Filewatcher File Search File Search
Catalog
Content Search
» » » » » pixilate-0.4.2_1.tbz » Content »
pkg://pixilate-0.4.2_1.tbz:34572/share/doc/pixilate/  info  downloads

pixilate…  more info»

README

pixilate
Author Kirby Kuehl (kkuehl@cisco.com) 2002-2005
Homepage: http://winfingerprint.sourceforge.net

For a more detailed description and usage, see the pixilate manpage.

Description:

   Pixilate is a TCP/UDP/ICMP/IGMP/IP packet generation utility.

   Pixilate parses an input file containing Cisco PIX 6.2x - 6.3x or Cisco IOS
formatted access-list entries and generates the corresponding packets
for each rule.  If an access-list is not available, it is still quite simple
to generate the access-list by hand.  For information on writing PIX access
lists see the following URL:
http://www.cisco.com/univercd/cc/td/doc/product/iaabu/pix/pix_62/cmdref/ab.htm#xtocid7
  
   Pixilate is an ACL validation tool.

   The primary goal of pixilate is to validate firewall ACLs. Pixilate
accomplishes this by generating the appropriate packets for each access
list entry. Since the source address will often be spoofed, pixilate
does not contain any packet capturing capability. If you are generating
access lists by hand and specify the source address to be either your actual
IP address or an IP address on your network that you are capable of sniffing
via promiscuous mode or a spanned port on a switch, you must provide your own
sniffer. Tcpdump or ethereal are excellent choices.

   Pixilate will also require a remote sniffer capable of receiving all traffic
with a destination behind the firewall. This will typically be a spanned port
on the same switch as the firewall itself. This is obviously needed to validate
various destination addresses. Packets with a destination of 'any' will be
sent to the default destination address supplied by the required -d option.

   Pixilate currently supports TCP/UDP/ICMP (various ICMP types), and IGMP
utilizing the libnet 1.1.x library. Libnet 1.1.x is available at
(http://www.packetfactory.net/projects/libnet/). Pixilate has been tested with
1.1.0 and 1.1.1 RC 005. Previous versions of Libnet
(1.0.x) are incompatible. Root privileges are required to utilize libnet/raw 
sockets. It is NOT recommended to set the setuid bit for this application!

Disclaimer:
Although I work for Cisco Systems, this tool is not endorsed,
supported, guaranteed, or warranted by Cisco Systems.

Requirements:
pixilate should work on any UNIX-like OS but was developed and tested on
FreeBSD 4.9 and Linux using automake 1.5 and autoconf 2.53 and on Solaris 8
using automake 1.7.1 and autoconf 2.54. Note: On Solaris 8, you will need to
apply a patch to libnet 1.1.0 see: 
http://online.securityfocus.com/archive/89/289014/2002-08-25/2002-08-31/0

Libnet 1.1.2 library available at
(http://www.packetfactory.net/projects/libnet/).
NOTE: Previous versions of Libnet (1.0.x) and 1.1.1 are incompatible.
Root privileges are required to utilize libnet/raw sockets. It is NOT recommended to set the setuid bit for this application!
Libnet 1.1.x is required.
and tested using ethereal and tcpdump.

Compilation:
To compile using auto* tools.
./configure; make; make install

If you receive the following error:
configure: error: cannot find install-sh or install.sh in . ./.. ./../..
Type "automake --add-missing"

If you have installed libnet 1.1.x and you get a complaint about not being able
to locate libnet-config, copy libnet-config manually into /usr/local/bin
See: http://online.securityfocus.com/archive/89/290473/2002-09-01/2002-09-07/0

To compile by hand:
gcc -Wall -g `libnet-config --defines` pixilate.c parser.c port_lookup.c protocol_lookup.c icmp_type_lookup.c stats.c packetize.c -o pixilate `libnet-config --libs`

If you make install pixilate, the manpage will be install in /usr/local/man/man1
Otherwise, to view the manpage and all the relevant documentation, type the following:
nroff -mdoc pixilate.1 | less
Results 1 - 1 of 1
Help - FTP Sites List - Software Dir.
Search over 15 billion files
© 1997-2017 FileWatcher.com