any | unreachable | |
| 10. | permit | tcp | 192.168.17.149 | 192.168.219.82 | eq www | |
| 11. | deny | ip | any | any | ||