Date: Mon, 22 Sep 2003 22:12:12 +0200 From: "Toan Hoang" <ignorabimus2002@hotmail.com> To: freebsd-stable@freebsd.org Subject: IPFilter and Nmap Message-ID: <Sea1-F6n3c6xpwW35BX00000b6a@hotmail.com>
next in thread | raw e-mail | index | archive | help
Greetings list! I'vs got a strange problem with my new FreeBSD box.. I've just installed IPFilter and recompiled the kernel to 4.9PRERELEASE.. (I compiled with options: IPFILTER, IPFILTER_LOG, IPFILTER_BLOCK_DEFAULT (IPFILTER_DEFAULT_BLOCK??) My problem is when I'm scanning the FreeBSD box with nmap (from a WinXP machine), I get rapports about ports that's open: (The 1647 ports scanned but not shown below are in state: filtered) PORT STATE SERVICE 25/tcp open smtp 80/tcp open http 81/tcp open hosts2-ns 82/tcp open xfer 83/tcp open mit-ml-dev 110/tcp open pop-3 119/tcp open nntp 1080/tcp open socks 5190/tcp open aol 8080/tcp open http-proxy My /etv/ipf.rules looks like this: block in all pass in quick on lo0 all pass out quick on lo0 all Here's my pkg_info too: apache+mod_ssl-1.3.28+2.8.15_1 bash-2.05b.007 cvsup-without-gui-16.1h expat-1.95.6_1 gettext-0.12.1 gmake-3.80_1 gnuls-4.1 libgnugetopt-1.2 libiconv-1.9.1_1 libtool-1.3.5_1 lynx-ssl-2.8.4.1d mm-1.3.0 nmap-3.30 noip-1.6 pcre-4.3 pkgconfig-0.15.0 portupgrade-20030723 postfix-2.0.15,1 postgresql-7.3.4_1 proftpd-1.2.8 ruby-1.6.8.2003.04.19 ruby-bdb1-0.2.1 ruby-rdoc-0.0.0.b2 ruby-shim-ruby18-1.8.0.p2.2003.04.19_1 vim-lite-6.2.72 regards Toan _________________________________________________________________ Last ned nye MSN Messenger 6.0 gratis http://www.msn.no/computing/messenger - Den raskeste veien mellom deg og dine venner
Want to link to this message? Use this URL: <https://mail-archive.FreeBSD.org/cgi/mid.cgi?Sea1-F6n3c6xpwW35BX00000b6a>