AnsweredAssumed Answered

How can we block Nmap and other Port scanners

Question asked by JunedRafeek kittur on Dec 11, 2018
Latest reply on Dec 13, 2018 by Enis Dunic

How can I block Nmap scan from Outside? . 

 

VAPT report submitted by external vendors used nmap to scan our network and checkpoint gave pretty much all the information which can used further for attacks. How can we block such request on checkpoint?

 

Sample :: 

 

Starting Nmap 7.70 ( https://nmap.org ) at 2018-12-11 17:51  Standard Time
Nmap scan report for 94.X.X.X 
Host is up (0.0086s latency).
Not shown: 95 closed ports
PORT STATE SERVICE VERSION
22/tcp open ssh OpenSSH 4.3 (protocol 2.0)
25/tcp open smtp Postfix smtpd
80/tcp open http Check Point NGX Firewall-1
443/tcp open ssl/http Connectra Check Point Web Security httpd
444/tcp filtered snpp
Aggressive OS guesses: Linux 2.6.18 (94%), Linux

Outcomes