cancel
Showing results for 
Search instead for 
Did you mean: 
cancel
2333
Views
0
Helpful
1
Replies

Open protocols

gsuarez0514
Level 1
Level 1

A nessus scan was ran on our 6500 that has 2 ssl modules and the followig ports showed open. Can these be disabled, are there any vulnerablilities? What are they used for?

dc (2001/tcp)

dynamid (9002/tcp)

etlservicemgr (9001/tcp)

globe (2002/tcp)

newoak (4001/tcp)

pxc-splr-ft (4003/tcp)

pxc-spvr-ft (4002/tcp)

X11:1 (6001/tcp)

X11:2 (6002/tcp)

X11:3 (6003/tcp)

1 Accepted Solution

Accepted Solutions

Gilles Dufour
Cisco Employee
Cisco Employee

http://www.cisco.com/en/US/products/hw/switches/ps708/products_module_configuration_guide_chapter09186a00801f33c4.html#wp1254193

2001,2002 and 2003 are used to display debug messages.

The other ports also have a use to display engineering data.

You can't really attack the SSLM on those ports, but you should normally block all traffic going to the SSLM management interfaces except SSH/Telnet.

Gilles.

View solution in original post

1 Reply 1

Gilles Dufour
Cisco Employee
Cisco Employee

http://www.cisco.com/en/US/products/hw/switches/ps708/products_module_configuration_guide_chapter09186a00801f33c4.html#wp1254193

2001,2002 and 2003 are used to display debug messages.

The other ports also have a use to display engineering data.

You can't really attack the SSLM on those ports, but you should normally block all traffic going to the SSLM management interfaces except SSH/Telnet.

Gilles.

Review Cisco Networking for a $25 gift card