How to Parse Firewall Configs with Nipper.

Who
said analyzing firewalls and network devices was something tedious and cumbersome?
Well your problems are over: Introducing Nipper, the network device configuration
parser. I have found that nipper aids tremendously in helping audit and analyze network
devices during our assessments, reducing tremendously the time it takes to analyze
a network device configuration file. Nipper offers comprehensive and detailed reports
which anyone can understand. Nipper helps security administrators to check their network
devices for known vulnerabilities and configuration flaws, and attending the need
for industry standards and compliance controls such as PCI, HIPAA, ISO and BITS, and
the best part of using Nipper is the fact that this tool is absolutely free.

Supported
Devices

· Checkpoint
VPN-1/Firewall-1

· Cisco
Catalysts

· Cisco
Content Services Switch.

· Cisco
Routers

· Cisco
Security Applicances (PIX, ASA and FWSM)

· Juniper
NetScreens Firewalls

· Nokia
IP Firewalls

· Notel
Passports

· Sonicwall
SonicOS Firewalls

How
to use Nipper

1. Download
Nipper for free at : http://sourceforge.net/forum/forum.php?forum_id=722046

2. Unzip
the file to a working directory ex: c:\nipper

3. Open
the command line ( start > run > cmd )

4. Create
a folder inside the working directory called config ( c:\nipper\config )

5. Obtain
a copy of your device’s config file.

Example
on how to get the config of a Cisco Router.

A. Log
on to the device IOS or Console.

B. Authenticate
with your credentials.

C. Type
at the command line: show
running config

D. Copy
the contents displayed.

E. Open
notepad (start
-> run -> notepad)

F. Paste
the contents onto notepad and save it as

. config

6. Copy
the configuration file created above to the
config directory ( c:\nipper\config)

7. Open
the command prompt and type the following command
to start the analysis process:

Command:

List
of device type and Output: