newbi question

[Cabotse Aurélien <aurelien.cabotse () srt-poste fr>]

Hi
I'am newbi and I have installed honeyd-0.5a + libprelude-0.8.5 on a 
debian testing.
I have the following file honeyd.conf

### Windows computers
create template
set template personality "Windows NT 4.0 Server SP5-SP6"
set template default tcp action reset
set template default udp action reset
add template tcp port 80 "perl scripts/iisemulator-0.95/iisemul8.pl"
add template tcp port 139 open
add template tcp port 137 open
add template udp port 137 open
add template udp port 135 open
set template  uptime 3284460
bind 10.7.1.112 template

when i load the honeyd with the following  command line :
honeyd -d -p nmap.prints -f /etc/honeyd/honeyd.conf -a nmap.assoc

I obtain :
- Connecting to Tcp prelude Manager server 10.3.3.224:5554.
- SSL authentication succeed with Prelude Manager.
honeyd[357]: listening on eth0: ip  and not ether src 00:60:b0:67:89:93
honeyd[357]: Connection to closed port: udp (10.3.3.187:631 - 
10.255.255.255:631)
honeyd[357]: Connection to closed port: udp (10.2.3.72:138 - 
10.255.255.255:138)
honeyd[357]: Connection to closed port: udp (10.2.3.61:138 - 
10.255.255.255:138)
honeyd[357]: Connection to closed port: udp (10.2.3.176:2301 - 
255.255.255.255:2301)
honeyd[357]: Connection to closed port: udp (10.2.2.180:137 - 
10.255.255.255:137)

I don't understand why there is a closed port for udp 137 because I have 
explicitely closed it
And when i scan the honeypot I obtain the original  O.S. and not the 
honeypot

Starting nmap 3.20 ( www.insecure.org/nmap/ ) at 2003-05-21 17:32 CEST
Interesting ports on 10.7.1.112:
(The 1610 ports scanned but not shown below are in state: closed)
Port       State       Service
22/tcp     open        ssh

Nmap run completed -- 1 IP address (1 host up) scanned in 0.714 seconds

I hope that some one help me
P.S. : sorry for my english

Aurélien Cabotse