Cisco Support Community
cancel
Showing results for 
Search instead for 
Did you mean: 
Announcements

Welcome to Cisco Support Community. We would love to have your feedback.

For an introduction to the new site, click here. And see here for current known issues.

New Member

Which upstream ports to shut?

Does anyone know of an up to date list of ports used by various trojans and file sharing apps. I want to shut all these upstream ports to prevent abuse. Or should I just shut down all ports above 1024?

-- Rubio

2 REPLIES
New Member
New Member

Re: Which upstream ports to shut?

Rubio,

Food for thought...I looked at it the other way and asked what traffic should I allow out. I don't know if this would work in your organization but I blocked all except the obvious (http, https, dns, ntp) and then monitored the logs carefully to see what outbound traffic was blocked.

I think this approach is easier than trying to block trojans one by one.

Hope this helps,

Pete

167
Views
5
Helpful
2
Replies