Is it possible to perform port scanning of the local host itself as another host?

Solution 1

The short answer is: no, you cannot see how your server looks from the outside by looking from the inside.

Long answer: As you wrote yourself, the scan from the outside is affected by the firewall, and possibly other intervening network components. In theory you could simulate that influence by way of a virtual network you set up on your VPS. But that's a lot of work and you'd have to know exactly what those components are and how they are configured. The only feasible approach is to find an external host from which you can do the scan.

Solution 2

If you don't have any firewall, you can run netstat -ln --inet --inet6 to list the listening sockets. This will show what listens to which interfaces.

Quick sample:

Active Internet connections (only servers)
Proto Recv-Q Send-Q Local Address           Foreign Address       State      

tcp        0      0 0.0.0.0:5298            0.0.0.0:*            LISTEN     
tcp        0      0 0.0.0.0:22              0.0.0.0:*            LISTEN      
tcp        0      0 127.0.0.1:631           0.0.0.0:*            LISTEN      
tcp        0      0 127.0.0.1:1080          0.0.0.0:*            LISTEN     

Here we see two types:

1. Sockets listening to 0.0.0.0 (or :: if you have IPv6)
2. Sockets listening to 127.0.0.1 (or ::1 on IPv6)

The first kind, listening to 0.0.0.0 or :: (any IP) will be available remotely, unless firewalled. Sockets listening only on localhost (127.0.0.1 or ::1) is only reachable via the loopback interface, and thus not remotely.

In addition, you can have sockets bound to a specific interface, in which case the IP of the interface will be shown in column 3, e.g. 192.168.8.1 - meaning they're accessible only on that interface.

This is not the same as a port scan, as it does not take firewall into account, but combined with reading firewall configuration it may be a good way to do the setup, and only verify via a portscan after you've configured firewall.

Related videos on Youtube

16 : 26

Attack on open ports in Metasploitable | FTP server hack

Tech-Hacker

26264

13 : 11

Scanning Local Network with nmap (Network Mapper) Host Discovery | Service Discovery

TechnologyFirst

505

06 : 52

How To Use nmap To Scan For Open Ports

Tony Teaches Tech

18

06 : 40

How to Check if a Port is Open on Windows Server (2016, 2019, 2022)

ITProTV

11

07 : 00

How to Port scanning with Kali Linux

I'M Hacker

3

17 : 09

Nmap Tutorial to find Network Vulnerabilities

NetworkChuck

1

03 : 17

Ubuntu: Is it possible to perform port scanning of the local host itself as another host?

Roel Van de Paar

0

Author by

pa4080

I have a degree as a Mechanical Engineer and Doctor of Engineering Science as well. However, since I am self-educated at Computer Science and English language, please be tolerant at my mistakes and feel free to correct them when it is necessary. Actually my real name is Sраs Zdrаvkоv Sраsоv. In my birthplace Pacho is "short" for Spas. So the first two letters of my nickname - 'pa' - comes from there. Written in Bulgarian, the number '4' starts with the letter 'ч' that is pronounced as 'ch'. The number '0' looks like the letter 'o'. So we have 'pa40', and finally '80' is my birth year ;) This nickname originates from the time before ICQ and mIRC was modern. Create Digital Ocean account and get $100 in credit to use for 2 months just for signing up.

Updated on September 18, 2022