Esta sección te permite ver todos los mensajes escritos por este usuario. Ten en cuenta que sólo puedes ver los mensajes escritos en zonas a las que tienes acceso en este momento.
ip firewall filter
add chain=input protocol=tcp/udp dst-port=1111 in-interface=WAN
connection-state=new action=add-src-to-address-list address-list=RDP timeout=00:00:10
ip firewall filter
add chain=input protocol=tcp/udp dst-port=2222 in-interface=WAN
connection-state=new src-address-list=RDP
action=add-src-to-address-list address-list=RDP1 timeout=00:00:10
ip firewall filter
add chain=input protocol=tcp/udp dst-port=5555 in-interface=WAN
connection-state=new src-address-list=RDP2
action=add-src-to-address-list address-list=RDP-SECURE timeout=00:01:00
ip firewall filter
add chain=forward protocol=tcp dst-port=3389/22 src-address-list=RDP-SECURE
action=accept log-prefix="RDP WHITE LIST" log=yes
ip firewall nat
add chain=dst-nat protocol=tcp dst-port=3389 in-interface=WAN
src-address-list=RDP-SECURE action=dst-nat
to-addressess=<ip-servidor> to-ports=<puerto servicio> log-prefix="RDP FWD" log=yes
Starting Nmap 7.60 ( https://nmap.org ) at 2018-09-17 22:03 Hora estándar de Argentina
NSE: Loaded 146 scripts for scanning. NSE: Script Pre-scanning.
Initiating NSE at 22:03 Completed NSE at 22:03, 0.00s elapsed Initiating NSE at 22:03 Completed NSE at 22:03, 0.00s elapsed
Initiating Parallel DNS resolution of 1 host. at 22:03 Completed Parallel DNS resolution of 1 host. at 22:03, 6.41s elapsed Initiating SYN Stealth Scan at 22:03 Scanning <dirección ip wan> (<dirección ip wan>) [1000 ports]
SYN Stealth Scan Timing: About 13.60% done; ETC: 22:07 (0:03:17 remaining)
SYN Stealth Scan Timing: About 25.60% done; ETC: 22:07 (0:02:57 remaining)
SYN Stealth Scan Timing: About 37.60% done; ETC: 22:07 (0:02:31 remaining)
SYN Stealth Scan Timing: About 49.60% done; ETC: 22:07 (0:02:03 remaining)
SYN Stealth Scan Timing: About 61.60% done; ETC: 22:07 (0:01:34 remaining)
SYN Stealth Scan Timing: About 73.60% done; ETC: 22:07 (0:01:05 remaining)
SYN Stealth Scan Timing: About 85.60% done; ETC: 22:07 (0:00:35 remaining) Completed
SYN Stealth Scan at 22:07, 247.91s elapsed (1000 total ports)
Initiating Service scan at 22:07 Initiating OS detection (try #1) against <dirección ip wan>
Retrying OS detection (try #2) against <dirección ip wan>
Initiating Traceroute at 22:07 Completed Traceroute at 22:07, 9.16s elapsed
Initiating Parallel DNS resolution of 5 hosts. at 22:07 Completed Parallel DNS resolution of 5 hosts. at 22:08, 16.50s elapsed NSE: Script scanning <wan>
Initiating NSE at 22:08 Completed NSE at 22:08, 0.01s elapsed Initiating NSE at 22:08 Completed NSE at 22:08, 0.00s elapsed Nmap scan report for <dirección ip wan>
Host is up (0.77s latency).
rDNS record for host.telecom.net.ar All 1000 scanned ports on <dirección ip wan>
are filtered Too many fingerprints match this host to give specific OS details TRACEROUTE (using proto 1/icmp)
HOP RTT ADDRESS
1 4.00 ms 192.168.3.1
2 8.00 ms 10.10.1.1
3 57.00 ms Broadcom.Home (192.168.1.1)
4 271.00 ms host1.telecom.net.ar (host1)
5 279.00 ms host2.telecom.net.ar (host2) 6 ...
30 NSE: Script Post-scanning. Initiating NSE at 22:08 Completed NSE at 22:08, 0.00s elapsed
Initiating NSE at 22:08 Completed NSE at 22:08, 0.00s elapsed Read data files from: C:\Program Files (x86)\Nmap OS and Service detection performed.
Please report any incorrect results at https://nmap.org/submit/ .
Nmap done: 1 IP address (1 host up) scanned in 297.37 seconds
Raw packets sent: 2128 (96.912KB) | Rcvd: 18 (1.156KB)
Como su predecesor, ntopng en si mismo no es un colector de flujos. Puede actuar como un colector en combinación
con Nprobe. Para realizar esta conexion, debe iniciar Nprobe con el parametro --zmq y apuntar a la interfaz de ntopng
para el Nprobe zmq endpoint.
Utilizando ésta configuración da al administrador la posibilidad de utilizar ntopng como colector gráfico (web-ui / gui).
[--dns-mode|-n] <modo>| Modo de resolución de direcciones DNS
| 0 - Decodifica respuestas DnS y resuelve direcciones Ip locales. (defecto)
| 1 - Decodifica respuestas Dns y resuelve todas las direcciones Ip.
| 2 - Decodifica respuestas DnS y no resuelve la dirección Ip.
| 3 - No decodifica respuestas Dns y no resuelve direcciones Ip.
root@kali:~#kill 9200