I made a ports scanner to one of my routers cisco 7200 , and i found the following ports are opened "
1- 23 Telnet
3-2001 remote control software
4-9001 cisco Xremote service
5-4001 cisco virtual terminal
6-6001 cisco virtual terminal
i want to know why port 80 is opened although i http server is disabled at this router , and the other las four ports , and how can i disable the last four ports "2001,9001,4001,6001" or control the access to these ports.
You can control access to the last four by placing a "access-class" on your VTY/AUX ports. As for HTTP being opened, if you telnet to port 80 on your router, does it open up a connection? If not, then it's not really open and you're port scanner is saying the wrong thing. If you can, then we'd need to look at your config, but make sure you have "no ip http server" configured at the very least.
Table of ContentsIntroductionVersion HistoryPossible Future
UpdatesDocuments PurposeNAT Operation in ASA 8.3+ SectionsRule Types
Network Object NATTwice NAT / Manual NATRule Types used per SectionNAT
Types used with Twice NAT / Manual NAT and Network Obje...
Table of Contents Introduction:This document describes details on how
NAT-T works. Background: ESP encrypts all critical information,
encapsulating the entire inner TCP/UDP datagram within an ESP header.
ESP is an IP protocol in the same sense that TCP an...