Date: Tue, 11 Feb 2003 20:37:14 +0100 From: Kirill Ponomarew <ponomarew@oberon.net> To: Redmond Militante <r-militante@northwestern.edu> Cc: Fernando Gleiser <fgleiser@cactus.fi.uba.ar>, freebsd-security@freebsd.org Subject: Re: n00b ipf/ipnat questions Message-ID: <20030211193714.GA73452@krion> In-Reply-To: <20030211141831.GB824@darkpossum> References: <20030211002256.GA824@darkpossum> <20030211090154.R30313-100000@cactus.fi.uba.ar> <20030211141831.GB824@darkpossum>
next in thread | previous in thread | raw e-mail | index | archive | help
Hi, On Tue, Feb 11, 2003 at 08:18:31AM -0600, Redmond Militante wrote: > thanks for responding i made a few changes last night to my > config, but i still see open ports when i run nmap , despite > my ipf.rules. if you like, i can post my updated config, > although it's not that different... > > tcp ports seem to be open. i'm using: nmap -sS -v -O > my.hostname.org here's the results of an nmap run it's known issue with ipf/nmap ;-) Try to use "return-rst" in ipf rules. To Unsubscribe: send mail to majordomo@FreeBSD.org with "unsubscribe freebsd-security" in the body of the message
Want to link to this message? Use this URL: <https://mail-archive.FreeBSD.org/cgi/mid.cgi?20030211193714.GA73452>