07-19-2003 06:25 AM - edited 03-09-2019 04:06 AM
I did a port scan on my router and it reported that the router is listening on ports 25 & 110. I don't have any mail services running behind the firewall. Why would the router be listening on these ports and how do I shut them off?
I am using ACLs & CBAC supposedly allowing only port 80,20,21 to my web server, and no public services (no telnet,ssh,snmp,http,etc) running on the router.
07-19-2003 07:16 AM
Hi -
Was the router ever used for smtp/pop3 access? If you don't need the smtp/pop3 ACL's on the router then just open up a text-editor (notepad) and log onto the router (in config mode), copy the ACL's including the access-group cmd and paste on notepad, place a 'no access-list
Hope this helps -
07-20-2003 06:18 PM
The router was never used for smtp/pop3 access.
My ACLs permit some ICMP and connections on ports 80,20,21. Everything else is denied from the outside. From the inside, it appears to be listening on smtp/pop3.
I checked a couple other routers and they are also listening for smtp/pop3. As far as I know, IOS doesn't have a smtp or pop3 service.
Discover and save your favorite ideas. Come back to expert answers, step-by-step guides, recent topics, and more.
New here? Get started with these tips. How to use Community New member guide