LinuxQuestions.org
Review your favorite Linux distribution.
Go Back   LinuxQuestions.org > Forums > Linux Forums > Linux - Networking
User Name
Password
Linux - Networking This forum is for any issue related to networks or networking.
Routing, network cards, OSI, etc. Anything is fair game.

Notices


Reply
  Search this Thread
Old 06-15-2006, 10:19 AM   #1
NuxIT
Member
 
Registered: Jul 2003
Location: Westminser, CO
Distribution: xUbuntu
Posts: 137

Rep: Reputation: 20
Explaination of network scan ports.


I was scanning my network using shields up with my linux box both behind firewall and then on DMZ. The first scan showed all ports stealth except port: 68 bootstrap protocol which was blue(closed). When scanning the machine in DMZ mode it shows this port Red (open). Any ideas on this one? Thanks

Code:
root@nuxbox:/etc# netstat -tupan
Active Internet connections (servers and established)
Proto Recv-Q Send-Q Local Address           Foreign Address         State       PID/Program name
tcp        0      0 0.0.0.0:68              0.0.0.0:*               LISTEN     2393/pump 
tcp        0      0 10.16.0.52:68           4.79.142.206:57170      SYN_RECV   -
 
Old 06-17-2006, 10:21 AM   #2
osor
HCL Maintainer
 
Registered: Jan 2006
Distribution: (H)LFS, Gentoo
Posts: 2,450

Rep: Reputation: 78
Your firewall is not configured correctly. It should have the DHCP port open only for a specific DHCP server (your ISP's). Also, your DMZ machine might be misconfigured. It should have that port open only for a specific machine.

Instead of netstat, can you post your iptables firewall rules (for both the firewall and DMZ)?
 
  


Reply


Thread Tools Search this Thread
Search this Thread:

Advanced Search

Posting Rules
You may not post new threads
You may not post replies
You may not post attachments
You may not edit your posts

BB code is On
Smilies are On
[IMG] code is Off
HTML code is Off



Similar Threads
Thread Thread Starter Forum Replies Last Post
How to scan network for active IP's? BuckRogers01 Linux - Networking 1 02-05-2006 11:33 AM
Fedora Core 3, GRC port scan says ports arestealthed but responds to icmp ping IraB Linux - Security 7 12-09-2004 11:18 PM
how can I scan my network :King_58: Linux - Networking 9 09-13-2004 08:38 AM
scan my network with nmap. amer_58 Linux - Networking 3 06-17-2004 12:11 AM
Samba question - network print/scan/copy/fax Illah Linux - Networking 1 06-04-2004 01:45 PM

LinuxQuestions.org > Forums > Linux Forums > Linux - Networking

All times are GMT -5. The time now is 02:56 AM.

Main Menu
Advertisement
My LQ
Write for LQ
LinuxQuestions.org is looking for people interested in writing Editorials, Articles, Reviews, and more. If you'd like to contribute content, let us know.
Main Menu
Syndicate
RSS1  Latest Threads
RSS1  LQ News
Twitter: @linuxquestions
Open Source Consulting | Domain Registration