Thanks guys, cleared this up for me! 

This did give me quite a laugh. Bravo!

Thanks for the reply!

I'm using the good o'l easy xp ms08_067_netapi with meterpreter payload.

Will a nmap scan like -sT or aggressive -A find the open ports through a firewall?

Got stuck on an issue hoping some of the ethicalhacker.net community would be willing to help me with.

I'm running a VMware test network with 2 xp machines and backtrack 5.  I'm going through the book : Metasploit: The Penetration Testers Guide 

http://www.amazon.com/Metasploit-Penetration-Testers-David-Kennedy/dp/159327288X/ref=sr_1_1?ie=UTF8&qid=1317262561&sr=8-1

I'm able to open a reverse_tcp connection and drop the payload successfully only when windows(xp) firewall is turned off.

My question is this: How can I exploit the system when windows firewall is turned on? 

Anyone know of a good tutorial or book dealing with getting around the firewall?

Thanks!

HH

I just signed up here at ethicalhacker so i could say Thank you!  

This is excellent training and helped me tremendously. I'm studying for the CEH and trying to learn not just the foundation of hacking, but application as well.

I was really stuck on what I can do after reconnaissance and footprinting. After learning nmap, hping etc, I wasn't sure how to start gaining access to machines. Metasploit is excellent and so is Armitage!

Thank you!