ct Re: NMAP probing of network ports

Bob Hall rjhjr at cox.net
Fri Sep 16 06:19:13 PDT 2005


On Fri, Sep 16, 2005 at 07:36:36AM -0500, Boris Karloff wrote:
> It appears that when FreeBSD is sent an invalid packet
> without the SYN or ACK bits set, it responds with a RESET
> reply regardless of the ipfw rules. It appears this is one
> of the things nmap is exploiting.
> 
> Any suggestions on how to modify this behavior?

man blackhole


More information about the freebsd-questions mailing list