Monday, December 22, 2014

Wireshark: Firewall ACL Rule Help

Have you ever taken a wireshark capture, found the packets that you need to find, and wonder how to block that at your firewall?  Wireshark does make this easy for you, if you know where to go.  In my example, I select the packet I dont want, and go to Tools --> Firewall ACL Rules and it will show you what you should type in for your ACL for denying traffic.  See the screenshot below.  Play around with it if you are the firewall admin.  It can help you out.

Posted by

1 comment:

  1. nugaxstruxiDecember 30, 2014 at 11:41 AM

    That´s a pretty cool feature I didn´t knew yet! Thanks for posting!

    ReplyDelete

Your comment will be reviewed for approval. Thank you for submitting your comments.

Subscribe to: Post Comments (Atom)