hiding open ports from scanning

  • Hi, I have a few incoming ports open for a webserver. It is possible with pfsense to "hide" the state of the open port from nmap scanning (without closing the port) so it appears as closed or filtered ? If so how ?


  • LAYER 8 Global Moderator

    How do you think that could work? While it could be possible to block an IP from your open port, you would need to know what this IP is.

    You could for sure block based upon geoip with say pfblocker.

    And ok if they started scanning every port or lots of ports you could block with IPS.. But that doesn't stop them if they hit your open port first in their scan, or 2nd, etc.

Log in to reply