sh4d03 <sh4d03@TPG.com.au> writes:

> I've run ShieldsUp from my Windows workstations (behind the router)
> but does that scan the Windows box or the router?

That depends entirely on your setup. Prossibly a bit of both. If your pf
box does NAT, I'm not convinced ShieldsUp is able to tell the difference
between your OpenBSD box and machines behind it.

Unless your setup is simply "pass all", at least some packets will never
make it past the router. In general, connections which are let through a
pf filtering via a pass rule will pass end to end.

ShieldsUp is good for a few laughs, though - I just ran the various
tests from my laptop. According to Gibson, I failed. Three highly
dangerous things, we are lead to believe:

* SSH answers

* SMTP answers (as in:

<<< 220 delilah.datadok.no ESMTP spamd IP-based SPAM blocker; Tue Jan 11 09:34:55 2005
>>> HELO www.abuse.net
<<< 250 Hello, spam sender. Pleased to be wasting your time.)

* ping answers

Then of course there's the sermon at https://grc.com/x/ne.dll?bh0bkyd2
which warns about the grave and immediate danger of reverse DNS.

--
Peter N. M. Hansteen, member of the first RFC 1149 implementation team
http://www.blug.linux.no/rfc1149/ http://www.datadok.no/ http://www.nuug.no/
"First, we kill all the spammers" The Usenet Bard, "Twice-forwarded tales"