Assuming we have configured our Firewall (FW) or Intrusion Prevention Systems (IPS) with a maximum of 4 UDP Sessions. If we try to establish a new connection greater than 4 it should not be allowed. As we don't have connection establishment phase (3-way Handshake) in UDP, connection is identified at the time of data transfer and dropped.
Running nc command to listen on UDP ports in the background.
Once UDP Server is up and running, we will connect to different ports on Server from Client machine.
Snapshot showing active sessions (ESTABLISHED state) on server.
Snapshot showing sessions on Client side.
If we go for a 5th connection it will successfully establish s Session but if we try to transfer data ot UDP Sessions Limit rule kicks in and the connection will be blocked
If we successfully transfer data on 5th Session, it means “UDP Maximum Connections” set on FW/IPS is not working properly.
Connection blocking is reported back to Client using ICMP UDP Port unreachable error message. In the case of TCP Client gets a packet from Server with RESET flag set.
http://darshanams.blogspot.in/2012/08/web-server-security-php-hardening.html
http://darshanams.blogspot.in/2012/07/portservice-scanning-using-snmp.html
http://darshanams.blogspot.in/2012/06/sip-security1-scanning-voippbx-servers.html
Thank You!!!
I read your post and got it quite informative. I couldn't find any knowledge on testing. I would like to thanks for sharing this article here. Oracle Fusion Apps Training
ReplyDeleteWow great blog article. Really thank you! Awesome.top security companies in singapore
ReplyDeleteWow awesome blog post. Really thank you! Fantastic.get more info about security guard
ReplyDeleteThank you for your blog post. Much thanks again. Really Cool.
ReplyDeletesecurity company
Protect your home day and night home security systems
ReplyDeleteHello what a splendid post I have run over and accept me I have been looking out for this comparative sort of post for recent week and barely went over this. Much thanks and will search for additional postings from you. jutawantoto
ReplyDeleteExceptionally enlightening post! There is a ton of data here that can assist any business with getting everything rolling with a fruitful informal communication crusade. toto88
ReplyDeleteMagnificently composed article, if by some stroke of good luck all bloggers offered a similar substance as you, the web would be a far superior spot.. togel138
ReplyDeleteExtraordinary review, I'm a major devotee to remarking on web journals to illuminate the blog scholars realize that they've added something beneficial to the internet!.. toto20
ReplyDeleteWhat a fantabulous post this has been. Never seen this sort of helpful post. I'm thankful to you and expect more number of posts like these. Much thanks. toto slot
ReplyDeleteI can see that you are a specialist at your field! I'm sending off a site soon, and your data will be extremely valuable for me.. Gratitude for all your assistance and wishing you all the outcome in your business. slot gacor
ReplyDeleteI'm extremely glad to find your post as it will become on top in my assortment of most loved websites to visit. slot dana
ReplyDelete