Download Shareware and Freeware Software for Windows, Linux, Macintosh, PDA

line Home  |  About Us  |  Link To Us  |  FAQ  |  Contact

Serving Software Downloads in 976 Categories, Downloaded 32.291.531 Times

ip-masq-log 1.0.2

  Date Added: August 08, 2010  |  Visits: 566

ip-masq-log

Report Broken Link
Printer Friendly Version


Product Homepage
Download (78 downloads)

This patch can be used on a masquerading firewall (NAT) to keep a log of all the outgoing masqueraded TCP connections. Its even possible to log the name of the user who has opened the connection. This can be a useful security tool for many small networks that are hidden by a masquerading box if users cannot be totally trusted. It can be used with linux 2.2.17, 2.2.19, 2.2.20 and maybe other (future) 2.2.x versions. With this information you can know, in the above scenario, that the connection masquerader.yourdomain.com:666 [-3-] ==> crackme.victim.com:31337 [-2-] was started by attacker.yourdomain.com [-1-] from port 1234. Now please note that this is NOT enough: if attacker.yourdomain.com is a multiuser machine at that time there could be 100 users logged in. Moreover a malicious user could attack crackme.victim.com from attacker.yourdomain.com even without being logged in (with either cron or with a background job or... etc.). Since we dont want the users being able to hide themselves in this way, the masquerader makes a IDENT query to the client and, if IDENT is available, adds the response to the log together with [-1-], [-2-] and [-3-]. Its therefore recommended (although its optional) that you enable the IDENT service on all hosts on the internal network. Please note that if you restrict the IDENT service (e.g. with TCP wrappers) to the masquerader it wont work (exercise: can you understand why?). If your network configuration on the masquerader is OK, remote hosts wont be able to do IDENT queries (since they cant pass through the masquerader). Therefore allowing "everyone" to do IDENT queries on the clients should be safe enough. If you wish to allow remote hosts to do IDENT queries you can install a special IDENT server on the masquerade router, like pnidentd (for example). Whats New in This Release: - Update for linux 2.2.19.

Requirements: No special requirements
Platforms: Linux
Keyword: Ident Ipmasqlog Log Masquerader Masquerading Masquerading Firewall Nat Networking Outgoing Patch System Tcp Used
Users rating: 0/10

License: Freeware Size: 10.24 KB
IP-MASQ-LOG RELATED
Utilities  -  quicktables 2.3
quicktables is an iptables firewall and firewall / nat (gateway) script generator. it was created to provide a secure set of iptables rules quickly, while still maintaining few requirements (sh and ifconfig pretty much). quicktables will ask you...
19.46 KB  
Networking Tools  -  HardWall Firewall 15 Stable-7
HardWall Firewall is an iptables firewall script that provides port forwarding, packet filtering, stateful packet inspection, port redirection, masquerading, SNAT, DNAT, NAT, and bridging. HardWall Firewall functions as both a workstation...
33.79 KB  
Network Monitors  -  ManageEngine OpManager Free Edition 6.0
ManageEngine OpManager is an ideal network monitoring software suitable for WAN/LAN monitoring, Server & Applications management, Windows Services and Event Log monitoring, URL, UPS, Firewall monitoring & much more. Being a comprehensive, easy to...
29.36 KB  
Networking Tools  -  Omniquad Personal Firewall 1.1
Omniquad Personal Firewall is a personal security system to protect your computers from unauthorised access over the LAN and / Internet. Personal Firewall is a software application used to protect a single Internet-connected computer from...
4.03 MB  
Arcade Style Games  -  CroftSoft Code Library 2008.09.28
An Open Source portable pure Java game library with example games, Swing-based sprite animation engine, deployment framework, and firewall tunneling networking. The code is documented in the book Advanced Java Game Programming by David Wallace Croft.
18.08 MB  
Networking Tools  -  NAT iptables firewall script
NAT iptables firewall script is an iptables firewall script. This script is meant to be run once per boot the rules will be double added if you try to run it twice if you need to add another rule during runtime, change the -A to a -I to add it...
 
Proxy Server Tools  -  Siproxd 0.5.13
Siproxd is a proxy/masquerading daemon for the SIP protocol. It handles registrations of SIP clients on a private IP network and performs rewriting of the SIP message bodies to make SIP connections work via an masquerading firewall (NAT)....
215.04 KB  
Utilities  -  OpenBSD Live-CD Firewall 3.8.1
OpenBSD Live-CD Firewall is an OpenBSD-based pf (packet filter) firewall, with DNS, squid, NAT, and a DHCP server (dnsmasq) for internal clients preconfigured. Settings and log files can be saved to a USB device. Saved settings will be restored...
329.1 MB  
Log Analyzers  -  Securepoint Log Analyzer 1.0.0b
The Securepoint Log Analyzer allows to analyse the log-files of your Securepoint firewall server. You can use the Log Analyzer with other firewalls, too. The tool is freeware and works under Windows98, NT, 2000, XP und ME. Features: -...
1.17 MB  
Log Analyzers  -  adcfw-log 0.10.0
adcfw-log is a tool for analyzing firewall logs in order to extract meaningful information. It is designed to be a standalone script with very few requirements that can generate different kinds of reports, such as fully formatted reports of what...
83.97 KB  
NEW DOWNLOADS IN NETWORK & INTERNET, NETWORKING TOOLS
Network & Internet  -  Free WiFi Hotspot 3.3.1
Free WiFi Hotspot is a super easy solution to turn your laptop or notebook into a portable Wi-Fi hotspot, wirelessly sharing your internet connections like DSL, Cable, Bluetooth, Mobile Broadband Card, Dial-Up, etc. through the built-in wireless...
1.04 MB  
Network & Internet  -  Easy Uploads 1.8
Easy uploads is a file storage media streaming application designed by Filestreamers that allows you to upload, store, and stream your files from their virtually unlimited file storage server. Easy Uploads can backup,share, and stream your files...
615.97 KB  
Network & Internet  -  PacketFence ZEN 3.1.0
PacketFence is a fully supported, trusted, Free and Open Source network access control (NAC) system. Boosting an impressive feature set including a captive-portal for registration and remediation, centralized wired and wireless management, 802.1X...
1024 MB  
Network & Internet  -  django-dbstorage 1.3
A Django file storage backend for files in the database.
10.24 KB  
Network & Internet  -  SQL Inject Me 0.4.5
SQL Inject Me is a Firefox extension used to test for SQL Injection vulnerabilities. The tool works by submitting your HTML forms and substituting the form value with strings that are representative of an SQL Injection attack.
133.12 KB  
Networking Tools  -  gvrpad 0.1
gvrpad is a daemon that makes GVRP announcements of all VLAN interfaces on a FreeBSD system. GVRP is the GARP VLAN Registration Protocol, defined in IEEE 802.1Q (VLANS); GARP is the Generic Attribute Registration Protocol, defined in 802.1D...
15.36 KB  
Networking Tools  -  Cheops 0.61
Cheops is an Open Source Network User Interface. It is designed to be the network equivalent of a swiss-army knife, unifying your network utilities. Cheops is for the network what a file manager is for your filesystem..
317.44 KB  
Networking Tools  -  ssh tunnel on demand 1.0
ssh tunnel on demand provides a script that creates an SSH tunnel on demand. ssh tunnel on demand is a script that makes it possible for a user to create an SSH tunnel to a server and connect to it without needing an account on the box or any...
13.31 KB  
Networking Tools  -  strongSwan 4.1.5
strongSwan is an OpenSource IPsec implementation for the Linux operating system. strongSwan is an OpenSource IPsec implementation for the Linux operating system. In order to have a stable IPsec platform to base our future extensions of the X.509...
1.7 MB  
Networking Tools  -  triggers 0.41
trigger is a lightweight, asynchronous notification mechanism to set off events in and across systems. The poor mans daily snapshot, glastree builds live backup trees, with branches for each day. Users directly browse the past to recover older...
14.34 KB