From owner-freebsd-questions@FreeBSD.ORG Sat Mar 29 07:12:37 2003 Return-Path: Delivered-To: freebsd-questions@freebsd.org Received: from mx1.FreeBSD.org (mx1.freebsd.org [216.136.204.125]) by hub.freebsd.org (Postfix) with ESMTP id 8E75237B401 for ; Sat, 29 Mar 2003 07:12:37 -0800 (PST) Received: from fep3.cogeco.net (smtp.cogeco.net [216.221.81.25]) by mx1.FreeBSD.org (Postfix) with ESMTP id E369443FD7 for ; Sat, 29 Mar 2003 07:12:36 -0800 (PST) (envelope-from dlavigne6@cogeco.ca) Received: from dhcp-17-14.kico2.on.cogeco.ca (d226-42-146.home.cgocable.net [24.226.42.146]) by fep3.cogeco.net (Postfix) with ESMTP id 026E82A35; Sat, 29 Mar 2003 10:12:36 -0500 (EST) Date: Sat, 29 Mar 2003 10:16:18 -0500 (EST) From: Dru X-X-Sender: dlavigne6@dhcp-17-14.kico2.on.cogeco.ca To: jason In-Reply-To: <20030329073128.M33245-100000@monsterjam.org> Message-ID: <20030329101058.V17599@dhcp-17-14.kico2.on.cogeco.ca> References: <20030329073128.M33245-100000@monsterjam.org> MIME-Version: 1.0 Content-Type: TEXT/PLAIN; charset=US-ASCII cc: questions@freebsd.org Subject: Re: VERY annoying nmap problem. X-BeenThere: freebsd-questions@freebsd.org X-Mailman-Version: 2.1.1 Precedence: list List-Id: User questions List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , X-List-Received-Date: Sat, 29 Mar 2003 15:12:41 -0000 On Sat, 29 Mar 2003, jason wrote: > This has been going on since version 3.0 of nmap for freebsd.. > > su-2.05b# uname -a > FreeBSD monsterjam.org 4.8-RC FreeBSD 4.8-RC #0: Mon Mar 10 16:54:44 > > su-2.05b# nmap -sU 10.1.1.10 > > Starting nmap V. 3.00 ( www.insecure.org/nmap/ ) > sendto in send_udp_raw: sendto(3, packet, 28, 0, 10.1.1.10, 16) => > Permission denied > Sleeping 15 seconds then retrying > ^Ccaught SIGINT signal, cleaning up > su-2.05b# > > this is nmap installed from the ports. I have tried it from source and get > the same thing. regular port scans work though > > su-2.05b# nmap 10.1.1.10 > > Starting nmap V. 3.00 ( www.insecure.org/nmap/ ) > Interesting ports on bush (10.1.1.10): > (The 1595 ports scanned but not shown below are in state: closed) > Port State Service > 22/tcp open ssh > 111/tcp open sunrpc > 139/tcp open netbios-ssn > 631/tcp open ipp > 6000/tcp open X11 > 32771/tcp open sometimes-rpc5 > > Nmap run completed -- 1 IP address (1 host up) scanned in 1 second > su-2.05b# > > I emailed fydor a few times and got no help. > anyone have any ideas? This used to work fine before 3.0 What firewall are you using and what rules have you created for UDP? Using -sU (UDP scan) sends UDP packets. Whereas not specifying a switch assumes a full connect scan which uses TCP. Dru