Buy or Renew
Buy or Renew
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 
cancel
Start a conversation
965
Views
0
Helpful
1
Replies

3560X as an FTP Server ?

Daniel Smith
Level 1
Level 1

‎05-15-2013 11:53 AM - edited ‎03-07-2019 01:22 PM

We are in a business that is subjected to NERC guidelines and processes for management of networks. As such, we have to document and approve all tcp/udp ports and services on devices. Those that are not needed should be disabled, those that are needed must be approved. While working with the 3560X switch, I did a TCP scan and found that ports, 21, 22, and 23 were open. 22 and 23 not a surprise but 21 was. I telnetted to port 21 on the device and got this result:

xxxxxxxxxxx-con1#telnet ohxxxx-sw1 21
Trying ohxxxxxx-sw1.bbbbbb.com (10.246.21.241, 21)... Open
220-FTP Server (user 'innnnnnn')
220
USER ftpuser
331-Password:
331
1mages
500-Syntax error -- unknown command
500

I don't know the exact commands to interact with the system, but needless to say, the 3560X let me log in to port 21, for an FTP session.

I have been unsuccessful in finding anything on cisco.com yet, but if any one knows how to disable this feature, I would appreciate hearing it !!

Labels:
0 Helpful
1 Reply 1

paul driver
VIP
VIP

‎05-15-2013 12:34 PM

Hello Daniel
depending on the ios version
i assume this.command would be default on 3560x

no ftp-server write-enable - disables write access via ftp

res
paul


Sent from Cisco Technical Support Android App


Please rate and mark as an accepted solution if you have found any of the information provided useful.
This then could assist others on these forums to find a valuable answer and broadens the community’s global network.

Kind Regards
Paul
0 Helpful
Customers Also Viewed These Support Documents
Review Cisco Networking for a $25 gift card