Month: February 2012

SonicWall NSA 240 stateful inspection verification with nmap and tcpdump for pci

Feb 4, 2012

—

by

techdruid

in Troubleshooting

Item 1.3.6 of PCI DSS is this : Verify that the firewall performs stateful inspection (dynamic packet filtering). (Only established connections should be allowed in, and only if they are associated with a previously established sesion.) According to nmap documentation, you can test for a stateful packet inspection firewall by using the following command. In…