Do you use nmap or zenmap???

Discussion in 'all things UNIX' started by mack_guy911, Sep 12, 2011.

Thread Status:
Not open for further replies.
  1. mack_guy911

    mack_guy911 Registered Member

    Joined:
    Mar 21, 2007
    Posts:
    2,677
    i wondering if you use nmap or zenmap

    also what measures taken to block unnessary ports and services .......etc

    please put your comments a healthy discussion is really appreciated
     
    Last edited: Sep 12, 2011
  2. Mrkvonic

    Mrkvonic Linux Systems Expert

    Joined:
    May 9, 2005
    Posts:
    8,697
    At home, why? Why should I scan my ports?
    You can run netstat -tulpen and knock yourself silly with the findings.
    Moreover, if you have even the most basic router, it's completely unnecessary.
    Mrk
     
  3. lotuseclat79

    lotuseclat79 Registered Member

    Joined:
    Jun 16, 2005
    Posts:
    5,097
    If you run nmap from within your local network (e.g. my local network is my computer only), then the results are misleading with regard to which ports are open from outside any router which you may be running (i.e. the router in my case is assigned an IP address via DHCP every time I enable a network connection, after rebooting the router).

    You can alternatively check the ports on your router which faces the Internet by visiting the website, http://nmap-online.com/ , and setting up an external nmap port scan using the IP address assigned to your router which will give you much more accurate information. Note: the results are not sent over the Internet to your email address, but a notification is sent to your email address for you to look at them remotely via your browser when you type in your email address and a password for you to access the results remotely.

    Another alternative is to do the port scans at grc.com when your follow the ShieldsUp! links at that web site.

    -- Tom
     
  4. Searching_ _ _

    Searching_ _ _ Registered Member

    Joined:
    Jan 2, 2008
    Posts:
    1,988
    Location:
    iAnywhere
    I use nmap.
    I like nmap because it shows what is connected to my network and has the added features to show what ports on all connected devices are open/closed/etc.
    With 3 computers, 2 printers and a router, it's nice to be able to check up on them to see if anything funky is happening, especially with all of those router commandos out there. :ninja:
    To get serious with your router though, you need to get Busy with your Box.
     
  5. mack_guy911

    mack_guy911 Registered Member

    Joined:
    Mar 21, 2007
    Posts:
    2,677
    agree with you@lotuseclat79 they give you internal scan inside outside scan(local network scan) which might show your some open ports as well

    yesterday i try to nmap halfsyn scan on astaro security gateway form local it even block that the ips block my network connecting to astaro where as i can still able to use internet i guess its just bypassing it but block to connect to gateway not bad


    EDIT: also i read on some sites that cont.......... porbing your router from local may damage router OS so i recomend use it with precaution and avoide probing it from local.
     
  6. Ocky

    Ocky Registered Member

    Joined:
    May 6, 2006
    Posts:
    2,677
    Location:
    George, S.Africa
    Yes, I know, meaningless when scanning localhost - just thought I'd share the lsof command in case of interest...

    [xxxxxx@localhost ~]$ nmap -sT -T 5 -p 1-5000 localhost

    Starting Nmap 5.21 ( http://nmap.org ) at 2011-09-14 17:30 SAST
    Nmap scan report for localhost (127.0.0.1)
    Host is up (0.00053s latency).
    rDNS record for 127.0.0.1: localhost.localdomain
    Not shown: 4999 closed ports
    PORT STATE SERVICE
    631/tcp open ipp




    [xxxxx@localhost ~]$ su -c "lsof +M -i4"
    Password:
    COMMAND PID USER FD TYPE DEVICE SIZE/OFF NODE NAME
    avahi-dae 1801 avahi 13u IPv4 13069 0t0 UDP *:mdns
    avahi-dae 1801 avahi 14u IPv4 13070 0t0 UDP *:45984
    cupsd 1886 root 7u IPv4 13566 0t0 TCP localhost.localdomain:ipp (LISTEN)
    cupsd 1886 root 9u IPv4 13569 0t0 UDP *:ipp
    ntpd 2084 ntp 16u IPv4 14550 0t0 UDP *:ntp
    ntpd 2084 ntp 20u IPv4 14558 0t0 UDP localhost.localdomain:ntp
    hddtemp 2094 root 0u IPv4 14601 0t0 TCP localhost.localdomain:7634 (LISTEN)
    clock-app 2723 xxxxxx 21r IPv4 142677 0t0 TCP 192.168.X.X:xxxxx->xxx.xxx.xx.xx:http (ESTABLISHED)
    [xxxxx@localhost ~]$
     
Loading...
Thread Status:
Not open for further replies.