Open protocols

Answered Question
Feb 19th, 2007

A nessus scan was ran on our 6500 that has 2 ssl modules and the followig ports showed open. Can these be disabled, are there any vulnerablilities? What are they used for?

dc (2001/tcp)

dynamid (9002/tcp)

etlservicemgr (9001/tcp)

globe (2002/tcp)

newoak (4001/tcp)

pxc-splr-ft (4003/tcp)

pxc-spvr-ft (4002/tcp)

X11:1 (6001/tcp)

X11:2 (6002/tcp)

X11:3 (6003/tcp)

I have this problem too.
0 votes
Correct Answer by Gilles Dufour about 9 years 7 months ago

http://www.cisco.com/en/US/products/hw/switches/ps708/products_module_configuration_guide_chapter09186a00801f33c4.html#wp1254193

2001,2002 and 2003 are used to display debug messages.

The other ports also have a use to display engineering data.

You can't really attack the SSLM on those ports, but you should normally block all traffic going to the SSLM management interfaces except SSH/Telnet.

Gilles.

  • 1
  • 2
  • 3
  • 4
  • 5
Overall Rating: 5 (1 ratings)
Loading.
Correct Answer
Gilles Dufour Tue, 02/20/2007 - 11:18

http://www.cisco.com/en/US/products/hw/switches/ps708/products_module_configuration_guide_chapter09186a00801f33c4.html#wp1254193

2001,2002 and 2003 are used to display debug messages.

The other ports also have a use to display engineering data.

You can't really attack the SSLM on those ports, but you should normally block all traffic going to the SSLM management interfaces except SSH/Telnet.

Gilles.

Actions

This Discussion