Using nmap to scan open ports. iptables default policy affects other rules?

view story

http://serverfault.com – I'm trying to find out why changing my default iptables policy is affecting what nmap sees when it scans my host. Consider the following iptables setup: iptables -F iptables -A INPUT -p tcp -s 10.1.0.0/20 --dport 22 -j ACCEPT iptables -P INPUT ACCEPT iptables -P FORWARD DROP iptables -P OUTPUT ACCEPT iptables -A INPUT -i lo -j ACCEPT iptables -A INPUT -m state --state ESTABLISHED,RELATED -j ACCEPT Let's nmap it using nmap -p - 10.1.0.157: Nmap scan report for 10.1.0.157 Host is up (0.00059s latency). Not shown: 65531 closed ports PORT STATE SERVICE 22/tcp open ssh 111/tcp ope (HowTos)

Submitted by xskl on 09/07/2012

Login or register to post comments
Email this page

Stories similar to Using nmap to scan open ports. iptables default policy affects other rules?

IPTABLES allow mail with DROP policy [closed] 25 weeks 6 days ago

I'd like to allow mail through iptables and DROP policy but this script doesn't work what it is wrong here:

## FLUSH de reglas iptables -F

iptables -X

iptables -Z

iptables -t nat -F

## policy iptables -P INPUT DROP

iptables -P OUTPUT ACCEPT

iptables -P FORWARD DROP

# localhost iptables -A INPUT -i lo -j ACCEPT

# Allow my ip iptables -A INPUT -s MY_IP -j ACCEPT

# 80 port iptables -A I

Iptables blocks outgoing HTTP connection 33 weeks 1 day ago

I've setup IPTables with the following script...

[ubuntu] Ports open even though they should be closed 1 year 14 weeks ago

Hey guys,

I don't understand whats going on with my rootserver... I have reset iptables and just opened the port for ssh. Now suddenly over night I see that there are a various of ports open: 21,80, 135, 139, 445, 3128

Could it be that vsftpd for example put rules in automatically to allow input on port 21?

I also tried disabling iptables with this command:

Code: # iptables -X # iptables

this firewall blocks input chain? 17 weeks 14 hours ago

I used an online tool to create an iptables firewall. Basically I just need port 22 and 1194 open to the outside world. But I noticed this bash script has input, forward and output chains as accept by default. Is it blocking all traffic but those two ports? Thanks.

iptables: Allow port range but deny to certain IP 45 weeks 4 days ago

I am running a server which needs UDP ports 1000:11000 opened, as well as TCP 10011 and 30033 open to function.

I have a set of iptables rules set to allow SSH and those ports, and intentionally left out 2010 as I am getting attacked on that port. The server does not block the incoming IP even when told to do so.

iptables config works in one Centos 6 server but not another one 16 weeks 6 hours ago

This iptables script:

#!/bin/sh service iptables stop iptables -F iptables -P INPUT DROP iptables -P OUTPUT ACCEPT iptables -P FORWARD DROP iptables -A INPUT -i lo -j ACCEPT iptables -A INPUT -p tcp -m multiport --dports 22,80,443 -m state --state NEW,ESTABLISHED -j ACCEPT service iptables save service iptables restart

works as expected on a Centos 6.3 server (provided by VPSBlocks.com.au) but

[ubuntu] IPTables problems 30 weeks 5 days ago

I'm having some problems with my VPS running Ubuntu Server 11.04 x64.

[ubuntu] Iptables Help 34 weeks 2 days ago

I'm trying to set up iptables to block all traffic except ssh but, no matter what I do, it's blocking outgoing ssh. The commands that I'm using are shown below. Oddly, I can SSH into the box, just not out.

CentOS 5, port 8080 won't allow traffic 1 year 23 weeks ago

I'm trying to open up port 8080 on my CentOS 5, Apache 2.2.3 server. When I go to ip:8080/mydirectory - it times out.

Using nmap to scan open ports. iptables default policy affects other rules?

Search

Beautiful linux wallpapers

Tags