Nmap Development mailing list archives
Re: Operation not permitted
From: Marlon Jabbur <msjabbur () uol com br>
Date: Mon, 2 May 2005 12:03:10 -0300
My iptables rules are the following: iptables -A OUTPUT -m state --state NEW,ESTABLISHED,RELATED,INVALID -j ACCEPT iptables -A INPUT -m state --state ESTABLISHED,RELATED -j ACCEPT The first one allows me to send the nmap packets and the last allows me to receive the answer. I donĀ“t see any risk in allowing INVALID packets on the OUTPUT chain. I can see problems if you allow it on the INPUT chain. jabbur On Monday 02 May 2005 11:51, Przemek wrote:
On Mon, 2 May 2005 11:15:39 -0300 Marlon Jabbur <msjabbur () uol com br> wrote:Check your iptables rules. If you're using the "state" module you need to permit yourself to send "INVALID" packets.Now It works but can I not allow INVALID on OUTPUT chain ?
_______________________________________________ Sent through the nmap-dev mailing list http://cgi.insecure.org/mailman/listinfo/nmap-dev
Current thread:
- Operation not permitted Przemek (May 02)
- Re: Operation not permitted Marlon Jabbur (May 02)
- Re: Operation not permitted Przemek (May 02)
- Re: Operation not permitted Marlon Jabbur (May 02)
- Re: Operation not permitted Przemek (May 02)
- Re: Operation not permitted Przemek (May 02)
- Re: Operation not permitted Marlon Jabbur (May 02)