Solved

Port scan firewall with NMAP

Posted on 2014-09-14
2
494 Views
Last Modified: 2014-09-18
When auditing the public-facing side of a firewall, is there an appropriate/recommended range of ports to scan? We're using NMAP. By default, an intense scan only scans the first 1000 ports. Seems pretty limited. Does anyone have a strong opinion or some professional experience regarding this? Should we scan UDP and TCP? Any example NMAP lines?

Thanks!
0
Comment
Question by:meade470
[X]
Welcome to Experts Exchange

Add your voice to the tech community where 5M+ people just like you are talking about what matters.

  • Help others & share knowledge
  • Earn cash & points
  • Learn & ask questions
2 Comments
 
LVL 62

Assisted Solution

by:gheist
gheist earned 200 total points
ID: 40322537
You should scan all ports if you are at it. Just make sure you disable rate-limiting and/or port scan detection for your scanning IP.
Normally you allow just few public-facing services, so nothing more should appear.
0
 
LVL 2

Accepted Solution

by:
vpnttg earned 300 total points
ID: 40322777
TCP: nmap -sS -p 0-65535 <IP address>
UDP: nmap -sU -p 0-65535 <IP address>
0

Featured Post

Why You Need a DevOps Toolchain

IT needs to deliver services with more agility and velocity. IT must roll out application features and innovations faster to keep up with customer demands, which is where a DevOps toolchain steps in. View the infographic to see why you need a DevOps toolchain.

Question has a verified solution.

If you are experiencing a similar issue, please ask a related question

Suggested Solutions

Title # Comments Views Activity
SECURITY CAM sends emails but they show 12 hours in the past..?? 2 55
ransomware backup 8 136
CertificateAuthority and Firefox 4 41
WSUS - Updates Approval 2 31
This article describes my battle tested process for setting up delegation. I use this process anywhere that I need to setup delegation. In the article I will show how it applies to Active Directory
Ransomware continues to grow in reach and sophistication, putting data everywhere at risk. Learn how to avoid being caught in its sinister clutches with these 11 key tips.
Sending a Secure fax is easy with eFax Corporate (http://www.enterprise.efax.com). First, Just open a new email message.  In the To field, type your recipient's fax number @efaxsend.com. You can even send a secure international fax — just include t…
Email security requires an ever evolving service that stays up to date with counter-evolving threats. The Email Laundry perform Research and Development to ensure their email security service evolves faster than cyber criminals. We apply our Threat…

732 members asked questions and received personalized solutions in the past 7 days.

Join the community of 500,000 technology professionals and ask your questions.

Join & Ask a Question