Has anyone else ran a port-scan against a Cisco ASA and gotten back a bunch of unexpected, listening ports? This Nmap below shows that from port 1 to 80, 3,5,6,8,9,10 and others arent listening, but how come all of these are?
This nmap was ran across a L2L VPN with no filtering. u...@laptop:~$ nmap 10.223.4.5 -sT -p 1-80 Starting Nmap 4.62 ( http://nmap.org ) at 2009-10-13 13:23 MDT Interesting ports on 10.28.4.5: Not shown: 34 filtered ports PORT STATE SERVICE 1/tcp open tcpmux 2/tcp open compressnet 4/tcp open unknown 7/tcp open echo 11/tcp open systat 12/tcp open unknown 13/tcp open daytime 14/tcp open unknown 19/tcp open chargen 20/tcp open ftp-data 21/tcp open ftp 22/tcp open ssh 23/tcp open telnet 24/tcp open priv-mail 25/tcp open smtp 26/tcp open unknown 31/tcp open msg-auth 34/tcp open unknown 35/tcp open priv-print 36/tcp open unknown 40/tcp open unknown 43/tcp open whois 45/tcp open mpm 47/tcp open ni-ftp 49/tcp open tacacs 52/tcp open xns-time 53/tcp open domain 55/tcp open isi-gl 56/tcp open xns-auth 57/tcp open priv-term 59/tcp open priv-file 62/tcp open acas 63/tcp open via-ftp 64/tcp open covia 65/tcp open tacacs-ds 67/tcp open dhcps 69/tcp open tftp 70/tcp open gopher 71/tcp open netrjs-1 72/tcp open netrjs-2 73/tcp open netrjs-3 74/tcp open netrjs-4 75/tcp open priv-dial 78/tcp open vettcp 79/tcp open finger 80/tcp open http Kenny Long _______________________________________________ cisco-nsp mailing list cisco-nsp@puck.nether.net https://puck.nether.net/mailman/listinfo/cisco-nsp archive at http://puck.nether.net/pipermail/cisco-nsp/