FTester – Firewall and IDS Testing tool 防火牆與入侵偵測系統的測試工具

http://dev.inversepath.com/trac/ftester

The Firewall Tester (FTester) is a tool designed for testing firewalls filtering policies and Intrusion Detection System (IDS) capabilities.Features:
– firewall testing
– IDS testing
– simulation of real tcp connections for stateful inspection firewalls and IDS
– connection spoofing
– IP fragmentation / TCP segmentation
– IDS evasion techniques

環境: centos 5.4

安裝模組 (需求，因為它是perl寫的程式)

yum install perl-Net-Pcap.i386 perl-Net-PcapUtils.noarch perl-Net-RawIP.i386 perl-NetPacket.noarch

下載程式

wget http://dev.inversepath.com/download/ftester/ftester-latest.tar.gz

tar zxvf ftester-1.0.tar.gz

cd ftester-1.0

內容包含

– ftest          (the client-side packet generator)
– ftestd        (the sniffer)
– ftest.conf  (ftest example configuration file)
– freport      (a script for comparing ftest and ftestd log files)

參考:
官方 README : http://dev.inversepath.com/ftester/README
http://www.howtoforge.com/test_your_linux_firewall_with_ftester