The firewalk
tool is a network security reconnaissance tool that helps us figure out whether our routers are actually doing the job they are supposed to do. It attempts to find what protocols a router/firewall will allow and what it will block.
This tool is incredibly useful during pentesting to verify and validate firewall policies in a corporate environment.
The following is the recipe for using firewalk
:
- If
firewalk
is not found, we can install it using:
apt install firewalk
- We can use the following command to run firewalk:
firewalk -S1-23 -i eth0 192.168.1.1 192.168.10.1
The following screenshot shows the output of the preceding command:
In the preceding command, -i
is for specifying the network interface, -S
is for specifying the port numbers we want to test, and the next two are the router's IP address and the host's IP address that we want to check against our router.