IPFilter and Nmap
Toan Hoang
ignorabimus2002 at hotmail.com
Mon Sep 22 13:12:14 PDT 2003
Greetings list!
I'vs got a strange problem with my new FreeBSD box..
I've just installed IPFilter and recompiled the kernel to 4.9PRERELEASE.. (I
compiled with options: IPFILTER, IPFILTER_LOG, IPFILTER_BLOCK_DEFAULT
(IPFILTER_DEFAULT_BLOCK??)
My problem is when I'm scanning the FreeBSD box with nmap (from a WinXP
machine), I get rapports about ports that's open:
(The 1647 ports scanned but not shown below are in state: filtered)
PORT STATE SERVICE
25/tcp open smtp
80/tcp open http
81/tcp open hosts2-ns
82/tcp open xfer
83/tcp open mit-ml-dev
110/tcp open pop-3
119/tcp open nntp
1080/tcp open socks
5190/tcp open aol
8080/tcp open http-proxy
My /etv/ipf.rules looks like this:
block in all
pass in quick on lo0 all
pass out quick on lo0 all
Here's my pkg_info too:
apache+mod_ssl-1.3.28+2.8.15_1
bash-2.05b.007
cvsup-without-gui-16.1h
expat-1.95.6_1
gettext-0.12.1
gmake-3.80_1
gnuls-4.1
libgnugetopt-1.2
libiconv-1.9.1_1
libtool-1.3.5_1
lynx-ssl-2.8.4.1d
mm-1.3.0
nmap-3.30
noip-1.6
pcre-4.3
pkgconfig-0.15.0
portupgrade-20030723
postfix-2.0.15,1
postgresql-7.3.4_1
proftpd-1.2.8
ruby-1.6.8.2003.04.19
ruby-bdb1-0.2.1
ruby-rdoc-0.0.0.b2
ruby-shim-ruby18-1.8.0.p2.2003.04.19_1
vim-lite-6.2.72
regards
Toan
_________________________________________________________________
Last ned nye MSN Messenger 6.0 gratis http://www.msn.no/computing/messenger
- Den raskeste veien mellom deg og dine venner
More information about the freebsd-stable
mailing list