05-03-2019 10:19 AM
Hello All,
ISE PSN nodes are trying to communicate using telnet in our production environment. Does a PSN node communicate using telnet is it is enabled for SSH? Is there any scenario where a PSN nodes needs telnet to communicate?
Thanks,
Aravind.
Solved! Go to Solution.
05-03-2019 11:16 AM
We use mostly default NMAP scan options which uses SYN scan among other operations. In terms of telnet, it doesn't finish the transaction, but grabs the banner text from the target OS to get hints on potential OS type.
05-03-2019 10:52 AM
ISE utilizes NMAP to port scan well known ports for the endpoints and also get banner text from telnet sessions to fingerprint OS for profiling.
05-03-2019 10:57 AM
Thank you for your quick response. There are lots of telnet sessions from PSN nodes. According to your explanation, If NMAP probe is turned on for the PSN, all the port scans happen using telnet. right?
Thanks,
Aravind.
05-03-2019 11:16 AM
We use mostly default NMAP scan options which uses SYN scan among other operations. In terms of telnet, it doesn't finish the transaction, but grabs the banner text from the target OS to get hints on potential OS type.
Discover and save your favorite ideas. Come back to expert answers, step-by-step guides, recent topics, and more.
New here? Get started with these tips. How to use Community New member guide