Date: Fri, 16 Sep 2005 08:16:47 +0200 From: John Oxley <john@yoafrica.com> To: Boris Karloff <modelt20@canada.com> Cc: freebsd-questions@freebsd.org Subject: Re: NMAP probing of network ports Message-ID: <20050916061647.GB65456@yoafrica.com> In-Reply-To: <4329c0ec.244.232.3162@canada.com> References: <4329c0ec.244.232.3162@canada.com>
next in thread | previous in thread | raw e-mail | index | archive | help
On Thu, Sep 15, 2005 at 01:43:56PM -0500, Boris Karloff wrote: > Hello: > > How do I cause freeBSD 5.4 to not respond to an nmap > inquiry? I have already tried creating a line in rc.firewall > that says: > > ${fwcmd} deny all from any to any > ${fwcmd} drop all from any to any > > I know these are active, since 1) I see them on the screen > at startup, and 2) pinging from any computer to any computer > results in a timeout. > > (both of these should drop all TCP packets; but apparently, > they cause a RESET message to be sent.) Umm, try putting the drop before the deny. AFAIK, drop just drops the packet totally, and deny sends a RST back to the host. That is if ipfw works that way (ICBW). You don't need both these lines anyway, only one of them. -John
Want to link to this message? Use this URL: <https://mail-archive.FreeBSD.org/cgi/mid.cgi?20050916061647.GB65456>