One of the biggest headaches for network administrators is open ports on devices. Unless you manually installed the operating system on every device on your network, ensuring to close down all unessential ports, you run the risk of attack.
The ports you should disable will vary by system and may even be dictated by the needs of specialized software (for instance, QuickBooks requires specific ports — determined by release — in order to function). You need to come up with a list of ports that either can or must remain open. Once you have that list, you can set about closing up shop on those machines.
But how do you know which machines have which ports open? Sure, you could go around to every machine on your network, open whatever is being used as a firewall, and manually make sure all necessary ports are open and all unnecessary ports are closed.
Or, you can scan the network and find out which machines have which ports open. When you know the location of open ports, you can check that information against your master list and close everything that is necessary. Now comes the tricky part.
How to run a port scan
How do you find out which machine has which port open? You run a port scan. In case you don’t know how to run a port scan, I’ll walk you through the process.
I’m using a Linux machine for the scan. Why? Because Linux has great scanning tools that are ready for the task, free, and easy to use.
If you don’t have a machine with Linux running on it, worry not — you can download a network penetration live distribution such as Kali Linux, burn the ISO onto a CD or USB flash drive, and boot a machine into a live instance of Linux (no changes will be made to the machine being used, as the live instance is run completely from RAM). With the live instance up and running, you’ll have an amazing assortment of network forensic/analysis tools at your disposal.
The port scanning tool you should use
The best tool for port scanning is Nmap. If you don’t want to monkey around with the command line, there’s an outstanding GUI front end called Zenmap, which is available for Linux, Windows, and Mac. If you don’t want to bother with Linux, you can install it on Windows. (Nmap is far more powerful than the Windows built-in network scanning tools.) Nmap and Zenmap work identically across platforms, so when you know how to use the tool on one platform, you can use it on all of the platforms.
We use cookies on our website to give you the most relevant experience by remembering your preferences and repeat visits. By clicking “Accept”, you consent to the use of ALL the cookies.
This website uses cookies to improve your experience while you navigate through the website. Out of these cookies, the cookies that are categorized as necessary are stored on your browser as they are essential for the working of basic functionalities of the website. We also use third-party cookies that help us analyze and understand how you use this website. These cookies will be stored in your browser only with your consent. You also have the option to opt-out of these cookies. But opting out of some of these cookies may have an effect on your browsing experience.
Necessary cookies are absolutely essential for the website to function properly. This category only includes cookies that ensures basic functionalities and security features of the website. These cookies do not store any personal information.
Any cookies that may not be particularly necessary for the website to function and is used specifically to collect user personal data via analytics, ads, other embedded contents are termed as non-necessary cookies. It is mandatory to procure user consent prior to running these cookies on your website.
One of the biggest headaches for network administrators is open ports on devices. Unless you manually installed the operating system on every device on your network, ensuring to close down all unessential ports, you run the risk of attack.
The ports you should disable will vary by system and may even be dictated by the needs of specialized software (for instance, QuickBooks requires specific ports — determined by release — in order to function). You need to come up with a list of ports that either can or must remain open. Once you have that list, you can set about closing up shop on those machines.
But how do you know which machines have which ports open? Sure, you could go around to every machine on your network, open whatever is being used as a firewall, and manually make sure all necessary ports are open and all unnecessary ports are closed.
Or, you can scan the network and find out which machines have which ports open. When you know the location of open ports, you can check that information against your master list and close everything that is necessary. Now comes the tricky part.
How to run a port scan
How do you find out which machine has which port open? You run a port scan. In case you don’t know how to run a port scan, I’ll walk you through the process.
I’m using a Linux machine for the scan. Why? Because Linux has great scanning tools that are ready for the task, free, and easy to use.
If you don’t have a machine with Linux running on it, worry not — you can download a network penetration live distribution such as Kali Linux, burn the ISO onto a CD or USB flash drive, and boot a machine into a live instance of Linux (no changes will be made to the machine being used, as the live instance is run completely from RAM). With the live instance up and running, you’ll have an amazing assortment of network forensic/analysis tools at your disposal.
The port scanning tool you should use
The best tool for port scanning is Nmap. If you don’t want to monkey around with the command line, there’s an outstanding GUI front end called Zenmap, which is available for Linux, Windows, and Mac. If you don’t want to bother with Linux, you can install it on Windows. (Nmap is far more powerful than the Windows built-in network scanning tools.) Nmap and Zenmap work identically across platforms, so when you know how to use the tool on one platform, you can use it on all of the platforms.
Popular Post
5G Radiation Is Harmful
Δεκέμβριος 14, 202110 hidden Office 365 features to boost
Σεπτέμβριος 30, 2021iPhone 13 vs. iPhone 12, 12 Pro
Σεπτέμβριος 19, 2021Popular Categories
Instagram Feeds
Follow on Instagram
Popular Tags
Archives
Πρόσφατα άρθρα
Πρόσφατα σχόλια
Ιστορικό
Kατηγορίες
Μεταστοιχεία