FTP port open on Cisco 1841

FTP port open on Cisco 1841
NewsGroups | Search | Tools
User Password
Register Now! Lost Password?
 comp.dcom.sys.cisco  Post an article  get this group's latest topics as an RSS feed add this group's latest topics to your My MSN content add this group's latest topics to your My Yahoo content  add this group's latest topics to your Google content  YahooMyWeb Yahoo!  Google Google  Windows Live Favorites Windows Live  del.icio.us del.icio.us  digg digg  Add to Netscape Netscape
Subject Author Date
FTP port open on Cisco 1841 syn_NOSPAM_uw 04-11-2006
Posted by syn_NOSPAM_uw on April 11, 2006, 5:40 pm
If you were  Registered and logged in, you could reply and use other advanced thread options
Hello,

I've got a brand new Cisco 1841 router for our SHDSL leased line, basic
configured with nothing currently running behind it. Now I wanted to see
what nmap (a unix scanning port tool) detects and surprisingly it
detects that port 21 (FTP) is open as you can see here below:

% sudo nmap <IP>

Starting nmap 3.81 ( http://www.insecure.org/nmap/ ) at 2006-04-11 23:35
CEST
Interesting ports on <hostname> (<IP>):
(The 1662 ports scanned but not shown below are in state: closed)
PORT STATE SERVICE
21/tcp open ftp

Nmap finished: 1 IP address (1 host up) scanned in 11.328 seconds


Somehow port 21 on our router's IP adresse answers but is not functional
(no FTP service). Now haven't seen any FTP service in the router's
configuration itself, I am wondering from where does this come and why
is that ??? And how can I disable this without configuring an ACL ?

Many thanks

Regards

NMFall 20%
Posted by Merv on April 11, 2006, 6:00 pm
If you were  Registered and logged in, you could reply and use other advanced thread options
what does "show ip sockets" display ?


Posted by syn_NOSPAM_uw on April 11, 2006, 6:05 pm
If you were  Registered and logged in, you could reply and use other advanced thread options
Merv wrote:
> what does "show ip sockets" display ?
>

Here is the output of "show ip sockets":

router#show ip sockets
Proto Remote Port Local Port In Out Stat TTY OutputIF
17 0.0.0.0 0 <external_IP> 67 0 0 2211 0
17 --listen-- --any-- 123 0 0 1 0

Posted by Merv on April 11, 2006, 6:23 pm
If you were  Registered and logged in, you could reply and use other advanced thread options
since this will be an Internet facing router, i would suggest that you
implment the IOS firewall feature.

see
http://www.cisco.com/en/US/products/ps5853/products_configuration_guide_chapter09186a0080458321.html


Similar ThreadsPosted
how to open a port on a Cisco 1800 series router February 19, 2008, 9:02 am
Cisco 1841 cannot be booted (due to port mac-address error??) May 27, 2008, 12:37 pm
Leased Line configuration on Serial Port (Cisco 1841) March 11, 2008, 11:49 am
Open port PIX 501 July 6, 2005, 1:50 am
Open port PIX 501 July 6, 2005, 1:50 am
OPEN PORT PIX July 28, 2005, 4:11 am
What port do we open on a pix 525 for VPN? March 16, 2006, 12:34 pm
Open port on PIX March 8, 2007, 1:49 am
open a port and to forward it December 9, 2004, 4:08 pm
open up port 3389 on PIX 7.0? December 13, 2005, 1:22 pm

other useful resources:
The Federal Communications Commission (FCC)
Telecommunications Industry Association
Electronic and Software Security Products and Services
International Telecommunication Union

Custom CGI Perl and PHP programming by 1-Script.com

Contact Us | Privacy Policy
The site map in XML format XML site map