03-18-2002
A possible solution is that while performing a single port scan you are getting a correct response from an "active" or open port.
Now under a full 65535 port scan you are pushing alot of packets! You hadn't stated your time frequency of datagram submittal...but with an educated guess......i'd say that you are pumping them out as quick as possible.
When a system is under a pretty heavy load...the stack gets a bit quirky. Thus the inconsistent recognitions.....i.e...a "filtered" state.
Especially when your only traversing a portion of your TCP/IP stack, and not the whole OSI model.
Have you reviewed RFC 793 (Transmission Control Protocol) for valid responses? I suggest capturing packets to verify your systems responses.
HTH.
10 More Discussions You Might Find Interesting
1. UNIX for Dummies Questions & Answers
Hi,
Whenever I tried to run nmap on my linux (red hat 6.2) boxes i got these outputs:
4444/tcp filtered krb524
6666/tcp filtered irc-serv
6699/tcp filtered napster
8888/tcp filtered sun-answerbook
Can anybody please... (10 Replies)
Discussion started by: necro
10 Replies
2. Shell Programming and Scripting
Hi everyone!
I've temporarily come out of hibernation (and will be gone for about two weeks after this post too) to ask for input on a small PHP script I have just completed.
The script aims to be a remote front-end for Nmap - now for the safety of this post, I ask that any replies refrain from... (6 Replies)
Discussion started by: Karma
6 Replies
3. AIX
I'm trying to compile nmap 4.11 on an aix 5.2 machine and get the following error when attempting the 'make' command;
make
"Makefile", line 1: make: 1254-055 Dependency line needs colon or double colon operator.
"Makefile", line 14: make: 1254-055 Dependency line needs colon or double colon... (2 Replies)
Discussion started by: zuessh
2 Replies
4. Red Hat
Hi,
Is it possible to change the nmap port name: For eg:
21/tcp open ftp
53/tcp open domain
80/tcp open http
111/tcp open rpcbind
836/tcp open unknown
843/tcp open unknown
953/tcp open rndc
I need to change the port number 836 unknown to the name of the... (4 Replies)
Discussion started by: gsiva
4 Replies
5. Shell Programming and Scripting
So...
I'm trying to script and FTP Backup of some files from openVMS Alpha machine to a Unixware 7 machine.
I decided to use .netrc to do all the FTP actions however when I send the
nmap command. It pretty much gets ignored while even other things such "ascii", "case" etc.. get respected... (0 Replies)
Discussion started by: thesubmitter
0 Replies
6. Solaris
I 'm getting following error when i run nmap for an ip .. what could be the reason for it ?
#nmap 10.22.67.18
Starting Nmap 4.68 ( Nmap - Free Security Scanner For Network Exploration & Security Audits. ) at 2009-07-06 19:07 UTC
Warning: Unable to open interface e1000g3301000 -- skipping it.... (2 Replies)
Discussion started by: fugitive
2 Replies
7. Linux
Hi ,
I am exploring the nmap utility for Linux.
I know that, nmap binaries are specific to the platforms e.g. nmap binaries will be diferent for Windows , AIX , Solaris and Linux platforms.
Can anyone tell me , will the nmap binaries be different for different flavours of Linux such as... (1 Reply)
Discussion started by: jatin56
1 Replies
8. Cybersecurity
I'm seeing a persistent address showing up on my firewall router logs. The address is 10.98.115.9:67, and is broadcasting to 255.255.255.255. I know that this would typically signal a BOOTP service, such as a bootp server announcing itself on the network. But I can't isolate which machine it... (3 Replies)
Discussion started by: renoir611
3 Replies
9. Shell Programming and Scripting
Scripting language : Bash Shell Script
I have to create function in which read IP addresses one by one from one file (ip.txt) and scan these IP using nmap. (4 Replies)
Discussion started by: sk151993
4 Replies
10. Homework & Coursework Questions
Scripting language : Bash Shell Script
1. problem statement
I have to create function in which read IP addresses one by one from one file (iplist.txt) and scan these IP using nmap. This scan IP's output is saved in output.txt file and parse output.txt to save only open ports with particular IP... (3 Replies)
Discussion started by: sk151993
3 Replies
LEARN ABOUT CENTOS
zenmap
ZENMAP(1) Zenmap Reference Guide ZENMAP(1)
NAME
zenmap - Graphical Nmap frontend and results viewer
SYNOPSIS
zenmap [options] [results file]
DESCRIPTION
Zenmap is a multi-platform graphical Nmap frontend and results viewer. Zenmap aims to make Nmap easy for beginners to use while giving
experienced Nmap users advanced features. Frequently used scans can be saved as profiles to make them easy to run repeatedly. A command
creator allows interactive creation of Nmap command lines. Scan results can be saved and viewed later. Saved scan results can be compared
with one another to see how they differ. The results of recent scans are stored in a searchable database.
This man page only describes the few Zenmap command-line options and some critical notes. A much more detailed Zenmap User's Guide is
available at http://nmap.org/book/zenmap.html. Other documentation and information is available from the Zenmap web page at
http://nmap.org/zenmap/.
OPTIONS SUMMARY
-f, --file results file
Open the given results file for viewing. The results file may be an Nmap XML output file (.xml, as produced by nmap -oX) or a Umit scan
results file (.usr). This option may be given more than once.
-h, --help
Show a help message and exit.
-n, --nmap Nmap command line
Run the given Nmap command within the Zenmap interface. After -n or --nmap, every remaining command line argument is read as the
command line to execute. This means that -n or --nmap must be given last, after any other options. Note that the command line must
include the nmap executable name: zenmap -n nmap -sS target.
-p, --profile profile
Start with the given profile selected. The profile name is just a string: "Regular scan". If combined with -t, begin a scan with the
given profile against the specified target.
-t, --target target
Start with the given target. If combined with -p, begin a scan with the given profile against the specified target.
-v, --verbose
Increase verbosity (of Zenmap, not Nmap). This option may be given multiple times to get even more verbosity.
Any other arguments are taken to be the names of results files to open.
ENVIRONMENT VARIABLES
ZENMAP_DEVELOPMENT
Set ZENMAP_DEVELOPMENT to disable automatic crash reporting.
BUGS
Like their authors, Nmap and Zenmap aren't perfect. But you can help make them better by sending bug reports or even writing patches. If
Nmap or Zenmap doesn't behave the way you expect, first upgrade to the latest version available from http://nmap.org. If the problem
persists, do some research to determine whether it has already been discovered and addressed. Try Googling the error message or browsing
the nmap-dev archives at http://seclists.org/. Read this full manual page as well. If nothing comes of this, mail a bug report to
<dev@nmap.org>. Please include everything you have learned about the problem, as well as what version of Zenmap you are running and what
operating system version it is running on. Problem reports and Zenmap usage questions sent to dev@nmap.org are far more likely to be
answered than those sent to Fyodor directly.
Code patches to fix bugs are even better than bug reports. Basic instructions for creating patch files with your changes are available at
https://svn.nmap.org/nmap/HACKING. Patches may be sent to nmap-dev (recommended) or to Fyodor directly.
HISTORY
Zenmap was originally derived from Umit, an Nmap GUI created during the Google-sponsored Nmap Summer of Code in 2005 and 2006. The primary
author of Umit was Adriano Monteiro Marques. When Umit was modified and integrated into Nmap in 2007, it was renamed Zenmap.
AUTHORS
Nmap
Fyodor <fyodor@nmap.org> (http://insecure.org)
Hundreds of people have made valuable contributions to Nmap over the years. These are detailed in the CHANGELOG file which is distributed
with Nmap and also available from http://nmap.org/changelog.html.
Umit
Zenmap is derived from the Umit Nmap frontend, which was started by Adriano Monteiro Marques as an Nmap/Google Summer of Code project
(<py.adriano@gmail.com>, http://www.umitproject.org).
Zenmap 07/28/2013 ZENMAP(1)