PaulDotCom mailing list archives

Re: iptables rules to simulate Null, Fin and Xmas responses

From: Robin Wood <robin () digininja org>
Date: Mon, 13 May 2013 07:30:45 +0100

On May 13, 2013 1:46 AM, "Matthew Schwartz" <matthew.r.schwartz () gmail com>
wrote:


Do you mean Iptable rules to detect Null, Fin or Xmas nmap scans?


No I want the students to have to use a Null scan to detect a service that
is running so I want iptables rules to block any other scan type.

Its a contrived set up just to show that sometimes a basic SYN scan won't
find everything.

Robin

Matthew

On May 12, 2013, at 9:28, Robin Wood <robin () digininja org> wrote:

Hi
As part of the lab I'm building I'd like to create some machines which

will require students to use Null, Fin or Xmas nmap scans to identify
ports. Does anyone know how to set up iptables rules to simulate these?


Robin
_______________________________________________
Pauldotcom mailing list
Pauldotcom () mail pauldotcom com
http://mail.pauldotcom.com/cgi-bin/mailman/listinfo/pauldotcom
Main Web Site: http://pauldotcom.com

_______________________________________________
Pauldotcom mailing list
Pauldotcom () mail pauldotcom com
http://mail.pauldotcom.com/cgi-bin/mailman/listinfo/pauldotcom
Main Web Site: http://pauldotcom.com

_______________________________________________
Pauldotcom mailing list
Pauldotcom () mail pauldotcom com
http://mail.pauldotcom.com/cgi-bin/mailman/listinfo/pauldotcom
Main Web Site: http://pauldotcom.com

Current thread:

iptables rules to simulate Null, Fin and Xmas responses Robin Wood (May 12)
- Re: iptables rules to simulate Null, Fin and Xmas responses Matthew Schwartz (May 12)
  - Re: iptables rules to simulate Null, Fin and Xmas responses Robin Wood (May 13)
- Re: iptables rules to simulate Null, Fin and Xmas responses Matthew Schwartz (May 12)