Which option enables UDP port scanning in Nmap, and what is a common drawback compared to TCP scanning?

Prepare for the Nmap and ZenMap Tests. Access flashcards and multiple choice questions, with hints and explanations for each question. Ensure success in your exam!

Multiple Choice

Which option enables UDP port scanning in Nmap, and what is a common drawback compared to TCP scanning?

Explanation:
UDP port scanning in Nmap is performed with the -sU option. The essential idea here is why UDP scans tend to be slow and less definitive. UDP is a connectionless protocol with no handshake to confirm an open port. Many hosts simply drop UDP probes or only reply with an ICMP Port Unreachable message after a delay. If there’s no usable response, Nmap must wait for timeouts to decide the port’s state, which makes UDP scans much slower and often yields ambiguous results (like open|filtered). This slow, uncertain behavior is the main drawback compared to TCP scanning, where the protocol provides clearer, faster signals about whether a port is open, closed, or filtered through responses to TCP connections or SYNs.

UDP port scanning in Nmap is performed with the -sU option. The essential idea here is why UDP scans tend to be slow and less definitive. UDP is a connectionless protocol with no handshake to confirm an open port. Many hosts simply drop UDP probes or only reply with an ICMP Port Unreachable message after a delay. If there’s no usable response, Nmap must wait for timeouts to decide the port’s state, which makes UDP scans much slower and often yields ambiguous results (like open|filtered). This slow, uncertain behavior is the main drawback compared to TCP scanning, where the protocol provides clearer, faster signals about whether a port is open, closed, or filtered through responses to TCP connections or SYNs.

More Multiple Choice Questions
Subscribe

Get the latest from Passetra

You can unsubscribe at any time. Read our privacy policy