Buy or Renew
Buy or Renew
Duo Security forums now LIVE! Get answers to all your Duo Security questions. Learn more
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 
cancel
Start a conversation
747
Views
0
Helpful
1
Replies

ISS internet scanner

wraights
Level 1
Level 1

‎08-31-2001 02:03 PM - edited ‎03-08-2019 08:40 PM

I scanned my PIX 515 firewall (running 5.1(3) using this software (ISS Internet Scanner) which has a database that lists vulnerablilites,etc. Well when it scanned us (I had a box on the outside scanning our outside interface) it said that there was a port open. Port 513/udp! What in the world? I do not specifically have that port open (it is for who which shows load on the hardware) It also said that I have a vulnerability...traceroute can go through the firewall. I don't understand this. Does anyone have any clues on this? Do the two "problems" I have anything to do with each other? How can I plug these up?

THANK YOU.

Susana Wraight

swraight@src-email.com

Labels:
0 Helpful
1 Reply 1

mmellet
Level 3
Level 3

‎09-05-2001 02:22 PM

Start by moving off 5.1(3). There are a few security advisories at http://www.cisco.com/warp/public/707/advisory.html that might be reason to move to some newer code. PIX opens and closes ports dynamically all the time. Do you always get this 513 UDP open? ICMP is blocked by default. If you have a conduit permit icmp any any in your config, this could cause that problem. Again, start by upgrading and go from there.

0 Helpful
Customers Also Viewed These Support Documents