[BUG] Open Ports on Internal Interface

On my test installation, on my local LAN-Port I configured it to have access via SSH and HTTPS. Any other checkbox is disabled under System > Device Access.

Unless when doing a portscan, I can find the following open ports:

TCP: 172.16.16.1 [22-ssh]

TCP: 172.16.16.1 [4444-krb524]

TCP: 172.16.16.1 [4501]

TCP: 172.16.16.1 [4502]

TCP: 172.16.16.1 [8094]

They seem to be run by the following processes:

SF01V_VM01_SFOS 15.01.0 Beta-P# netstat -lptu | grep -E  '4501|4502|8094'

tcp        0      0 *:4501                  *:*                     LISTEN      1828/apache

tcp        0      0 *:4502                  *:*                     LISTEN      1828/apache

tcp        0      0 *:8094                  *:*                     LISTEN      1505/awarrensmtp

Does anybody know what these ports are used for?

0 VivekJanjrukiya over 8 years ago

Hi Gaston,

Regarding Port # 4501 & 4502 it is used by Hotspot and these ports should not open unless you have configured hotspot and this is tracked internally as NC-3979 which is already resolved in upcoming BETA2 version.

Regarding port 8094, its used by SMTP proxy for SPX Portal and you can restrict & allow access on this port in allowed network parameters from SPX global configuration.
This port will be always in listen mode. but if you have restricted network using SPX global configuration then that network won't be able to access this port.

thanks for raising this concern..

Regards,

Vivek
Cancel
Vote Up 0 Vote Down

Sign in to reply

Verify Answer

Cancel