Re: my iptables script

To: debian-firewall@lists.debian.org
Subject: Re: my iptables script
From: Tarragon Allen <melange@n12turbo.com>
Date: Sat, 6 Sep 2003 00:51:44 +1000
Message-id: <[🔎] 200309060051.45097.melange@n12turbo.com>
In-reply-to: <[🔎] 3F5842E4.3010705@enaikoon.de>
References: <1062371226.1599.95.camel@coltrane> <[🔎] 1062640805.1002.31.camel@coltrane> <[🔎] 3F5842E4.3010705@enaikoon.de>

On Fri, 5 Sep 2003 06:01 pm, uberthold wrote:
> hi.
>
> that's an interesting question. why don't prerouted ports show up as
> open, neither with netstat -l nor with nmap?
> is this effect of any further security use, or are there better tools,
> that can dedect those ports as well?
>
> thanks and ciao,
> ub

netstat not showing it makes sense, as it isn't really bound to any particular 
application on the machine itself. I suppose that netstat could be modified 
to take into account netfilter sockets ...

nmap should show the ports though, as it's emulating various parts of a normal 
connection. In this particular case, nmap couldn't find the open ports 
because of a problem with the firewall script (meaning that the ports 
actually weren't open).

t
-- 
GPG : http://n12turbo.com/tarragon/public.key

Reply to:

Follow-Ups:
- forwarded ports was: my iptables script
  - From: uberthold <uberthold@enaikoon.de>

References:
- Re: my iptables script
  - From: Jule Slootbeek <jslootbeek@clarku.edu>
- Re: my iptables script
  - From: uberthold <uberthold@enaikoon.de>

Prev by Date: Re: Firewall script builders
Next by Date: Re: Firewall script builders
Previous by thread: Re: my iptables script
Next by thread: forwarded ports was: my iptables script
Index(es):
- Date
- Thread