How to test SPI?

Discussion in 'other firewalls' started by dmenace, Jan 24, 2009.

Thread Status:
Not open for further replies.
  1. dmenace

    dmenace Registered Member

    Joined:
    Nov 29, 2006
    Posts:
    275
    Hi,

    I am just wondering how to test the SPI (stateful packet inspection) in software / hardware firewalls.

    Is there a web service / application. Or do I have to use WinPCap or Ethereal - In that case how do I craft the special network packets to send out?

    Obviously it would be good to differentiate between basic SPI, advanced SPI and normal packet filtering.

    See here for an example. Thanks Phant0m!
     
  2. 1hui

    1hui Registered Member

    Joined:
    Aug 9, 2007
    Posts:
    54
    Maybe you can use Sniffer Pro or Iris Network Traffic Analyzer.

    It looks like that Sniffer supports IPv6 packets,and Iris Network Traffic Analyzer is easy to modify the packets (IMO:D )
     
  3. rdsu

    rdsu Registered Member

    Joined:
    Jun 28, 2003
    Posts:
    4,456
    The tests should be updated... :)
     
  4. vijayind

    vijayind Registered Member

    Joined:
    Aug 9, 2008
    Posts:
    1,413
    Don't know much of softboxes. I believe they use a packet sniffer (like WireShark) on target & source PC. Then use a software based packet generator like NTG for creating custom packets. You can download a 15 trial from download.com:
    http://www.download.com/Network-Traffic-Generator-and-Monitor/3000-2085_4-10668961.html

    But hardware ones, are tested using professional tools. For example: Spirent ThreatEx ( to check for known attack shielding capabilities) along with Spirent Avalanche ( to stress test ) and Spirent TestCenter ( to test particular packet flow/scenario. Including SPI ).

    If you are in a professional network test job/company, I would recommend the above testing equipment. More details here:
    http://www.spirentfederal.com/IP/Products/ThreatEx/Overview/
     
    Last edited: Jan 24, 2009
  5. Meriadoc

    Meriadoc Registered Member

    Joined:
    Mar 28, 2006
    Posts:
    2,642
    Location:
    Cymru
    Haven't any links here at home but search for pen testing (penetration testing.)
     
Loading...
Thread Status:
Not open for further replies.