Date: Sat, 26 Nov 2016 14:39:26 -0600 (CST) From: "Valeri Galtsev" <galtsev@kicp.uchicago.edu> To: "Ernie Luzar" <luzar722@gmail.com> Cc: "Bernt Hansson" <bah@bananmonarki.se>, "Freebsd Questions" <freebsd-questions@freebsd.org> Subject: Re: open ports Message-ID: <63024.76.193.16.216.1480192766.squirrel@cosmo.uchicago.edu> In-Reply-To: <5839E997.1060000@gmail.com> References: <5839D239.7010503@gmail.com> <a96d1ad6-4ea0-98d5-fdec-34b9fd5b1b39@bananmonarki.se> <5839E997.1060000@gmail.com>
next in thread | previous in thread | raw e-mail | index | archive | help
On Sat, November 26, 2016 1:59 pm, Ernie Luzar wrote: > Bernt Hansson wrote: > >> On 2016-11-26 19:19, Ernie Luzar wrote: >>> Running 11.0 release, ipfilter firewall with rules to block inbound >>> port 21, 25, 110. Nmap shows those ports are open even though the >>> firewall is blocking them. Is this expected? >>> >> You are testing them from the "outside" >> > > Issued this command from the command line of the host. > IE; not from some host on the public net. > > nmap -v xxx.xxx.xxx.xxx x = host public IP address > As Bernt Hansson has mentioned, this command should have been executed on different host. You are testing rile for _inbound_ traffic, that is why different host, not the machine itself. I hope this helps. Valeri > > _______________________________________________ > freebsd-questions@freebsd.org mailing list > https://lists.freebsd.org/mailman/listinfo/freebsd-questions > To unsubscribe, send any mail to > "freebsd-questions-unsubscribe@freebsd.org" > ++++++++++++++++++++++++++++++++++++++++ Valeri Galtsev Sr System Administrator Department of Astronomy and Astrophysics Kavli Institute for Cosmological Physics University of Chicago Phone: 773-702-4247 ++++++++++++++++++++++++++++++++++++++++
Want to link to this message? Use this URL: <https://mail-archive.FreeBSD.org/cgi/mid.cgi?63024.76.193.16.216.1480192766.squirrel>