Welcome to the MacNN Forums.

If this is your first visit, be sure to check out the FAQ by clicking the link above. You may have to register before you can post: click the register link above to proceed. To start viewing messages, select the forum that you want to visit from the selection below.

You are here: MacNN Forums > Enthusiast Zone > Networking > After a nmap port scan of my Airport router...

After a nmap port scan of my Airport router...
Thread Tools
Tyler McAdams
Mac Elite
Join Date: Feb 2002
Location: Hilton Head, SC
Status: Offline
Reply With Quote
Nov 26, 2003, 07:06 PM
 
...I found the following ports to be opened:

Starting nmap V. 3.00 ( www.insecure.org/nmap )
Warning: OS detection will be MUCH less reliable because we did not find at least 1 open and 1 closed TCP port
Interesting ports on
(The 1589 ports scanned but not shown below are in state: closed)
Port State Service
135/tcp filtered loc-srv
136/tcp filtered profile
137/tcp filtered netbios-ns
138/tcp filtered netbios-dgm
139/tcp filtered netbios-ssn
445/tcp filtered microsoft-ds
593/tcp filtered http-rpc-epmap
4444/tcp filtered krb524
6666/tcp filtered irc-serv
6667/tcp filtered irc
6668/tcp filtered irc
7000/tcp filtered afs3-fileserver
No exact OS matches for host (test conditions non-ideal).
TCP/IP fingerprint:
SInfo(V=3.00%P=i686-pc-windows-windows%D=11/26%Time=3FC54C64%O=-1%C=1)
T5(Resp=
Y%DF=N%W=0%ACK=S++%Flags=AR%Ops=)
T6(Resp=Y%DF=N%W=C00%ACK=S%Flags=AR%Ops=WNMETL)
T7(Resp=Y%DF=N%W=C00%ACK=S++%Flags=AR%Ops=WNMETL)
PU(Resp=N)
Nmap run completed -- 1 IP address (1 host up) scanned in 32 sec


Why are these ports open? I know that I did not open them!!!
(Last edited by Tyler McAdams; Nov 27, 2003 at 05:44 PM. )
     
Scotttheking
Moderator Emeritus
Join Date: Dec 2000
Location: College Park, MD
Status: Offline
Reply With Quote
Nov 26, 2003, 10:46 PM
 
Nothing to worry about.
Filtered doesn't mean open.

nmap says I have 1591 filtered ports.
My website
Help me pay for college. Click for more info.
     
Tyler McAdams  (op)
Mac Elite
Join Date: Feb 2002
Location: Hilton Head, SC
Status: Offline
Reply With Quote
Nov 27, 2003, 01:05 AM
 
Originally posted by Scotttheking:
Nothing to worry about.
Filtered doesn't mean open.

nmap says I have 1591 filtered ports.
Thanks! So the airport router actually has stateful packet inspection... or am I asking too much?
     
kampl
Dedicated MacNNer
Join Date: Jul 2002
Location: Boston, MA
Status: Offline
Reply With Quote
Nov 29, 2003, 10:58 PM
 
In my experience with nmap, when ports are expicitly denied on a router you will see them as "filtered" as opposed to nothing (not open, no reply).

SPI firewalls tend to be a bit more intelligent and drop the traffic, not yielding any information to the host probing.

What are you looking for?
     
   
Thread Tools
Forum Links
Forum Rules
You may not post new threads
You may not post replies
You may not post attachments
You may not edit your posts
BB code is On
Smilies are On
[IMG] code is On
HTML code is Off
Trackbacks are On
Pingbacks are On
Refbacks are On
Top
Privacy Policy
All times are GMT -5. The time now is 02:15 AM.
All contents of these forums © 1995-2011 MacNN. All rights reserved.
Branding + Design: www.gesamtbild.com
vBulletin v.3.8.7 © 2000-2011, Jelsoft Enterprises Ltd., Content Relevant URLs by vBSEO 3.3.2