Login or Register to Ask a Question and Join Our Community


UNIX for Dummies Questions & Answers

nmap results

 
Thread Tools Search this Thread
Top Forums UNIX for Dummies Questions & Answers nmap results
# 1  
Old 03-30-2002
nmap results
Hi,
Whenever I tried to run nmap on my linux (red hat 6.2) boxes i got these outputs:

4444/tcp filtered krb524
6666/tcp filtered irc-serv
6699/tcp filtered napster
8888/tcp filtered sun-answerbook

Can anybody please explain me what are those supposed to mean? Especially 'irc-serv' and 'napster' are making me unconfortable.
Thanks!
# 2  
Old 03-30-2002
you just portscanned yourself and that showed which ports are opened (in your case filtered)...
irc-serv is simply an irc-server Smilie

since I've never used napster (yes!) I can't really say what that napster port is used for
# 3  
Old 03-31-2002
All that means is that something is listening on that port, and the service (napster etc) is the service that is typicall associated with that port. You can ofter check you /etc/inetd.conf file to find some of these services.
# 4  
Old 03-31-2002
But I can't find those services in my /etc/inetd.conf, /etc/services, /etc/xinet.conf files. Am I forgetting some other files to check? And what does the state "filtered" mean?
Thanks for all the replies!
# 5  
Old 03-31-2002
There has to be a process listening on that port. I think you can use netstat to determine what they are, but am not sure.

Filtered means that there is some type of firewall software (IP Chains, IP Tables, IP Filter etc.) that is "filtering" the packets through that port. If you can't figure out what is listening on the port, close it with the fireall.
# 6  
Old 04-02-2002
Actually, filtered means it has been through a firewall, and rather than rejecting the packet (sending it back), it simply drops it (ignores it). When nmap doesn't get a responce back at all, it assumes it's been dropped by a firewall, thus "filtered". Otherwise it would show as closed (got a reset response) or open (got a favorable response, like a syn-ack).
If you're really worried, try using netstat or lsof to determine which ports are open.
# 7  
Old 04-03-2002
I did 'netstat' but i can't find any of these ports being listened. And my machines are neither behind firewall nor running any firewall software. That's whats worries me since their services won't work behind firewall, due to dynamic UDP port usage.
 
Login or Register to Ask a Question

Previous Thread | Next Thread

9 More Discussions You Might Find Interesting

1. Homework & Coursework Questions

How to scan IP range using nmap?

Scripting language : Bash Shell Script 1. problem statement I have to create function in which read IP addresses one by one from one file (iplist.txt) and scan these IP using nmap. This scan IP's output is saved in output.txt file and parse output.txt to save only open ports with particular IP... (3 Replies)
Discussion started by: sk151993
3 Replies

2. IP Networking

Why Nmap UDP need Root?

I was just wondering, why does Nmap need root when doing an -sU UDP Scan? Please and Thank You. (3 Replies)
Discussion started by: amreason
3 Replies

3. Cybersecurity

Help with NMAP

I'm seeing a persistent address showing up on my firewall router logs. The address is 10.98.115.9:67, and is broadcasting to 255.255.255.255. I know that this would typically signal a BOOTP service, such as a bootp server announcing itself on the network. But I can't isolate which machine it... (3 Replies)
Discussion started by: renoir611
3 Replies

4. Shell Programming and Scripting

Can ctag and cscope support recording search results and displaying the history results ?

Hello , When using vim, can ctag and cscope support recording search results and displaying the history results ? Once I jump to one tag, I can use :tnext to jump to next tag, but how can I display the preview search result? (0 Replies)
Discussion started by: 915086731
0 Replies

5. Linux

nmap binaries for linux

Hi , I am exploring the nmap utility for Linux. I know that, nmap binaries are specific to the platforms e.g. nmap binaries will be diferent for Windows , AIX , Solaris and Linux platforms. Can anyone tell me , will the nmap binaries be different for different flavours of Linux such as... (1 Reply)
Discussion started by: jatin56
1 Replies

6. Solaris

Nmap error

I 'm getting following error when i run nmap for an ip .. what could be the reason for it ? #nmap 10.22.67.18 Starting Nmap 4.68 ( Nmap - Free Security Scanner For Network Exploration & Security Audits. ) at 2009-07-06 19:07 UTC Warning: Unable to open interface e1000g3301000 -- skipping it.... (2 Replies)
Discussion started by: fugitive
2 Replies

7. AIX

nmap on aix 5.2

I'm trying to compile nmap 4.11 on an aix 5.2 machine and get the following error when attempting the 'make' command; make "Makefile", line 1: make: 1254-055 Dependency line needs colon or double colon operator. "Makefile", line 14: make: 1254-055 Dependency line needs colon or double colon... (2 Replies)
Discussion started by: zuessh
2 Replies

8. Shell Programming and Scripting

Nmap PHP FE

Hi everyone! I've temporarily come out of hibernation (and will be gone for about two weeks after this post too) to ask for input on a small PHP script I have just completed. The script aims to be a remote front-end for Nmap - now for the safety of this post, I ask that any replies refrain from... (6 Replies)
Discussion started by: Karma
6 Replies

9. Cybersecurity

Nmap

I am pretty new at running nmap ,and i have some doubt about some o/ps the nmap shows I tried to scan my own system for UDP open ports I see that if i use one UDP port say 13 It shows that its in open state , etc But if i scan for the whole UDP ports in the nmap-services . I gives te... (2 Replies)
Discussion started by: DPAI
2 Replies
Login or Register to Ask a Question