Peer Stefan schrieb:
Hi
From: Andrew Longstreet [mailto:alongstr@bmts.com] I have another small problem.
I am currently operating several SuSE 7.3 servers patched with freeswan 1.99 x.509 at kernel 2.4.16.
SuSEfirewall2 is running with the following config, I have included a partial firewall2.rc.config.
My question is, when I run newer versions of nmap to audit these systems, it shows tcp port 80 as open.
I do not have this port open, and my services file has it stripped out as well. Any ideas ???
[partial firewall2.rc.config left out]
Try to 'telnet <YOUR-EXT-IP> 80' to test, if port 80 really is open or not.
There is a file named firewall2-custom.rc.config. Did you apply any rules there, which open port 80? Or did you manually insert 'iptables -I INPUT -j ACCEPT -s
-d --dport 80'?
Add: Depending , from which host you run nmap. If it's an external host, you have probably a proxy between your machines ? I remember a dialin provider in germany (Mobilcom ala Freenet) which has such a proxy on port 80, which could lead to a false positive alarm. Torsten