Cisco Support Community
cancel
Showing results for 
Search instead for 
Did you mean: 
Community Member

3750 failed Qualys PCI scan port stopped responding

Scanned a 3750 switch for vulnerabilities to meet PCI compliance.  Came back with 13 ports open that stopped responding after 14 tries.  It's not failing because they are open, but because they stopped responding.  Ex TCP ports 430, 554, 9873, 169...

The scan stopped scanning to keep from hacking on a failing device it seems.   How can I prevent the switch from responding to the open port request in the first place?  I don't want them open.

2 REPLIES
VIP Super Bronze

3750 failed Qualys PCI scan port stopped responding

Park all your unused ports a vlan (not vlan 1) and shut them down.  Usually security guys scan ports to find open once and this will prevent them from finding open ports.

HTH

VIP Super Bronze

3750 failed Qualys PCI scan port stopped responding

never mined, you are looking for logical ports not physical

540
Views
0
Helpful
2
Replies
CreatePlease to create content