Security Basics mailing list archives

Re: Re: nmap -sS SYN-SCAN does not find all open Ports?

From: "Arturas Zalenekas" <security () zalenekas net>
Date: Mon, 25 Sep 2006 02:58:46 -0500 (CDT)

-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA1

Hi,

that with VM-Ware could be a problem. Try to boot from the Live-CD
directly and then do the scan. That is what you told. You could give
Sentoo a try. Its also a Live-CD based on Gentoo. They've build a lot of
security tools into (actualy almost everything that I know and use daily).
One more suggestion. Try to scan the FW from the internal network or
dial-in with VPN and scan internal interfaces and try to use the nmap
option -T in polite or other mode. If you have still any questions, feel
free to post.



Kind regards,

Arturas Zalenekas
Network Security Engineer and Analyst

Hello,

thanks for Your answer.

So here are some more information:

I'am trying to scan the firewall (Watchguard X700) of my company from home
for securityreasons. So I know which ports are open, because I'am
administering the firewall.

I use the BackTrack 3.0 (remote-exploit.org) live linux cd. This is based
on slackware. Kernel 2.6.156. with Nmap 4.03.

On the Watchguard X700 all intrusion prevention features are disabled. So
"Block SYN Flod Attacks" is also disabled. The firewall is not blocking me
because I can do normal Connect() scans after a SYN-Scan and with the
Connect() scan the open ports 80 and 443 are correctly found.

Maybe VM-Ware (Windows) is the reason? I've run BackTrack in a vm (direckt
access to nic) under Windows. What I will try this evening is to boot the
notebook directly with  the BackTrack-CD and connecting directly with my
ISP. Then performing a SYN-Scan again. Maybe then I will get better
results.

I will then post my result here.

---------------------------------------------------------------------------
This list is sponsored by: Norwich University

EARN A MASTER OF SCIENCE IN INFORMATION ASSURANCE - ONLINE
The NSA has designated Norwich University a center of Academic Excellence
in Information Security. Our program offers unparalleled Infosec
management
education and the case study affords you unmatched consulting experience.
Using interactive e-Learning technology, you can earn this esteemed
degree,
without disrupting your career or home life.

http://www.msia.norwich.edu/secfocus
---------------------------------------------------------------------------



-----BEGIN PGP SIGNATURE-----
Version: GnuPG v1.4.5 (GNU/Linux)

iD8DBQFFF4w1RNnenGjQKnsRAg9kAJ40iog5G+DhjAhMEVbxJCNdLix4KACeIkCw
OEDafJpTLK1oFW9lzB5AOs0=
=InXK
-----END PGP SIGNATURE-----


---------------------------------------------------------------------------
This list is sponsored by: Norwich University

EARN A MASTER OF SCIENCE IN INFORMATION ASSURANCE - ONLINE
The NSA has designated Norwich University a center of Academic Excellence 
in Information Security. Our program offers unparalleled Infosec management 
education and the case study affords you unmatched consulting experience. 
Using interactive e-Learning technology, you can earn this esteemed degree, 
without disrupting your career or home life.

http://www.msia.norwich.edu/secfocus
---------------------------------------------------------------------------

Current thread:

nmap -sS SYN-SCAN does not find all open Ports? bwagrocki (Sep 19)
- Re: nmap -sS SYN-SCAN does not find all open Ports? Arturas Zalenekas (Sep 21)
- <Possible follow-ups>
- Re: Re: nmap -sS SYN-SCAN does not find all open Ports? bwagrocki (Sep 22)
  - Re: Re: nmap -sS SYN-SCAN does not find all open Ports? Arturas Zalenekas (Sep 25)
    - Re: Re: nmap -sS SYN-SCAN does not find all open Ports? FocusHacks (Sep 26)
    - AW: Re: nmap -sS SYN-SCAN does not find all open Ports? Benjamin Wagrocki (Sep 26)
    - Re: AW: Re: nmap -sS SYN-SCAN does not find all open Ports? Arturas Zalenekas (Sep 27)