Skip site navigation (1)Skip section navigation (2) 
Date:      Wed, 7 Sep 2005 08:59:39 -0700
From:      "Gayn Winters" <gayn.winters@bristolsystems.com>
To:        "'Boris Karloff'" <modelt20@canada.com>, <freebsd-questions@freebsd.org>
Subject:   RE: port scanning and hidden servers
Message-ID:  <035401c5b3c5$277cb2a0$c901a8c0@workdog>
In-Reply-To: <431f04f6.22c.572a.3251@canada.com>
next in thread | previous in thread | raw e-mail | index | archive | help 


> -----Original Message-----
> From: owner-freebsd-questions@freebsd.org 
> [mailto:owner-freebsd-questions@freebsd.org] On Behalf Of 
> Boris Karloff
> Sent: Wednesday, September 07, 2005 8:19 AM

> I have a user on my network with a Linux box that is
> performing a port scan on all the computers in my network
> manually. He's doing this 'because he can'. Although I've
> asked him not to, he continues to do so.
> 
> 1) How can I block or inhibit port scans launched against my
> freeBSD servers from within my network?
> 
> 2) How can I 'hide' my freeBSD servers from users on the
> network? (If they can't see them, then they don't know to
> scan them.)
> 
> Thanks in advance.
> 
> Harold

1. VLAN security on a managed switch
2. TCP wrappers
3. Ipchains
4. Snort (to generate dynamic fw rules)
 
-gayn

Want to link to this message? Use this URL: <https://mail-archive.FreeBSD.org/cgi/mid.cgi?035401c5b3c5$277cb2a0$c901a8c0>