Gufw

Nothing seems blocked-using nmap to verify

Asked by acidblue

Been scanning my localhost with nmapp to check for vulnerabilities.
I have apache and mysql and openSSH running on my system for testing, but I don't want
any outside connections, so I have the ports blocked, (Deny) for incoming connections.

But when I re-run nmap it still says the ports are open( 80, 22, 3306).
Shouldn't they al leats say 'filtered'??
Does scanning from within the localhost not considered an outside connection??

I have also tried blocking outside connections as well but nmap still says they are open.
BTW shouldn't blocking port 80 prevent me from web browsing?? Cause it isn't.
I can web browse when port 80 is supposed to be blocked.

Question information

Language:
English Edit question
Status:
Solved
For:
Gufw Edit question
Assignee:
No assignee Edit question
Solved by:
acidblue
Solved:
Last query:
Last reply:
Revision history for this message
costales (costales) said : 		#1

Hi! The traffic is blocked from the net, not in your computer, then nmap can report open ports in your computer. You must try a test from the net.

About the web browser, could you enable the report of active connections in the Gufw preferences? Then try to browse, the browser will exit by random ports ;) http://stackoverflow.com/questions/79381/accessing-websites-through-a-different-port

Best regards.

Revision history for this message
acidblue (sunblaster5) said : 		#2

Thanks for the reply, kinda figured it wouldn't block nmap scans from within just wanted to be sure.
As for blocking port 80, I only had incoming request blocked not outgoing, so I think thats why I was still
able to web browse.