Cisco Support Community
cancel
Showing results for 
Search instead for 
Did you mean: 
Announcements

Welcome to Cisco Support Community. We would love to have your feedback.

For an introduction to the new site, click here. And see here for current known issues.

New Member

ASA Open Port Hardening

Hi, i have a new ASA appliance without any configuration except interface configuration, which i have configure an IP to perform port scan using port scanner. The port scan result showed the new ASA 5540 appliance default is opened with port 110 and 25, how can i disable or close these 2 open ports ? Pls. advise.

4 REPLIES

Re: ASA Open Port Hardening

Hello Beng,

No, ASA does not have these ports open by default. It may be another host (most probably an exchange server) that port scanner scanned, or security-levels mis-configured, or an acl exist to permit this specific traffic.

Regards

New Member

Re: ASA Open Port Hardening

Hi, thanks for the replying, for your information, this ASA is a new box which is not connected to any network, i just configured one of the interface with IP and use my scanner tool to scan the interface, and the scanner result showed that the ports 110 and 25 are opened. Pls. advise if possible. Thanks

Re: ASA Open Port Hardening

Beng,

I cleared configuration and built basic configuration on my test firewall, and launched portscan using nessus, and these ports were not open. Can you post your whole config?

Regards

New Member

Re: ASA Open Port Hardening

Hi, pls. refer to the attach config.

Thanks.

405
Views
0
Helpful
4
Replies