Buy or Renew
Buy or Renew
Cisco + Splunk: It’s a new day for your data. Learn more.
 
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 
cancel
Start a conversation
1904
Views
5
Helpful
4
Replies

Q: Show ports om ISR4000

jogolev
Level 1
Level 1

‎05-19-2017 11:29 AM - edited ‎03-08-2019 10:39 AM

What is the equivalent command of ‘show control-plane host open-ports’ on ISR4000?

Closest I found is "show ip sockets", which gives me raw ports at the moment.

 

show inv

NAME: "Chassis", DESCR: "Cisco ISR4331 Chassis"

 

show version

Cisco IOS XE Software, Version 03.16.04b.S - Extended Support Release

Cisco IOS Software, ISR Software (X86_64_LINUX_IOSD-UNIVERSALK9-M), Version 15.5(3)S4b, RELEASE SOFTWARE (fc1)

1 person had this problem
Labels:
0 Helpful
4 Replies 4

Reza Sharifi
Hall of Fame
Hall of Fame

‎05-19-2017 04:15 PM

What output/information are you looking for? 

0 Helpful

jogolev
Level 1
Level 1
In response to Reza Sharifi

‎05-22-2017 08:25 AM

I am looking for the list of services running with open ports.

This is for PCI/Qualys vulnerability assessment.

For example on ISR2 2900:

#show control-plane host open-ports
Active internet connections (servers and established)

Prot Local Address Foreign Address Service State
 tcp *:22 *:0 SSH-Server LISTEN
 tcp *:23 *:0 Telnet LISTEN
 tcp *:2443 *:0 Skinny Socket Server LISTEN
 tcp *:179 IP-addr:63884 BGP ESTABLIS
 tcp IP-addr:5060 IP-addr:43611 SIP ESTABLIS
 tcp *:22 IP-addr:33432 SSH-Server ESTABLIS
 tcp *:179 *:0 BGP LISTEN
 tcp *:1720 *:0 H.225 LISTEN
 tcp *:35586 IP-addr:5060 CCSIP_TCP_SOCKET ESTABLIS
 tcp *:5061 *:0 CCSIP_TLS_SOCKET LISTEN
 tcp *:2000 *:0 Cisco Call manager serve LISTEN
 tcp *:5060 *:0 SIP LISTEN
 tcp *:24490 IP-addr:2000 SCCP Application ESTABLIS
 udp *:58623 *:0 IP SNMP LISTEN
 udp *:67 *:0 DHCPD Receive LISTEN
 udp *:56470 IP-addr:514 Syslog ESTABLIS
 udp *:123 *:0 NTP LISTEN
 udp *:4500 *:0 ISAKMP LISTEN
 udp *:1167 *:0 IP SLAs Control Process LISTEN
 udp *:161 *:0 IP SNMP LISTEN
 udp *:162 *:0 IP SNMP LISTEN
 udp *:1967 *:0 RTR control LISTEN
 udp *:53885 IP-addr:162 IOS host service ESTABLIS
 udp *:500 *:0 ISAKMP LISTEN

I am looking for the equivalent output for ISR 4000.

0 Helpful

sarabycell
Level 1
Level 1

‎02-20-2018 05:40 AM

show ip ports all 

0 Helpful

r.heitmann
Level 1
Level 1
In response to sarabycell

‎07-12-2018 01:19 AM

at least the

tcp  *:22... LISTEN ...SSHd

is missing at 16.8(1)

 

the "show ip ports all" command displays the listining BGP-Ports, but only established SSH-Ports...

Getting Started

Find answers to your questions by entering keywords or phrases in the Search bar above. New here? Use these resources to familiarize yourself with the community:

Customers Also Viewed These Support Documents
Review Cisco Networking products for a $25 gift card