You want to know if you can block a port scan from hitting your firewall (i.e. trying to place the firewall on Stealth mode). You do not want the outside world to see the ports that the firewall is listening on.
This is because the Raptor Firewall permits or denies IP packets at the application layer of the OSI model. The firewall interfaces and the operating system need to listen on ports that are in use by the firewall daemons or any Generic Service Passers (GSPs) in order to pass traffic.
NOTE: It is acceptable for the outside world to see what ports is the firewall listening on because the firewall, configured properly, only allows valid traffic. It is not possible to make the firewall invisible (Stealth mode) to scans or pings because, for the firewall to work, it needs to listen on the port numbers where it expects traffic.
This is machine translated content
Login to Subscribe
Please login to set up your subscription.
Didn't find the article you were looking for? Try these resources.