Hello,
I have a fresh new SuSE 10.2 install.
I configured the firewall using control center and allowed only HTTPS.
Now when I do a port scan (e.g.
http://probe.hackerwatch.org), I am
getting 443 open alright, but also 80 as open and many more
"This port is not being blocked, but there is no program currently accepting connections on this port."
Now when I telnet to my machine port 80 from internal, I get connected
to the apache. When I do that from the outside, I get a
Code:
Connected to xx.xx.xx.xx.
Escape character is '^]'.
Connection closed by foreign host.
So, is this 10.2 firewall accepting and closing connections instead
of just blocking/dropping them ?
I also checked the file /etc/sysconfig/SuSEfirewall2 and there really is
only 443 opened.
How can one explain that ? And yes, the firewall is working, because
I could not connect in on 443 before I opened that...
Any ideas anyone ? Cheers, Tom.