Cisco Support Community
cancel
Showing results for 
Search instead for 
Did you mean: 
Announcements

Welcome to Cisco Support Community. We would love to have your feedback.

For an introduction to the new site, click here. And see here for current known issues.

New Member

nmap scan shows udp port 67,68,138 on Cisco 1605 IPFW

Setup: 1605 running 12.0(5)T with IPFW w/ NAT(PAT) with one public on e0 and one private on e1.

I have turned off service dhcp and made sure no databases were define and no ip helper-address enabled, but everytime I scan the public side with nmap UPD it shows port 67,68,138 in the state open.

The results of show stack:

Minimum process stacks:

Free/Size Name

756/1000 c1000 LED

3692/4000 CDP Protocol

3716/4000 DHCPD Receive

2012/4000 Init

3452/4000 RADIUS INITCONFIG

3616/5000 DHCP Client

2012/4000 Virtual Exec

Interrupt level stacks:

Level Called Unused/Size Name

4 11548 1792/3000 CPIC interrupts

7 0 2976/3000 Programmable Interval Timer

Is the DHCPD and DHCP client have anything todo with the open ports 67 and 68?? If so, how do I close 67,68,and 138?

1 REPLY
Bronze

Re: nmap scan shows udp port 67,68,138 on Cisco 1605 IPFW

Manually enter no ip forward-protocol commands for each port in question.

190
Views
0
Helpful
1
Replies
CreatePlease to create content