Port Scanning; the Good, Bad, & Ugly


By Brian Wilson

What is port scanning you might ask? Well port scanning can be describe many ways but basically is the act of sending packets to a destination of group of hosts to try to get a response. Why do I need to port scan and do others port scan me? You might want to port scan your broadband connection to see what your network has open to the internet and others may port scan you to find a way into your network. Port scanning can be done for good reasons and malicious purposes. Other real good reasons for port scanning is to see what ports your software might be using this can help you trouble shoot network issues. There are too many reasons to list here on the pros of ports scans and port scan software but you must first understand what a port is and how it affects you computer and network.

What is a port and how dose it work?

Ports are similar to addresses for example if you send a package to a friend you will have to put many entries on the shipping label for it to get to him. You would need a name, street number, city, State, zip code, and sometimes a country. Without this information your package would not get the recipient. Ports work in a similar way. Ports are part of the address for internet traffic. Ports also have to have other data to be used like an IP address, Protocol, and transport media.

Who controls port numbers?

Ports numbers are standardized though the “Internet Assigned Numbers Authority” or IANA. The port numbers are divided into three ranges: The Well Known Ports, Registered Ports, and the Dynamic and/or Private Ports.

The Well Known Ports are those from 0 through 1023. DCCP Well Known ports SHOULD NOT be used without IANA registration. The registration procedure is defined in [RFC4340], Section 19.9.

The Registered Ports are those from 1024 through 49151 DCCP Registered ports SHOULD NOT be used without IANA registration. The registration procedure is defined in [RFC4340], Section 19.9.

The Dynamic and/or Private Ports are those from 49152 through 65535.

Port Scanning Software.

Let’s now take a look at software that is used for port scanning. A lot of the software out there for port scanning also has other futures for vulnerability scanning. One of the most well known port scanning tools is NMAP.

Nmap ("Network Mapper") is a free open source utility for network exploration or security auditing. It was designed to rapidly scan large networks, although it works fine against single hosts. Nmap uses raw IP packets in novel ways to determine what hosts are available on the network, what services (application name and version) those hosts are offering, what operating systems (and OS versions) they are running, what type of packet filters/firewalls are in use, and dozens of other characteristics. Nmap runs on most types of computers and both console and graphical versions are available. Nmap is free and open source (description from NMAP’s website).

Angry IP scanner is a very fast IP scanner and port scanner. It can scan IP addresses in any range as well as any their ports. Its binary file size is very small compared to other IP or port scanners. Angry IP scanner simply pings each IP address to check if it's alive, then optionally it is resolving its hostname, determines the MAC address, scans ports, etc. The amount of gathered data about each host can be extended with the available plugin's (description from angryziber.com).

SuperScan 4 is a Powerful TCP port scanner, pinger, and resolver. Here are some of the futures; Superior scanning speed, Support for unlimited IP ranges, Improved host detection using multiple ICMP methods, TCP SYN scanning, UDP scanning (two methods), IP address import supporting ranges and CIDR formats, Simple HTML report generation, Source port scanning, Fast hostname resolving, Extensive banner grabbing, Massive built-in port list description database, IP and port scan order randomization, A selection of useful tools (ping, trace route, Whois etc). SuperScan is from foundstone.com and this description was gathered from there website.

Online Scanners

There are also websites that offer free port scans to help you secure your network. Here is a list of a few scanning sites.

Sygate Online Scan (scan.sygate.com) extended security check (Stealth Scan, Trojan Scan.

Planet Security Firewall-Check (planet-security.net) Fast, extended check, checks currently high-endangered ports.

Crucialtests (crucialtests.com) concise, incl. advisor.

ShieldsUP (grc.com) Quick Scanner, clearly laid out.

How to block all the scanning

Now that you have seen what ports scanning is and the uses for it you might want to know how to protect you network from scans. The best thing to do is have a firewall and use up-to-date Anti-virus & Anti-Spyware programs. You will not be able to stop the scans on your network but with a good firewall the person scanning you will not see any traffic back and hopefully assume your connection is not on or no assemble. To find more information on port scanning and the tools used try to Google it.


More Resources

Unable to open RSS Feed $XMLfilename with error HTTP ERROR: 404, exiting

More Broadband Internet Information:

Related Articles

Beta Testing First Mobile Internet Satellite Broadband, Part I
Being on the road has its advantages; the freedom is the biggest one. One draw back was the Internet Service, but having done much study on the mobile Internet Satellite Systems and future technologies; I was able to become a beta tester of the MotoSat system in 1999.
Webmail - What are the Benefits?
There are so many different webmail services on the internet, from the huge ones like Yahoo, Gmail, Hotmail, to the much smaller ones from private websites and ISPs. There is a lot to worry about with e-mail these days but some of these front line webmail services are really a great way of helping to protect your system.
Top 3 UK Broadband Providers
Every Internet provider today wants to make it sound like you are getting something for nothing. There are even some providers who will offer free access if you are willing to surf the Internet with numerous pop-ups from their advertisers.
Beta Testing First Mobile Internet Satellite Broadband, Part III
Back in 1999 when we beta tested the first wireless mobile office with satellite broadband Internet we had something that no one lese had. Today you can buy these systems for $5,500 fully installed on any RV.
Searching for the Right ISP
When searching for the right ISP there are a number of items to look at. How much is it going to cost me? What is the connection like? What are the Features? Is it available in my area? You will soon find that there are many ISP's to choose from.
How to Test Your DSL and Cable Internet Connection Speed
There are two measured elements that determine your internet connection speed. They are: The download rate, and the upload rate of data measured in bits per seconds.
How to Get Broadband
Getting broadband services getting easy, but research still required.Broadband Internet services have become more the norm today, unlike the dial-up days of the late 1990s.
Chat-less
Are you suddenly chat-less now that Yahoo has shut down many chat sites, due to complaints? One complaint was that people where using chat rooms to lure under age kids for sex. While others say the chat rooms were used to promote underage sex.
Internet Service Providers
Internet Service Provider or ISP is a company that provides access to the Internet.Before choosing an ISP, it is important to assess your company's business and marketing goals.
Wireless Technologies in Mass Transit for Convenience and Safety
Modern Mass Transit is making it easier for commuters, especially with the latest inter connecting wireless technologies. Many buses, commuter trains, shuttles and even trolley cars now have WiFi wireless computer access so no one is out of touch during the travel time.
DSL Internet is a Simple and Easy Way to Get Fast Internet Service
DSL - which stands for Digital Subscriber Line - is a great way to get high-speed internet service, without having to get a cable modem, or live in an area that has cable lines. DSL providers have very fast and comparatively cheap internet connectivity.
Why You Should Switch To A Fast Internet Connection
With high-speed Internet access becoming available in more and more areas, perhaps it is now available in your neck of the woods. If it is, you might be wondering if it makes sense to upgrade from dialup.
Mind Machine Interfacing
SQUID:In 1984 I was partnered with a Cable TV engineer and founding father by the name of Ray Osborne. He was working with people developing oscillating noise loop broadband technologies.
The Coming Television Revolution
The revolution is just getting started and will be begin to make its mark this year. By 2010, it will begin to take off.
What is Broadband?
Defining broadband can get complicatedThere are many different takes on how to actually define the word: broadband. The first and most obvious way to define it is a transmission medium that allows for multiple pathways and types of data, far exceeding simple voice communication devices.
Broadband Features
Internet service providers are becoming more and more present as the internet makes its way into more and more homes in America. This is making it harder to decide which ISP to subscribe to.
What are Your Internet Connection Solutions?
Of primary concern to all internet users is their actual connection to the internet.A user needs to look at all the factors and weigh the benefits and costsReliability - is the connection available 24/7, or do you get a busy signal?Speed - at what speeds can a user upload and download files?Costs - what are the setup and monthly costs for the internet connection service?Support - is support available 24/7 and is it free or is there a cost associated with it?Availability - is the desired service available at your location?Available options with good and bad features include:Local dial up with phone company (local isp) - While this many times is the simplest, often times, they are the most costly and support can be an issue.
BT Broadband
Approximately 4 million people in the UK use ADSL with an extra 2 million using a cable connection, meaning 6 million people in the UK have an always-on internet connection. Of these over 1.
Beta Testing First Mobile Internet Satellite Broadband, Part II
We were the first beta testers of a Mobile Command Center with full Internet Access in 1999. Our mobile command center was also the first unit with WiFi and Internet Mobile Access.
Why Choose Dial Up ISP Services
Dial up ISP service is the cheapest choice of any of the ISPs and may be a good option for that family on a tight budget. The software upgrades have definitely increased the speed of dial up ISPs, but their speed is still slower than some other options.