Beating a Firewall

#1
bruder

Posted 25 September 2007 - 12:39 PM

Newbie

Members
2 posts

We are making a small firewall type utility for our internal company and as part of my task I have to find out all vulnerabilities in Firewalls. So tell me, how do I get around a firewall that has most non-common ports blocked (open ports are the normal, 1-1024).

#2
Guest_Jordan_*

Posted 26 September 2007 - 05:16 AM

Guests

To get around a firewall is fairly simple and I'm not sure if there is anyway to block it. A proxy server on Port 80, 22, 21 or any of your standard ports will allow someone to get out (these are freely available on the internet). Another way is to do SSH port Forwarding which basically simulates a Socks 5 proxy server once you have logged in.

Hope that helps.

#3
Guest_Kaabi_*

Posted 07 November 2007 - 07:15 PM

Guests

I know there are firewalls out there that can't be penetrated, at least not by incredibly expert hackers.

#4
TcM

Posted 12 November 2007 - 03:23 AM

Writes binary right handed and hex left handed

Members
11,147 posts

Can you state some? Are they software or hardware?

#5
lasthell

Posted 24 December 2007 - 01:02 AM

Newbie

Members
7 posts

There is not a single firewall which can not be penetrated. The basic reason behind this is firewall only looks for ports and does not decode the protocol of the data flowing through that port. You can just make your firewall stronger not 100% penetration-proof.. First instead of blacklist of ports to be blocked, maintain the white list of ports to be allowed. You can embed NBA(Network behavior analysis) module to make firewall take more intelligent actions.
You need to use advanced IDS systems to decode application level protocols to take care of shortcomings.

#6
telboon

Posted 29 July 2008 - 07:20 AM

Newbie

Members
26 posts

Since you have open ports on 1-1024, any services that uses these ports can be hacked. If there's a vulnerability in your HTTP daemon, it's useless even with that firewall.

Even if you were to consider backdoor being built, it's not much of use as well. A smarter script kiddie can get the backdoor to run on common port, but not used on your computer(eg 1), and the traffic will go pass as well.

I guess the stuff your firewall blocks out is backdoor with default settings, which are the common stuff script kiddie makes. Hopefully you wouldn't get the wrath of some pro people, and you *should* be safe...

#7
lucy2020

Posted 25 October 2008 - 11:18 PM

Newbie

Members
1 posts

There is allways ways to beat firewalls, as long as their are connected to the internet.

#8
Smackie

Posted 12 November 2008 - 09:18 AM

Newbie

Members
1 posts

yeah there will always be away past a firewall.. backdoors, and alot of other ways that i ain't going to get into.

#9
morefood2001

Posted 20 November 2008 - 10:02 AM

Speaks fluent binary

Members
1,720 posts

no firewall is fool proof if it has one open port either way on it.

I beat our university firewall by employing a 24x7 ssh socks proxy, but be warned that it is very bandwidth intensive!