Buy or Renew
Buy or Renew
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 
cancel
Start a conversation
852
Views
0
Helpful
5
Replies

Port 2005 open on all 1700's?

Go to solution
bbrunette
Level 1
Level 1

‎10-13-2004 10:35 AM - edited ‎03-02-2019 07:13 PM

While working on something else I discovered that all of our 1700 routers (1720, 1750, 1751) are listening on port tcp/2005. IANA lists this as "berknet". They are all running 12.2 or 12.3 IOS with feature sets ranging from IP Basic to IP/3DES/FW/IDS/etc. None of our other Cisco router models (831, 2600, 3600, 7200) are doing this.

Can anybody confirm that their 1700's are acting the same and can anybody explain this?

Thanks,

Bob

Labels:
0 Helpful
1 Accepted Solution

Accepted Solutions

Go to solution
konigl
Level 7
Level 7
In response to smif101

‎10-13-2004 12:22 PM

Most likely port 2005 is the port number your 1700 series router uses if you want to reverse telnet to a modem on your AUX port. That number is derived from 2000 + "n" on the access server, where "n" is the line number to which the modem is connected. Do a "show line" command on your router, the AUX port is probably Tty 5 so 2000+5=2005.

See this link for more details:

Establishing a Reverse Telnet Session to a Modem

http://www.cisco.com/en/US/products/sw/iosswrel/ps1828/products_configuration_guide_chapter09186a00800871ec.html

I have a 1720 that I use the AUX port as an asynchronous serial port on, which directly connects to a machine at 9600,N,8,1 to control the direction of a satellite dish. The TCP port number I telnet into on that router so I can issue commands to the dish controller is 2005. Same as what you're seeing.

The reason you're not seeing that specific port number on your other routers (831, 2600, 3600, 7200) is because they are probably using different line numbers for AUX. Here's a sampling of what I found on some of my routers:

2610, 2620, 2651: AUX was line 65 on each (so there was a corresponding TCP port 2065)

3640: AUX was line 129 (TCP port was 2129)

7206VXR: AUX was 1 (TCP port was 2001)

Check your other routers for the line number they assign to the AUX port. There should be a matching TCP port at 2000+AUXlinenumber.

Hope this helps.

View solution in original post

0 Helpful
5 Replies 5

Go to solution
smif101
Level 4
Level 4

‎10-13-2004 11:29 AM

One thing I found is that tcp port 2005 is used with the CSWinAgent and listens for Cisco Secure ACS Solution Engine messages. Of course this is with windows machines but I suspect this might be what the 1700 is listening for too.

0 Helpful

Go to solution
konigl
Level 7
Level 7
In response to smif101

‎10-13-2004 12:22 PM

Most likely port 2005 is the port number your 1700 series router uses if you want to reverse telnet to a modem on your AUX port. That number is derived from 2000 + "n" on the access server, where "n" is the line number to which the modem is connected. Do a "show line" command on your router, the AUX port is probably Tty 5 so 2000+5=2005.

See this link for more details:

Establishing a Reverse Telnet Session to a Modem

http://www.cisco.com/en/US/products/sw/iosswrel/ps1828/products_configuration_guide_chapter09186a00800871ec.html

I have a 1720 that I use the AUX port as an asynchronous serial port on, which directly connects to a machine at 9600,N,8,1 to control the direction of a satellite dish. The TCP port number I telnet into on that router so I can issue commands to the dish controller is 2005. Same as what you're seeing.

The reason you're not seeing that specific port number on your other routers (831, 2600, 3600, 7200) is because they are probably using different line numbers for AUX. Here's a sampling of what I found on some of my routers:

2610, 2620, 2651: AUX was line 65 on each (so there was a corresponding TCP port 2065)

3640: AUX was line 129 (TCP port was 2129)

7206VXR: AUX was 1 (TCP port was 2001)

Check your other routers for the line number they assign to the AUX port. There should be a matching TCP port at 2000+AUXlinenumber.

Hope this helps.

0 Helpful

Go to solution
bbrunette
Level 1
Level 1
In response to konigl

‎10-13-2004 01:35 PM

Thanks, that does help. And it confirms what I was beginning to discover.

Bob

0 Helpful

Go to solution
bbrunette
Level 1
Level 1

‎10-13-2004 01:32 PM

I did some more digging and found that this port is open as a result of enabling telnet as an input transport on the aux 0 line.

Interestingly, the same command produces different results on different platforms. On 2600, 3600 and 7200 routers no ports are opened when telnet is enabled on the aux 0 line. On 7100 routers the tcp/2001 port is opened.

At any rate, I answered my own question. Any comments or additional information is welcome.

Bob

0 Helpful

Go to solution
Harold Ritter
Level 12
Level 12
In response to bbrunette

‎10-13-2004 02:37 PM

It is not that the behavior is different on the other platforms, it is just that the line number assigned to the auxiliary port differs from one platform to the other. This basically means that on these other platforms a different TCP port would be listening for connections. For examples, on the 2600 the aux port is assigned to line 65, which means that TCP port 2065 listens for reverse telnet connections to the aux port.

To see what line number the aux port is assigned to, use the "show line" command.

Hope this helps,

Harold Ritter
Sr Technical Leader
CCIE 4168 (R&S, SP)
harold@cisco.com
México móvil: +52 1 55 8312 4915
Cisco México
Paseo de la Reforma 222
Piso 19
Cuauhtémoc, Juárez
Ciudad de México, 06600
México
0 Helpful
Customers Also Viewed These Support Documents

Review Cisco Networking for a $25 gift card