For my question, all of the data comes from me trying to scan and/or ping the SwagShop box (10.10.10.140) from a Kali Linux Virtual Machine
(1) openvpn service started / openvpn rol227.ovpn running
(2) openvpn service started / openvpn rol227.ovpn not running
(3) openvpn service stopped / openvpn rol227.ovpn running
(4) openvpn service stopped / openvpn rol227.ovpn not running
For scenario (3), I get ports 22/80 open but also a lot of other filtered ports showing up on an nmap scan. For example, ports 14, 86, 105, 188, 276, and 549 were all filtered with services such as mfcobol, csnet-ns, mumps, idfp...
For scenario (1), only ports 22/80 show up during an nmap scan
For scenarios (2) and (4), nothing shows up on an nmap scan (which is what I would expect)
Lastly, I thought 10.10.10.140 is a reserved IP address. Should I be able to ping that address and get a response from a separate windows machine? If I try to ping other addresses in my network that are not being used (e.g. 192.168.1.99), then it says "Host Unreachable", yet I still get ping responses for 10.10.10.140.
(1) What's the difference between scenarios (1) and (3)? why can I still scan the box without the openvpn service started on my machine? and why is there a difference in the services that nmap sees?
(2) Why am I able to ping 10.10.10.140 from a completely separate Windows machine that doesn't have the openvpn connection pack or openvpn installed on it?