04-20-2006 07:58 PM - edited 02-21-2020 12:51 AM
Hi All Expert,
Can anyone help if I need to simulate an attack to a server on DMZ zone.
How to know there is an attack to that particular server and how to generate the attack?
Really appreciate for help on this.
Thank you.
Rgds,
Au Yeong Shaw Voel
Solved! Go to Solution.
04-23-2006 06:55 PM
Hi,
If you plan to test your server, there are a number of things that you might need to do, simple to complicated attack. It depends on what you would like to achieve, type of attack, e.g server OS, application.
But the simple one could be using ICMP/ping attack or TCP SYN attack (you can easily get tools from the Net).
From PIX Firewall perspective, you probably need to active the built-in IDS feature, limit the embryonic level and open ICMP to the target server. Make sure your ACL allows the ICMP and permitted application(s) service ports to pass through. Also, make sure you enable syslog, and probably set it to informational or debugging, to capture the log.
PIX will easily pick-up the ICMP attack based on the IDS services, while for the TCP-SYN attack (targeted to your application via ACL), you can see the attempts from the log.
Rgds,
AK
04-23-2006 06:55 PM
Hi,
If you plan to test your server, there are a number of things that you might need to do, simple to complicated attack. It depends on what you would like to achieve, type of attack, e.g server OS, application.
But the simple one could be using ICMP/ping attack or TCP SYN attack (you can easily get tools from the Net).
From PIX Firewall perspective, you probably need to active the built-in IDS feature, limit the embryonic level and open ICMP to the target server. Make sure your ACL allows the ICMP and permitted application(s) service ports to pass through. Also, make sure you enable syslog, and probably set it to informational or debugging, to capture the log.
PIX will easily pick-up the ICMP attack based on the IDS services, while for the TCP-SYN attack (targeted to your application via ACL), you can see the attempts from the log.
Rgds,
AK
04-24-2006 01:13 AM
Hi AK,
Yes, that what I plan to do, thank for your advise.
Rgds,
Au Yeong Shaw Voel
Discover and save your favorite ideas. Come back to expert answers, step-by-step guides, recent topics, and more.
New here? Get started with these tips. How to use Community New member guide