Hello:
Vinu Moses wrote,
> On Saturday 01 Dec 2001 9:46 am, Ashok Kumar wrote:
> > when I do nmap on my machine it shows,
> > 6000/tcp filtered X11
> > How do I block it.
>
> If you're using ipchains,
> ipchains -A input -p tcp -d <your-ip-address> --dport 6000 -j reject
>
> If you're using iptables,
> iptables -A INPUT -p tcp -d <your-ip-address> --dport 6000 -j DROP
Dropping the packets wont work. You have to reject it! Watch what
happens when i use the "DROP" target:
# $IPT -A INPUT -p tcp -d 192.168.1.24 --dport 6000 -j DROP
# nmap 192.168.1.24 -p 6000
Starting nmap V. 2.54BETA30 ( www.insecure.org/nmap/ )
Interesting ports on godzilla.exocore.com (192.168.1.24):
Port State Service
6000/tcp filtered X11
Nmap run completed -- 1 IP address (1 host up) scanned in 3 seconds
See, its "filtered"! Now try the same with the REJECT target:
$IPT -A INPUT -p tcp -d 192.168.1.24 --dport 6000 -j REJECT \
--reject-with tcp-reset
# nmap 192.168.1.24 -p 6000
Starting nmap V. 2.54BETA30 ( www.insecure.org/nmap/ )
The 1 scanned port on godzilla.exocore.com (192.168.1.24) is: closed
Nmap run completed -- 1 IP address (1 host up) scanned in 0 seconds
Got the difference now?
-- Shanu
--
Luke Skywalker:
How did my father die?
Ben (Obi-Wan) Kenobi:
A young Jedi named Darth Vader, who was a pupil
of mine until he turned to evil, helped the
Empire hunt down and destroy the Jedi knights.
He betrayed and murdered your father.
_______________________________________________
linux-india-help mailing list
[EMAIL PROTECTED]
https://lists.sourceforge.net/lists/listinfo/linux-india-help
