What were the arguments you supplied to Nmap? It is very difficult to guess why it did not work with such limited information. Also if you could include the version of Nmap you tried it would be helpful. In my extremely humble experience I have only had problems with Nmap as far as scanning UDP ports. I believe this is because of udp's connectionless state and how Nmap decides what is opened and closed (I cant do it justice but someone explained it really well on pen-test just the other day). If you want to provide the arguments and version number I am sure this list would love to help. Maybe also try writing to the pen-test list?
Cheers, Leon -----Original Message----- From: Jayasinghe, Rochelle [mailto:[EMAIL PROTECTED]] Sent: Wednesday, September 26, 2001 11:42 PM To: [EMAIL PROTECTED] Subject: nmap clarrification I am still new to pen-testing, and would like if someone can explain to me why 2 OPEN ports (ftp and dns) get listed as closed when I run a port scan using nmap (linux version) on a host sitting behind our firewall. Two other ports which are open (ie http and https) returned as open, quite correctly. Why is nmap getting confused with ftp and dns ports which remain open ? Thks Rochelle ********************************************************************** This email and any files transmitted with it are confidential and intended solely for the use of the individual or entity to whom they are addressed. If you have received this email in error please notify the system manager. This footnote also confirms that this email message has been swept by MIMEsweeper for the presence of computer viruses. www.mimesweeper.com **********************************************************************
