Cisco Support Community
cancel
Showing results for 
Search instead for 
Did you mean: 
cancel
Highlighted
Community Member

How to turn off Host firewall in Cisco ISE for Pen testing

Hi Cisco Expert Team,

I have requirement of doing penetration testing on Cisco ISE with version 2.3 by Cyber security team to find any vulnerability.  But while doing testing, all tcp/udp ports are getting filtered by scanner. I need to turn off any host firewall in Cisco ISE, if present any ( It should be something like window firewall ).

Do you have any idea, on how to turn off Firewall feature/Security settings in Cisco ISE itself to allow attack. ? Please advise. Thank you..!

1 REPLY
RJI Gold
Gold

Re: How to turn off Host firewall in Cisco ISE for Pen testing

Hi,

I don't think that is possible. The underlying OS is hardened, with only the required ports open and the rest is closed by firewall...but no access to the underlying OS is available, so you'd be unable to turn this firewall off. More info here.

 

Here is a list of the ports that should be open.

 

HTH

81
Views
5
Helpful
1
Replies
CreatePlease to create content