Est. Budget: $50.00
We need to block nmap scan with iptables rules only. Not using logs or additional software. System is wheezy. Kernel has no support of iptables -m psd. Iptables chain should block nmap scanners from getting list of open ports from our server. To get blocked, attacker should hit 2 different ports from our list. Those ports are never used by our services. Connection attempt to single port should not be blocked.
Possible specification to block scan: