[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]

[FW-1] Scan and open ports 389 1002 and 1720

To: [email protected]
Subject: [FW-1] Scan and open ports 389 1002 and 1720
From: Pritish Shah <[email protected]>
Date: Wed, 27 Nov 2002 10:27:42 -0500
Reply-To: Mailing list for discussion of Firewall-1 <[email protected]>
Sender: Mailing list for discussion of Firewall-1 <[email protected]>

Hi all,

I am running into a weird problem. Hopefully someone can help me.
Whenever I run a scan against any computer on the inside, I always get
TCP ports 389, 1002 and 1720 open. I have verified that by going to the
command prompt of the box and running telnet <remoteIP>
<389|1002|1720>.

Now the weird part: I know that those boxes do not have those ports
open. I have gone to a router and telnetted from there and do not get
any response.

So it seems that my box has some program that is intercepting the call
for tcp connect? Has anyone ever run into that.

Scratching my head,
Pritish

Disclaimer: This is not related to Checkpoint but related to security.
I run scans of boxes before I add them to the firewall for external
access.

=================================================
To set vacation, Out Of Office, or away messages,
send an email to [email protected]
in the BODY of the email add:
set fw-1-mailinglist nomail
=================================================
To unsubscribe from this mailing list,
please see the instructions at
http://www.checkpoint.com/services/mailing.html
=================================================
If you have any questions on how to change your
subscription options, email
[email protected]
=================================================

Prev by Date: [FW-1] AW: [FW-1] Upgrade Problems From Management NGFP2 to FP3.
Next by Date: Re: [FW-1] Procedure to have logs
Prev by thread: [FW-1] AW: [FW-1] Upgrade Problems From Management NGFP2 to FP3.
Next by thread: Re: [FW-1] Scan and open ports 389 1002 and 1720
Index(es):
- Date
- Thread