RE: Open tcp port 2005 on cisco router

From: Deniz CEVIK (deniz_at_edizayn.com.tr)
Date: 01/07/04

  • Next message: Shashank Rai: "Re: MS crypto API based ssl proxy??" 
    To: <jamesworld@intelligencia.com>, "Deniz CEVIK" <deniz@edizayn.com.tr>
Date: Wed, 7 Jan 2004 09:44:55 +0200

    Yes, I can connect but I couldn't recieve or send any data. I don't know the
    model of cisco router but this information also gives us some hints about
    the model. It should be cisco 2511. As far as I know, in order to get
    terminal screen we should telnet to loopback address that has been defined
    for this purpose in the router. What I wonder is can we still get terminal
    screen when I connect to port 2005 of router's IP from Internet (out of the
    router)?

    BR

    -----Original Message-----
    From: jamesworld@intelligencia.com [mailto:jamesworld@intelligencia.com]
    Sent: Tuesday, January 06, 2004 9:56 PM
    To: Deniz CEVIK
    Cc: pen-test@securityfocus.com
    Subject: Re: Open tcp port 2005 on cisco router

    On a misconfigured router. yes. Can you connect?
    The command that enables this in the line configuration is:
    telnet access-server 2005

    They need an access-list applied to the router line interface(s) to only
    allow that from specific (NEEDED) IP's

    Good job! You found what you are supposed to!

    -J

    At 10:34 01/06/2004, Deniz CEVIK wrote:

    > Hi All,
    >
    > While I am scanning one of our customer's border router, I have
    > seen that
    >TCP port 2005 is open and reachable from Internet. As far as, I know this
    >port is being used for async. connection to other devices in this router.
    Is
    >that normal to see this port as open from Internet?
    >
    > BR
    >
    >
    >---------------------------------------------------------------------------
    >---------------------------------------------------------------------------
    -

    ---------------------------------------------------------------------------
    ----------------------------------------------------------------------------

  • Next message: Shashank Rai: "Re: MS crypto API based ssl proxy??"

    Relevant Pages

    • Re: Using Remote Desktop From an SBS Domain
      ... when you tried to RDP while attached directly to a port on your router? ... Internet to initiate an IP conversation with your computer. ... This situation is different than if you ran your own NAT connection sharing ...
      (microsoft.public.windows.server.sbs)
    • Re: Publish Web Server behind SBS 2003 Standard
      ... I ended up plugging another router into the WAN. ... How to configure Internet access in Windows Small BusinessServer2003http://support.microsoft.com/kb/825763/en-us ... network interface on right (By default the interface name should be ... input 80 in Outgoing port box. ...
      (microsoft.public.windows.server.sbs)
    • Re: CEICW failure
      ... The port forward thing I had tried just out of desperation. ... The router is 192.168.1.1 subnet 255.255.255.0 ... > port 80 from the Internet to your Server. ... >> SBS box has the 2 NICs. ...
      (microsoft.public.windows.server.sbs)
    • Re: how do you setup a wireless connection without using DNS in the NIC?
      ... I CURRENTLY HAVE NODES CONNECTED TO A SWITHC - NETOPIA ROUTER CONNECTED TO ... THE SWITCH AND FROM THE WAN PORT ADTRAN T1 ROUTER. ... PUBLIC CHANGE THEIR NIC TO RECOGONIZE THE DNS IP. ... building) and have them access the Internet via their lap top. ...
      (microsoft.public.windows.server.setup)
    • Re: =?iso-8859-1?Q?ports_=F6ffnen?=
      ... solltest du hinter einem DSL Router ... Dann musst du nämlich den betroffenen Port vom Router auf deinen PC ... Internet aus erreichbar wird, ist er auch direkt angreifbar aber das nur so ... Next by Date: ...
      (microsoft.public.de.german.windowsxp.sonstiges)