It is a proxy based Firewall. How would I scan it then to report, lets say, ports 25 and 80, the only ones that I know are open and NATted to an inside server? It's not giving me any info on these ports, other than it's open (tho it says that for all ports)!
> -------- Original Message -------- > Subject: RE: scanning firewall returns all ports as open > From: "Dan Bowman" <[EMAIL PROTECTED]> > Date: Sun, May 09, 2004 6:17 am > To: "Scot Turner" <[EMAIL PROTECTED]> > > It's also likely that if that firewall is a proxy based firewall that it > will > respond for all protected IP addresses and maybe even the ports. > Depends > completely on the firewall vendor / implementation. Also, > mis-configuration > of some firewall types, policy, could cause it to respond when ideally > it > shouldn't. > > Regards, > > -- Dan > > Daniel Bowman - Director of Support > Tenable Network Security > mailto:[EMAIL PROTECTED] > http://www.tenablesecurity.com/ > > -----Original Message----- > From: [EMAIL PROTECTED] > [mailto:[EMAIL PROTECTED] Behalf Of Josh > Zlatin-Amishav > Sent: Sunday, May 09, 2004 5:21 AM > To: Scot Turner > Cc: [EMAIL PROTECTED] > Subject: Re: scanning firewall returns all ports as open > > > On Thu, 6 May 2004, Scot Turner wrote: > > > Ok, I�m trying to use NMAP to scan a firewall and it returns all > ports as > > being �Interesting Ports� and open.� I know it only has port 80 and > 25 open > > (because it�s my firewall!).� Why is it returning this and how can I > get > > accurate results? > > Hi Scot, > My guess is that the firewall is running something similar to > portsentry. > > -- > - Josh Zlatin-Amishav > GPG: F5A7 6196 13B5 270F B578 221F 80D1 99C8 4AC6 8C29 > > > > _______________________________________________ > Nessus mailing list > [EMAIL PROTECTED] > http://mail.nessus.org/mailman/listinfo/nessus _______________________________________________ Nessus mailing list [EMAIL PROTECTED] http://mail.nessus.org/mailman/listinfo/nessus
