Download Shareware and Freeware Software for Windows, Linux, Macintosh, PDA

line Home  |  About Us  |  Link To Us  |  FAQ  |  Contact

Serving Software Downloads in 976 Categories, Downloaded 29.546.637 Times

ip-masq-log 1.0.2

  Date Added: August 08, 2010  |  Visits: 530

ip-masq-log

Report Broken Link
Printer Friendly Version


Product Homepage
Download (78 downloads)



This patch can be used on a masquerading firewall (NAT) to keep a log of all the outgoing masqueraded TCP connections. Its even possible to log the name of the user who has opened the connection. This can be a useful security tool for many small networks that are hidden by a masquerading box if users cannot be totally trusted. It can be used with linux 2.2.17, 2.2.19, 2.2.20 and maybe other (future) 2.2.x versions. With this information you can know, in the above scenario, that the connection masquerader.yourdomain.com:666 [-3-] ==> crackme.victim.com:31337 [-2-] was started by attacker.yourdomain.com [-1-] from port 1234. Now please note that this is NOT enough: if attacker.yourdomain.com is a multiuser machine at that time there could be 100 users logged in. Moreover a malicious user could attack crackme.victim.com from attacker.yourdomain.com even without being logged in (with either cron or with a background job or... etc.). Since we dont want the users being able to hide themselves in this way, the masquerader makes a IDENT query to the client and, if IDENT is available, adds the response to the log together with [-1-], [-2-] and [-3-]. Its therefore recommended (although its optional) that you enable the IDENT service on all hosts on the internal network. Please note that if you restrict the IDENT service (e.g. with TCP wrappers) to the masquerader it wont work (exercise: can you understand why?). If your network configuration on the masquerader is OK, remote hosts wont be able to do IDENT queries (since they cant pass through the masquerader). Therefore allowing "everyone" to do IDENT queries on the clients should be safe enough. If you wish to allow remote hosts to do IDENT queries you can install a special IDENT server on the masquerade router, like pnidentd (for example). Whats New in This Release: - Update for linux 2.2.19.

Requirements: No special requirements
Platforms: Linux
Keyword: Ident Ipmasqlog Log Masquerader Masquerading Masquerading Firewall Nat Networking Outgoing Patch System Tcp Used
Users rating: 0/10

License: Freeware Size: 10.24 KB
USER REVIEWS
More Reviews or Write Review


IP-MASQ-LOG RELATED
Utilities  -  quicktables 2.3
quicktables is an iptables firewall and firewall / nat (gateway) script generator. it was created to provide a secure set of iptables rules quickly, while still maintaining few requirements (sh and ifconfig pretty much). quicktables will ask you...
19.46 KB  
Networking Tools  -  HardWall Firewall 15 Stable-7
HardWall Firewall is an iptables firewall script that provides port forwarding, packet filtering, stateful packet inspection, port redirection, masquerading, SNAT, DNAT, NAT, and bridging. HardWall Firewall functions as both a workstation...
33.79 KB  
Network Monitors  -  ManageEngine OpManager Free Edition 6.0
ManageEngine OpManager is an ideal network monitoring software suitable for WAN/LAN monitoring, Server & Applications management, Windows Services and Event Log monitoring, URL, UPS, Firewall monitoring & much more. Being a comprehensive, easy to...
29.36 KB  
Utilities  -  jennifer 0.95.2
jennifer is an educational (albiet oddly named) firewall/NAT script generator, written in python, targetted at linux+iptables systems. It is intended to both (a) generate practical and useful configurations, and (b) demonstrate the concepts...
10.24 KB  
Networking Tools  -  Omniquad Personal Firewall 1.1
Omniquad Personal Firewall is a personal security system to protect your computers from unauthorised access over the LAN and / Internet. Personal Firewall is a software application used to protect a single Internet-connected computer from...
4.03 MB  
Arcade Style Games  -  CroftSoft Code Library 2008.09.28
An Open Source portable pure Java game library with example games, Swing-based sprite animation engine, deployment framework, and firewall tunneling networking. The code is documented in the book Advanced Java Game Programming by David Wallace Croft.
18.08 MB  
Networking Tools  -  NAT iptables firewall script
NAT iptables firewall script is an iptables firewall script. This script is meant to be run once per boot the rules will be double added if you try to run it twice if you need to add another rule during runtime, change the -A to a -I to add it...
 
Proxy Server Tools  -  Siproxd 0.5.13
Siproxd is a proxy/masquerading daemon for the SIP protocol. It handles registrations of SIP clients on a private IP network and performs rewriting of the SIP message bodies to make SIP connections work via an masquerading firewall (NAT)....
215.04 KB  
Utilities  -  OpenBSD Live-CD Firewall 3.8.1
OpenBSD Live-CD Firewall is an OpenBSD-based pf (packet filter) firewall, with DNS, squid, NAT, and a DHCP server (dnsmasq) for internal clients preconfigured. Settings and log files can be saved to a USB device. Saved settings will be restored...
329.1 MB  
Log Analyzers  -  Securepoint Log Analyzer 1.0.0b
The Securepoint Log Analyzer allows to analyse the log-files of your Securepoint firewall server. You can use the Log Analyzer with other firewalls, too. The tool is freeware and works under Windows98, NT, 2000, XP und ME. Features: -...
1.17 MB  
NEW DOWNLOADS IN NETWORK & INTERNET, NETWORKING TOOLS
Network & Internet  -  Free WiFi Hotspot 3.3.1
Free WiFi Hotspot is a super easy solution to turn your laptop or notebook into a portable Wi-Fi hotspot, wirelessly sharing your internet connections like DSL, Cable, Bluetooth, Mobile Broadband Card, Dial-Up, etc. through the built-in wireless...
1.04 MB  
Network & Internet  -  Easy Uploads 1.8
Easy uploads is a file storage media streaming application designed by Filestreamers that allows you to upload, store, and stream your files from their virtually unlimited file storage server. Easy Uploads can backup,share, and stream your files...
615.97 KB  
Network & Internet  -  IPv6 CARE 3.2b
IPv6 CARE, "IPv6 Compliant Automatic Runtime Environment", is a Linux tool able to patch ipv6-agnostic programs on-the-fly ('patch' mode). It can also generate a diagnosis about the IPv6 compliance of an application ('check' mode).
409.6 KB  
Network & Internet  -  PacketFence ZEN 3.1.0
PacketFence is a fully supported, trusted, Free and Open Source network access control (NAC) system. Boosting an impressive feature set including a captive-portal for registration and remediation, centralized wired and wireless management, 802.1X...
1024 MB  
Network & Internet  -  django-dbstorage 1.3
A Django file storage backend for files in the database.
10.24 KB  
Networking Tools  -  gvrpad 0.1
gvrpad is a daemon that makes GVRP announcements of all VLAN interfaces on a FreeBSD system. GVRP is the GARP VLAN Registration Protocol, defined in IEEE 802.1Q (VLANS); GARP is the Generic Attribute Registration Protocol, defined in 802.1D...
15.36 KB  
Networking Tools  -  Cheops 0.61
Cheops is an Open Source Network User Interface. It is designed to be the network equivalent of a swiss-army knife, unifying your network utilities. Cheops is for the network what a file manager is for your filesystem..
317.44 KB  
Networking Tools  -  dynacc 0.5.0
Dynacc aims to be a Pakage which gives you control other your Internet Connection. It runs a linux router/host which provides MASQ services and HTTP proxying for a LAN. It gives you the Power to define users/groups which are allowed to make...
122.88 KB  
Networking Tools  -  ssh tunnel on demand 1.0
ssh tunnel on demand provides a script that creates an SSH tunnel on demand. ssh tunnel on demand is a script that makes it possible for a user to create an SSH tunnel to a server and connect to it without needing an account on the box or any...
13.31 KB  
Networking Tools  -  strongSwan 4.1.5
strongSwan is an OpenSource IPsec implementation for the Linux operating system. strongSwan is an OpenSource IPsec implementation for the Linux operating system. In order to have a stable IPsec platform to base our future extensions of the X.509...
1.7 MB