From owner-freebsd-questions@FreeBSD.ORG  Wed Sep  7 15:59:43 2005
Return-Path: <owner-freebsd-questions@FreeBSD.ORG>
X-Original-To: freebsd-questions@freebsd.org
Delivered-To: freebsd-questions@freebsd.org
Received: from mx1.FreeBSD.org (mx1.freebsd.org [216.136.204.125])
	by hub.freebsd.org (Postfix) with ESMTP id 3FF9E16A41F
	for <freebsd-questions@freebsd.org>;
	Wed,  7 Sep 2005 15:59:43 +0000 (GMT)
	(envelope-from gayn.winters@bristolsystems.com)
Received: from bristolsystems.com (h-68-167-239-98.lsanca54.covad.net
	[68.167.239.98])
	by mx1.FreeBSD.org (Postfix) with ESMTP id EE81D43D45
	for <freebsd-questions@freebsd.org>;
	Wed,  7 Sep 2005 15:59:40 +0000 (GMT)
	(envelope-from gayn.winters@bristolsystems.com)
Received: from workdog ([192.168.1.201])
	by bristolsystems.com (8.11.6/8.11.6) with ESMTP id j87Fxdn15462;
	Wed, 7 Sep 2005 08:59:39 -0700
From: "Gayn Winters" <gayn.winters@bristolsystems.com>
To: "'Boris Karloff'" <modelt20@canada.com>, <freebsd-questions@freebsd.org>
Date: Wed, 7 Sep 2005 08:59:39 -0700
Message-ID: <035401c5b3c5$277cb2a0$c901a8c0@workdog>
MIME-Version: 1.0
Content-Type: text/plain;
	charset="US-ASCII"
Content-Transfer-Encoding: 7bit
X-Priority: 3 (Normal)
X-MSMail-Priority: Normal
X-Mailer: Microsoft Outlook, Build 10.0.4024
In-Reply-To: <431f04f6.22c.572a.3251@canada.com>
X-MimeOLE: Produced By Microsoft MimeOLE V6.00.2900.2180
Importance: Normal
Cc: 
Subject: RE: port scanning and hidden servers
X-BeenThere: freebsd-questions@freebsd.org
X-Mailman-Version: 2.1.5
Precedence: list
Reply-To: gayn.winters@bristolsystems.com
List-Id: User questions <freebsd-questions.freebsd.org>
List-Unsubscribe: <http://lists.freebsd.org/mailman/listinfo/freebsd-questions>, 
	<mailto:freebsd-questions-request@freebsd.org?subject=unsubscribe>
List-Archive: <http://lists.freebsd.org/pipermail/freebsd-questions>
List-Post: <mailto:freebsd-questions@freebsd.org>
List-Help: <mailto:freebsd-questions-request@freebsd.org?subject=help>
List-Subscribe: <http://lists.freebsd.org/mailman/listinfo/freebsd-questions>, 
	<mailto:freebsd-questions-request@freebsd.org?subject=subscribe>
X-List-Received-Date: Wed, 07 Sep 2005 15:59:43 -0000



> -----Original Message-----
> From: owner-freebsd-questions@freebsd.org 
> [mailto:owner-freebsd-questions@freebsd.org] On Behalf Of 
> Boris Karloff
> Sent: Wednesday, September 07, 2005 8:19 AM

> I have a user on my network with a Linux box that is
> performing a port scan on all the computers in my network
> manually. He's doing this 'because he can'. Although I've
> asked him not to, he continues to do so.
> 
> 1) How can I block or inhibit port scans launched against my
> freeBSD servers from within my network?
> 
> 2) How can I 'hide' my freeBSD servers from users on the
> network? (If they can't see them, then they don't know to
> scan them.)
> 
> Thanks in advance.
> 
> Harold

1. VLAN security on a managed switch
2. TCP wrappers
3. Ipchains
4. Snort (to generate dynamic fw rules)
 
-gayn