Nmap Announce mailing list archives
how to know scan is correct?
From: Reinoud Koornstra <Reinoud.Koornstra () ibbnet org>
Date: Wed, 9 Feb 2000 23:25:44 +0100 (MET)
Nice issue. And..... are there any suggestions for this: Assume i have a machine running ipf which deals with the traffic from outside. Behind that machine is an entire netwerk using ipnat. Now some one uses nmap on me to see what is open and what isnt. Now, ipf notices a packet... (fyn scan) does nothing with it but redirects it to another machine on the network on which the port is closed. Then nmap will think the port on the firewalled machine is closed while nmap really got the results from another machine without knowing it. A friend of mine deals this way with this kind of scans and fooling nmap completly. Bye, Reinoud.
Current thread:
- UDP port scanning... Darren Reed (Feb 08)
- Re: UDP port scanning... Simple Nomad (Feb 09)
- how to know scan is correct? Reinoud Koornstra (Feb 09)
- Re: how to know scan is correct? Simple Nomad (Feb 09)
- Re: UDP port scanning... Darren Reed (Feb 09)
- Re: UDP port scanning... antirez (Feb 10)
- RE: UDP port scanning... Ofir Arkin (Feb 10)
- how to know scan is correct? Reinoud Koornstra (Feb 09)
- Re: UDP port scanning... Simple Nomad (Feb 09)
- <Possible follow-ups>
- Re: UDP port scanning... Simple Nomad (Feb 10)
- Re: UDP port scanning... Rob Quinn (Feb 11)