nmap and port scanning reliability
William Muriithi
william.muriithi-Re5JQEeQqe8AvxtiuMwx3w at public.gmane.org
Thu Oct 2 15:06:01 UTC 2008
Hi
> Port 1194? Would that by chance be OpenVPN? If so, you're likely using
> UDP, so you'll have to use a UDP port scan. Also, be aware that UDP ports
> don't respond the same way as TCP. A non responding UDP port appears
> exactly the same as one that quietly drops the packets. If your firewall is
> configured in stealth mode, this is also what will happen.
Yeah, its openvpn. I am using the flag for upd scan so I hope that
should not be be a big problem. Koziol, thank you. Did help. I always
used to assume it scan for every port. Now this is how it responds
[root at william kihara]# nmap -sU -v 149.99.4x.16x -p1190-1196
Starting Nmap 4.11 ( http://www.insecure.org/nmap/ ) at 2008-10-02 10:58 EAT
DNS resolution of 1 IPs took 0.12s.
Initiating UDP Scan against
Z-a2-1-0-386-S1.tls3.tor1.rogerstelecom.net (149.99.49.166) [7 ports]
at 10:58
The UDP Scan took 1.21s to scan 7 total ports.
Host Z-a2-1-0-386-S1.tls3.tor1.rogerstelecom.net (149.99.49.166)
appears to be up ... good.
Interesting ports on Z-a2-1-0-386-S1.tls3.tor1.rogerstelecom.net
(149.99.49.166):
PORT STATE SERVICE
1190/udp closed unknown
1191/udp closed unknown
1192/udp closed unknown
1193/udp closed unknown
1194/udp open|filtered unknown
1195/udp closed unknown
1196/udp closed unknown
Nmap finished: 1 IP address (1 host up) scanned in 1.902 seconds
Raw packets sent: 10 (292B) | Rcvd: 7 (382B)
Thank you man
William
--
The Toronto Linux Users Group. Meetings: http://gtalug.org/
TLUG requests: Linux topics, No HTML, wrap text below 80 columns
How to UNSUBSCRIBE: http://gtalug.org/wiki/Mailing_lists
More information about the Legacy
mailing list