I'm trying to find out why changing my default iptables policy is affecting what nmap sees when it scans my host.
Consider the following iptables setup:
iptables -F
iptables -A INPUT -p tcp -s 10.1.0.0/20 --dport 22 -j ACCEPT
iptables -P INPUT ACCEPT
iptables -P FORWARD DROP
iptables -P OUTPUT ACCEPT
iptables -A INPUT -i lo -j ACCEPT
iptables -A INPUT -m state --state ESTABLISHED,RELATED -j AC
Is it possible with nmap to check only the state of a port whether- open, closed or filtered and NOT the services behind it?
The aim is to speed up scan results. Since UDP scan is also involved it is taking forever to complete.
That aside what could be done to speed up nmap UDP scans? The one I'm using is:
nmap -n -sS -sU -p1-65535 -oN scan_out -iL hosts
I'm trying to find out where a port is being blocked by a firewall; either en-route to a host or by the host itself.
If I run nmap I can see that the port is filtered. However, this could mean by the host 192.168.1.74 or any firewall in between.
Is it possible to do an OS detection scan with nmap without scanning a port? I really need only OS detection and try to reduce the amount of traffic as much as possible.
By the way what is the most accurate to do an OS sdcan? At the moment I do
nmap xx.xx.xx.xx -sF -A --osscan-guess -p 80 -Pn
Because nmap needs at least one port.
Hi,
as this is my first post to the forum you should know that I am quite a newbee into Linux in general.
Hi to all!
Hello, I am kind of a noob with unix, so i'd like some help.
With nmap, I want to skip the scan on port 80. I'm sure this is in the man somewhere, but I haven't found it so far. My command is simple:
nmap 24.0.0.1\24
So this will scan ports in the 24.0.0.x range; I just need to avoid port 80 (for stealth reasons).
I wanted to use vino to share my desktop on a F16 installation. I followed the instruction #3 here.
The setting took, but the vncserver was not started.
nmap -p 5900 shows the port is still closed.
Email this page
