i wondering if you use nmap or zenmap

also what measures taken to block unnessary ports and services .......etc

please put your comments a healthy discussion is really appreciated

At home, why? Why should I scan my ports?
You can run netstat -tulpen and knock yourself silly with the findings.
Moreover, if you have even the most basic router, it's completely unnecessary.
Mrk

If you run nmap from within your local network (e.g. my local network is my computer only), then the results are misleading with regard to which ports are open from outside any router which you may be running (i.e. the router in my case is assigned an IP address via DHCP every time I enable a network connection, after rebooting the router).

You can alternatively check the ports on your router which faces the Internet by visiting the website, http://nmap-online.com/ , and setting up an external nmap port scan using the IP address assigned to your router which will give you much more accurate information. Note: the results are not sent over the Internet to your email address, but a notification is sent to your email address for you to look at them remotely via your browser when you type in your email address and a password for you to access the results remotely.

Another alternative is to do the port scans at grc.com when your follow the ShieldsUp! links at that web site.

-- Tom

-{ Quote: "i wondering if you use nmap or zenmap?" }-
I use nmap.
I like nmap because it shows what is connected to my network and has the added features to show what ports on all connected devices are open/closed/etc.
With 3 computers, 2 printers and a router, it's nice to be able to check up on them to see if anything funky is happening, especially with all of those router commandos out there. :lurking:
To get serious with your router though, you need to get Busy with your Box.

agree with you@lotuseclat79 they give you internal scan inside outside scan(local network scan) which might show your some open ports as well

yesterday i try to nmap halfsyn scan on astaro security gateway form local it even block that the ips block my network connecting to astaro where as i can still able to use internet i guess its just bypassing it but block to connect to gateway not bad


EDIT: also i read on some sites that cont.......... porbing your router from local may damage router OS so i recomend use it with precaution and avoide probing it from local.

Yes, I know, meaningless when scanning localhost - just thought I'd share the lsof command in case of interest...

[xxxxxx@localhost ~]$ nmap -sT -T 5 -p 1-5000 localhost

Starting Nmap 5.21 ( http://nmap.org ) at 2011-09-14 17:30 SAST
Nmap scan report for localhost (127.0.0.1)
Host is up (0.00053s latency).
rDNS record for 127.0.0.1: localhost.localdomain
Not shown: 4999 closed ports
PORT STATE SERVICE
631/tcp open ipp




[xxxxx@localhost ~]$ su -c "lsof +M -i4"
Password:
COMMAND PID USER FD TYPE DEVICE SIZE/OFF NODE NAME
avahi-dae 1801 avahi 13u IPv4 13069 0t0 UDP *:mdns
avahi-dae 1801 avahi 14u IPv4 13070 0t0 UDP *:45984
cupsd 1886 root 7u IPv4 13566 0t0 TCP localhost.localdomain:ipp (LISTEN)
cupsd 1886 root 9u IPv4 13569 0t0 UDP *:ipp
ntpd 2084 ntp 16u IPv4 14550 0t0 UDP *:ntp
ntpd 2084 ntp 20u IPv4 14558 0t0 UDP localhost.localdomain:ntp
hddtemp 2094 root 0u IPv4 14601 0t0 TCP localhost.localdomain:7634 (LISTEN)
clock-app 2723 xxxxxx 21r IPv4 142677 0t0 TCP 192.168.X.X:xxxxx->xxx.xxx.xx.xx:http (ESTABLISHED)
[xxxxx@localhost ~]$