Port Scanning; the Good, Bad, & Ugly


By Brian Wilson

What is port scanning you might ask? Well port scanning can be describe many ways but basically is the act of sending packets to a destination of group of hosts to try to get a response. Why do I need to port scan and do others port scan me? You might want to port scan your broadband connection to see what your network has open to the internet and others may port scan you to find a way into your network. Port scanning can be done for good reasons and malicious purposes. Other real good reasons for port scanning is to see what ports your software might be using this can help you trouble shoot network issues. There are too many reasons to list here on the pros of ports scans and port scan software but you must first understand what a port is and how it affects you computer and network.

What is a port and how dose it work?

Ports are similar to addresses for example if you send a package to a friend you will have to put many entries on the shipping label for it to get to him. You would need a name, street number, city, State, zip code, and sometimes a country. Without this information your package would not get the recipient. Ports work in a similar way. Ports are part of the address for internet traffic. Ports also have to have other data to be used like an IP address, Protocol, and transport media.

Who controls port numbers?

Ports numbers are standardized though the “Internet Assigned Numbers Authority” or IANA. The port numbers are divided into three ranges: The Well Known Ports, Registered Ports, and the Dynamic and/or Private Ports.

The Well Known Ports are those from 0 through 1023. DCCP Well Known ports SHOULD NOT be used without IANA registration. The registration procedure is defined in [RFC4340], Section 19.9.

The Registered Ports are those from 1024 through 49151 DCCP Registered ports SHOULD NOT be used without IANA registration. The registration procedure is defined in [RFC4340], Section 19.9.

The Dynamic and/or Private Ports are those from 49152 through 65535.

Port Scanning Software.

Let’s now take a look at software that is used for port scanning. A lot of the software out there for port scanning also has other futures for vulnerability scanning. One of the most well known port scanning tools is NMAP.

Nmap ("Network Mapper") is a free open source utility for network exploration or security auditing. It was designed to rapidly scan large networks, although it works fine against single hosts. Nmap uses raw IP packets in novel ways to determine what hosts are available on the network, what services (application name and version) those hosts are offering, what operating systems (and OS versions) they are running, what type of packet filters/firewalls are in use, and dozens of other characteristics. Nmap runs on most types of computers and both console and graphical versions are available. Nmap is free and open source (description from NMAP’s website).

Angry IP scanner is a very fast IP scanner and port scanner. It can scan IP addresses in any range as well as any their ports. Its binary file size is very small compared to other IP or port scanners. Angry IP scanner simply pings each IP address to check if it's alive, then optionally it is resolving its hostname, determines the MAC address, scans ports, etc. The amount of gathered data about each host can be extended with the available plugin's (description from angryziber.com).

SuperScan 4 is a Powerful TCP port scanner, pinger, and resolver. Here are some of the futures; Superior scanning speed, Support for unlimited IP ranges, Improved host detection using multiple ICMP methods, TCP SYN scanning, UDP scanning (two methods), IP address import supporting ranges and CIDR formats, Simple HTML report generation, Source port scanning, Fast hostname resolving, Extensive banner grabbing, Massive built-in port list description database, IP and port scan order randomization, A selection of useful tools (ping, trace route, Whois etc). SuperScan is from foundstone.com and this description was gathered from there website.

Online Scanners

There are also websites that offer free port scans to help you secure your network. Here is a list of a few scanning sites.

Sygate Online Scan (scan.sygate.com) extended security check (Stealth Scan, Trojan Scan.

Planet Security Firewall-Check (planet-security.net) Fast, extended check, checks currently high-endangered ports.

Crucialtests (crucialtests.com) concise, incl. advisor.

ShieldsUP (grc.com) Quick Scanner, clearly laid out.

How to block all the scanning

Now that you have seen what ports scanning is and the uses for it you might want to know how to protect you network from scans. The best thing to do is have a firewall and use up-to-date Anti-virus & Anti-Spyware programs. You will not be able to stop the scans on your network but with a good firewall the person scanning you will not see any traffic back and hopefully assume your connection is not on or no assemble. To find more information on port scanning and the tools used try to Google it.


More Resources

Unable to open RSS Feed $XMLfilename with error HTTP ERROR: 404, exiting

More Broadband Internet Information:

Related Articles

Find the Best Broadband Provider for You
To find the best broadband provider for you takes some effort.Like anything in life, doing the research is critical to getting the best product at the best price.
Chat-less
Are you suddenly chat-less now that Yahoo has shut down many chat sites, due to complaints? One complaint was that people where using chat rooms to lure under age kids for sex. While others say the chat rooms were used to promote underage sex.
Understanding Broadband - Are You Ready To Upgrade?
Are you ready to upgrade your residential service to DSL or business service to real broadband or T1? Well, the answer lies in what you need. Before you can realize your needs, you must understand more of what the word broadband really means.
Business Satellite Internet Products Compared - 2005
There are a number of options available for Business Class Satellite Internet connectivity in the U.S.
How to Secure your DSl / Cable Internet Connection Against Malicious Attacks
Securing your Windows Xp computer is done by achieving two main tasks.The first, is to prevent unauthorized users sitting at your computer and logging in through your keyboard.
Wireless Technologies in Mass Transit for Convenience and Safety
Modern Mass Transit is making it easier for commuters, especially with the latest inter connecting wireless technologies. Many buses, commuter trains, shuttles and even trolley cars now have WiFi wireless computer access so no one is out of touch during the travel time.
3 Tips to Fix Unreliable Wireless Connections
Generally speaking, wireless computer connections are reliable. However, nothing is perfect, and sometimes you may lose your connection or experience a weak signal.
Searching for the Right ISP
When searching for the right ISP there are a number of items to look at. How much is it going to cost me? What is the connection like? What are the Features? Is it available in my area? You will soon find that there are many ISP's to choose from.
Ka Band -Affordable Satellite Internet On The Way!
Ka Band VSAT* satellite internet technology has enormous possibilities for telecommuters, rural locations and eventually for Motor Home users around the U.S.
Dreams Come True With The Help Of Global Consciousness On The Internet
Dreams. There are two types of dreams: 1.
Time to Redefine Telecom
Telecommunication, according to Wikipedia, is the extension of communication over a distance. In practice, it also recognizes that something may be lost in the process; hence the term 'telecommunication' covers all forms of distance and/or conversion of the original communications, including radio, telegraphy, television, telephony, data communication and computer networking.
Broadband is State-of-the-Art Internet Access: How Can a Broadband Cable Benefit You?
We are now well ensconced in a time when the Web is riddled with graphics, animations, sounds, and videos, bringing about a necessity for superior internet access such as that which broadband can provide. The fact is that anything less than the speed supplied by a broadband cable has become inadequate for today's Web users.
Broadband Features
Internet service providers are becoming more and more present as the internet makes its way into more and more homes in America. This is making it harder to decide which ISP to subscribe to.
What is Broadband?
Defining broadband can get complicatedThere are many different takes on how to actually define the word: broadband. The first and most obvious way to define it is a transmission medium that allows for multiple pathways and types of data, far exceeding simple voice communication devices.
The Coming Television Revolution
The revolution is just getting started and will be begin to make its mark this year. By 2010, it will begin to take off.
How to Test Your DSL and Cable Internet Connection Speed
There are two measured elements that determine your internet connection speed. They are: The download rate, and the upload rate of data measured in bits per seconds.
Broadband - Will it Affect Your Online Marketing Future?
The coming age of general Broadband use bearing down uponus, minute by minute, is going to leave many changes in its wake. Some will be welcome; others will demand all we can do, just to keep up!Of course, items like high quality graphics, streaming videoand movies on demand will be commonplace.
How to Choose Best ISP for Your Needs
Well, the Internet access industry is starting to shake its way out. The much-anticipated consolidation of access providers is nearing its end.
A Cheap Alternative To Broadband?
Are you a dial-up user looking for a faster connection,but don't like Broadband prices? If so, you should take a look at a new service called OnSpeed, which has received rave reviews in Internet technology publications.What OnSpeed does is to re-route web pages and email viaits own servers, compressing the data on the fly prior to sending it onwards to your PC.
Wi-Fi Hotspot Security
You've set up your Boingo account, you're hanging out at the Home Turf sports bar in LAX and you figure you'll do a little business or check your e-mail while sipping a Chardonnay. Well, that's the point of Wi-Fi hotspots; being able to take care of a few things while in a relaxing atmosphere.