Solved

Port scan firewall with NMAP

Posted on 2014-09-14
2
482 Views
Last Modified: 2014-09-18
When auditing the public-facing side of a firewall, is there an appropriate/recommended range of ports to scan? We're using NMAP. By default, an intense scan only scans the first 1000 ports. Seems pretty limited. Does anyone have a strong opinion or some professional experience regarding this? Should we scan UDP and TCP? Any example NMAP lines?

Thanks!
0
Comment
Question by:meade470
2 Comments
 
LVL 62

Assisted Solution

by:gheist
gheist earned 200 total points
ID: 40322537
You should scan all ports if you are at it. Just make sure you disable rate-limiting and/or port scan detection for your scanning IP.
Normally you allow just few public-facing services, so nothing more should appear.
0
 
LVL 2

Accepted Solution

by:
vpnttg earned 300 total points
ID: 40322777
TCP: nmap -sS -p 0-65535 <IP address>
UDP: nmap -sU -p 0-65535 <IP address>
0

Featured Post

Microsoft Certification Exam 74-409

Veeam® is happy to provide the Microsoft community with a study guide prepared by MVP and MCT, Orin Thomas. This guide will take you through each of the exam objectives, helping you to prepare for and pass the examination.

Question has a verified solution.

If you are experiencing a similar issue, please ask a related question

Suggested Solutions

Title # Comments Views Activity
How VPC help preventing STP Loops 4 99
Help with a subnetting question 7 43
Cisco  3750E switches 1 13
cisco switch 3750E port channel down 11 16
Pop culture is prime bait for hackers seeking to infect user’s computers and mobile devices with malicious malware. Hackers know exactly what the latest trends are online and know how to use them to their advantage.
Knowing where your website is hosted is as important as the features you receive, the monthly fee, and the support you receive. Due diligence should be done when choosing your next hosting provider.
Nobody understands Phishing better than an anti-spam company. That’s why we are providing Phishing Awareness Training to our customers. According to a report by Verizon, only 3% of targeted users report malicious emails to management. With compan…
The Email Laundry PDF encryption service allows companies to send confidential encrypted  emails to anybody. The PDF document can also contain attachments that are embedded in the encrypted PDF. The password is randomly generated by The Email Laundr…

772 members asked questions and received personalized solutions in the past 7 days.

Join the community of 500,000 technology professionals and ask your questions.

Join & Ask a Question