i've setup my own firewall and my friend would like to help me try to find any security holes, using nessus. the problem is that he has his own firewall, which is blocking his attack to me. so it does not measure my firewall.

he is afraid to fully open his firewall. so what particular ports should he open to allow this test to be done?

port 3001 is nessusd I believe. if he's that conscious about his security, he probably knows how to make a rule to allow outgoing on certain ports.. but if not, this rule may work (not tested):


on his computer:
#TO ALLOW OUTGOING NESSUSD attempts
/sbin/ipchains -A output -p tcp -i $EXTERNAL_INTERFACE -s $IP_OF_INTERNAL_LAN 1024:65355 -d $EXTERNAL_IP_ADDRESS 3001 -j ACCEPT

and on your computer..
#TO ACCEPT INCOMING NESSUSD attempts
/sbin/ipchains -A input -p tcp -i $EXTERNAL_INTERFACE -s $EXTERNAL_IP_ADDRESS 3001 -d $IP_OF_INTERNAL_LAN 3001 -j ACCEPT


that hasn't been tested.. i'm not at a linux console.. but i believe it should work..

regards,

~kyle
/sbin/ipchains

Here's a really simple port scan done by a web site telling people how bad windows security is (plugging his product) :
This will not do a probe instantly, just click on the links.
https://grc.com/x/ne.dll?bh0bkyd2