Security Basics mailing list archives

RE: how nmap can know my firewalled servers ?

From: "David Gillett" <gillettdavid () fhda edu>
Date: Wed, 12 Apr 2006 15:11:16 -0700

  Some kinds of firewalls may respond to a blocked connection
attempt with:

a) an RST packet (some hosts do this too), or

b) an ICMP prohibited/unreachable packet.

  Some firewalls offer you a choice between "block" (send such
a response) and "drop" (no response) actions.

David Gillett

-----Original Message-----
From: Alexey Eremenko [mailto:al4321 () gmail com] 
Sent: Wednesday, April 12, 2006 11:24 AM
To: security-basics () securityfocus com
Subject: how nmap can know my firewalled servers ?

Hi all !

I know that "nmap" can show open ports. But nmap also shows 
my firewalled ports !
How?

Since some servers (like apache) are firewalled with 
iptables, how can nmap know wherever my system run the 
service with open port, filtered port or doesn't run it at all ?



-------------------------------------------------------------------------
This List Sponsored by: Webroot

Don't leave your confidential company and customer records un-protected. 
Try Webroot's Spy Sweeper Enterprise(TM) for 30 days for FREE with no 
obligation. See why so many companies trust Spy Sweeper Enterprise to 
eradicate spyware from their networks.
FREE 30-Day Trial of Spy Sweeper Enterprise

http://www.webroot.com/forms/enterprise_lead.php
--------------------------------------------------------------------------

Current thread:

Re: how nmap can know my firewalled servers ?, (continued)
- - - Re: how nmap can know my firewalled servers ? Gregory Boyce (Apr 17)
    - Re: how nmap can know my firewalled servers ? Arturas Zalenekas (Apr 17)
    - Re: how nmap can know my firewalled servers ? Gregory Boyce (Apr 13)
  - Re: how nmap can know my firewalled servers ? Alexey Eremenko (Apr 13)
    - Re: how nmap can know my firewalled servers ? manu (Apr 13)
    - Re: how nmap can know my firewalled servers ? Arturas Zalenekas (Apr 13)
    - Re[2]: how nmap can know my firewalled servers ? Thierry Zoller (Apr 17)
    - Re: Re[2]: how nmap can know my firewalled servers ? Arturas Zalenekas (Apr 17)
    - Message not available
    - Fwd: Re[2]: how nmap can know my firewalled servers ? John Bond (Apr 19)
    - Re: Fwd: Re[2]: how nmap can know my firewalled servers ? Ansgar -59cobalt- Wiechers (Apr 21)
- RE: how nmap can know my firewalled servers ? David Gillett (Apr 12)
- RE: how nmap can know my firewalled servers ? Burton Strauss (Apr 12)
- RE: how nmap can know my firewalled servers ? Jay Stapleton (Apr 13)
  - Re: how nmap can know my firewalled servers ? Alexey Eremenko (Apr 13)
  - MSN File Upload Monitoring fullsecure (Apr 17)
- Re: Fwd: Re[2]: how nmap can know my firewalled servers ? oldgrue (Apr 21)