03-11-2020 01:17 PM
Our cybersecurity team scans detected VNC service running on our 891 router. They are scanning the switch module, not the router interfaces (I locked those down). How is that possible ? Do I really have to apply ACL on the switch ports?
03-12-2020 06:12 AM
what interface they are scanning outside or inside.
if you are not using VNC on your network, you can block port 5900 using ACL, and ask them to scan again to confirm.
BB
***** Rate All Helpful Responses *****
How to Ask The Cisco Community for Help
Discover and save your favorite ideas. Come back to expert answers, step-by-step guides, recent topics, and more.
New here? Get started with these tips. How to use Community New member guide
Log in to Community