TFTP : UDP / TCP

Unanswered Question
Jun 14th, 2007
User Badges:

Hi,


We know that TFTP uses UDP.


But may a TFTP application send some TCP segments ?


So when we want to block traffic to access TFTP server, we should go :

... deny udp ... eq 69

... deny tcp ... eq 69 ?


Thanks,

Navid


  • 1
  • 2
  • 3
  • 4
  • 5
Overall Rating: 0 (0 ratings)
Loading.
paolo bevilacqua Thu, 06/14/2007 - 06:04
User Badges:
  • Super Gold, 25000 points or more
  • Hall of Fame,

    Founding Member

TFPT is UDP only.

Nothing prevents an application to use TCP on port 69, but that would not work with TFTP.

IMHO,


If you desire to block TFTP, then why not block both TCP and UDP on port 69. Any TCP connection on well known Port 69 would smell like a bad guy or other mal-intender.


Port 69 used to be a big screen door to hackers years ago, might still have a few listeners floating around today.


Bill

Actions

This Discussion