From owner-freebsd-questions Sat Nov 21 18:22:59 1998 Return-Path: Received: (from majordom@localhost) by hub.freebsd.org (8.8.8/8.8.8) id SAA17885 for freebsd-questions-outgoing; Sat, 21 Nov 1998 18:22:59 -0800 (PST) (envelope-from owner-freebsd-questions@FreeBSD.ORG) Received: from PigStuy.dyn.ml.org (nyc-ny80-04.ix.netcom.com [209.109.229.196]) by hub.freebsd.org (8.8.8/8.8.8) with ESMTP id SAA17878 for ; Sat, 21 Nov 1998 18:22:52 -0800 (PST) (envelope-from spork@pigstuy.dyn.ml.org) Received: from localhost (spork@localhost) by PigStuy.dyn.ml.org (8.8.8/8.8.7) with SMTP id VAA00538; Sat, 21 Nov 1998 21:21:18 -0500 (EST) (envelope-from spork@pigstuy.dyn.ml.org) Date: Sat, 21 Nov 1998 21:21:17 -0500 (EST) From: Spike Gronim Reply-To: sporkl@ix.netcom.com To: Brian Gallucci cc: freebsd-questions@FreeBSD.ORG Subject: Re: Port Scanning -> In-Reply-To: <008c01be151a$b992ef20$2900a8c0@desktop.briang.org> Message-ID: MIME-Version: 1.0 Content-Type: TEXT/PLAIN; charset=US-ASCII Sender: owner-freebsd-questions@FreeBSD.ORG Precedence: bulk X-Loop: FreeBSD.ORG On Fri, 20 Nov 1998, Brian Gallucci wrote: > Hello, I running IPFW and what to know is their a way to stop people from > doing a port scan on my boxes ? > I looked at ICMP, but I dont want to kill the ping command.. > > Thanks > -Brian If you block data to/from a given port, port scanning that port will be fairly useless. Set IPFREWALL_VERBOSE in your kernel config to log data hitting yoru firewall, so you will be able to know if someone attempts to port scan you. -Spike Gronim sporkl@ix.netcom.com The majority only rules those who let them. To Unsubscribe: send mail to majordomo@FreeBSD.org with "unsubscribe freebsd-questions" in the body of the message