Hi,
I think you forgot to read the line "(The 27 ports scanned but not
shown below are in state: filtered)".
If you had run nmap with the same options for both you would have got
the same output for both.
Regards
Craig Knox
> ##################################
> # RESULT
> ##################################
> NETFILTER SHOWS FILTERED PORTS:
> bash# nmap -sS -P0 -p 21,22,25,80,113,119,139,3128
> an.iptables-version-1.2.4.box.com
>
> Starting nmap V. 2.53 by fyodorat_private ( www.insecure.org/nmap/ )
> Interesting ports onan.iptables-version-1.2.4.box.com (x.x.x.x):
> Port State Service
> 21/tcp filtered ftp
> 22/tcp filtered ssh
> 25/tcp open smtp
> 80/tcp filtered http
> 113/tcp open auth
> 119/tcp filtered nntp
> 139/tcp filtered netbios-ssn
> 3128/tcp filtered squid-http
>
> ###################################
> # IPFILTER
> ###################################
>
> ###################################
> # RESULT
> ###################################
> IPFILTER DOES NOT SHOW FILTERED PORTS:
> bash# nmap -sS -P0 -p
> 7,9,13,19,21,22,23,25,37,79,111,113,139,143,512,513,51,540,665,6000,6112,7100,32771,32772,32773,32774,32775,32776
> an.ip.filter.box.com
>
> Starting nmap V. 2.53 by fyodorat_private ( www.insecure.org/nmap/ )
> Interesting ports on on.an.ipfilter.box.com) (x.x.x.x):
> (The 27 ports scanned but not shown below are in state: filtered)
> Port State Service
> 25/tcp open smtp
> 113/tcp open auth
>
> Nmap run completed -- 1 IP address (1 host up) scanned in 7 seconds
>
>
>
>
This archive was generated by hypermail 2b30 : Mon Mar 04 2002 - 17:52:57 PST