Date: Mon, 14 Mar 2005 12:03:37 -0500 From: sn1tch <dot.sn1tch@gmail.com> To: daniel quinn <freebsd@danielquinn.org> Cc: freebsd-questions@freebsd.org Subject: Re: ipfw and nmap Message-ID: <a82b9719050314090311d9eea9@mail.gmail.com> In-Reply-To: <200503141152.55407.freebsd@danielquinn.org> References: <200503141152.55407.freebsd@danielquinn.org>
next in thread | previous in thread | raw e-mail | index | archive | help
You could try using nmap with the -sA (ACK) scanning...this is good for mapping firewall rulesets to see what is being let in. You could also use -f (fragment) with -sS to send fragmented packets...this will show open ports unless most of the time too. But -sA is better since the firewall things its a legitimate request and not a port scan On Mon, 14 Mar 2005 11:52:54 -0500, daniel quinn <freebsd@danielquinn.org> wrote: > i've been experimenting with ipfw since moving some of my machines from linux > to freebsd and i've run across an oddity wrt nmap and freebsd firewalls. it > doesn't seem to work and the activity isn't logged either. > > the firewall is working though. ssh goes through, while other ports are being > blocked (and logged). i've confirmed this with telnet. but nmap still comes > up empty. i'd like to be able to do a proper portscan, but is this a feature > with ipfw or a lack of feature in nmap? > > for the purposes of this test, i've used a variation on the firewall supplied > in the freebsd handbook: > > www.freebsd.org/doc/en_US.ISO8859-1/books/handbook/firewalls-ipfw.html > > -- > ...he who in dealing with the empire loves his subjects as one should love > one's body is the best person to whom one can commit the empire. > - lau tzu, "tao te ching: chapter xiii" > _______________________________________________ > freebsd-questions@freebsd.org mailing list > http://lists.freebsd.org/mailman/listinfo/freebsd-questions > To unsubscribe, send any mail to "freebsd-questions-unsubscribe@freebsd.org" > -- You've officially been Gmailed
Want to link to this message? Use this URL: <https://mail-archive.FreeBSD.org/cgi/mid.cgi?a82b9719050314090311d9eea9>