What's listening on port 454 and 455 in Azure? Warning flagged by security scan

Similar Messages

• WLC Virtual interface listening on ports 25 and 110

  I'm securing my guest WLAN and have WLC ACL's in place and the network is segmented from everything else but I decided to run a port scan against the virtual WLC interface (1.1.1.1 for me) and ports 25 and 110 are listening. I connected to 25 and it connects but you can't do any SMTP commands.
  Anyone know why these would be open and any concern?

  It is always recommended to have the ACLs configured on the wired side of the network rather than the wireless side of the network.can you provide the ACL configuration so that we can understand the configuration and find the modification to be done in the same to rectify the issue.

• IChat File Transfer port issue (can't listen to port 5190 and 7777)

  Greentings ladies and gentlemen,
  I need help opening port 5190 and 7777 for ichat server file transfers. As for now, my situation can be described as below:
  (1)I have a ichat server in a mac mini(2010, newest model as for today) running a fully updated version of MACOSX SERVER 10.6 inside a lab in my university.
  (2)As for the ichat server itself, text, voice, video between 2 or more persons are all working great. As for clients the latest version of ichat and pidgin(text only) are being used. The only problem is the lack of file transfer between ichat clients.
  (3)The server is behind a router (YAMAHA RTX 1200). I am 100% sure that the router is correctly configured to allow packets in and out of the port 5190 and 7777, among the other necessary ports. All the other ports are open and working correctly. I also manually disabled the firewall of a windows7 laptop and tested packet transfers on both ports and both worked fine.
  (4)As I said before, the server is inside my university lab. I made sure that all ports between 1023~65535 are open in the univesity gateway/backbone network.
  Bellow are firewall(IPFW) settings before flushing (tried configuring using both GUI and CUI, and both returned the same results)
  sudo ipfw l
  Password:
  00001 allow udp from any 626 to any dst-port 626
  01000 allow ip from any to any via lo0
  01010 allow udp from any to any dst-port 5190
  01030 allow tcp from any to any dst-port 5190
  12300 allow tcp from any to any established
  12301 allow tcp from any to any out
  12302 allow tcp from any to any dst-port 22
  12302 allow udp from any to any dst-port 22
  12303 allow udp from any to any out keep-state
  12304 allow tcp from any to any dst-port 53 out keep-state
  12304 allow udp from any to any dst-port 53 out keep-state
  12305 allow udp from any to any in frag
  12306 allow tcp from any to any dst-port 311
  12307 allow tcp from any to any dst-port 625
  12308 allow icmp from any to any icmptypes 8
  12309 allow icmp from any to any icmptypes 0
  12310 allow igmp from any to any
  12311 allow tcp from any to any dst-port 5190
  12311 allow udp from any to any dst-port 5190
  12312 allow tcp from any to any dst-port 5222
  12313 allow tcp from any to any dst-port 5223
  12314 allow tcp from any to any dst-port 5269
  12315 allow udp from any to any dst-port 5297,5678
  12316 allow tcp from any to any dst-port 5298
  12316 allow udp from any to any dst-port 5298
  12317 allow udp from any to any dst-port 16384-16403
  12318 allow udp from any to any dst-port 5060
  12319 allow tcp from any to any dst-port 7777
  12320 allow tcp from any to any dst-port 8008
  12321 allow tcp from any to any dst-port 8443
  65535 allow ip from any to any
  And after flushing
  sudo ipfw l
  Password:
  65535 allow ip from any to any
  In either case ports that are being listened are listed below.
  netstat -na | grep LIST
  tcp46 0 0 *.5269 . LISTEN
  tcp46 0 0 *.5223 . LISTEN
  tcp46 0 0 *.5222 . LISTEN
  tcp4 0 0 127.0.0.1.5347 . LISTEN
  tcp46 0 0 *.5900 . LISTEN
  tcp4 0 0 *.88 . LISTEN
  tcp6 0 0 *.88 . LISTEN
  tcp4 0 0 *.311 . LISTEN
  tcp4 0 0 192.168.2.96.53 . LISTEN
  tcp4 0 0 *.3659 . LISTEN
  tcp4 0 0 *.106 . LISTEN
  tcp4 0 0 *.3659 . LISTEN
  tcp4 0 0 *.106 . LISTEN
  tcp4 0 0 127.0.0.1.54 . LISTEN
  tcp4 0 0 127.0.0.1.53 . LISTEN
  tcp4 0 0 *.749 . LISTEN
  tcp4 0 0 *.389 . LISTEN
  tcp6 0 0 *.389 . LISTEN
  tcp4 0 0 *.22 . LISTEN
  tcp6 0 0 *.22 . LISTEN
  tcp4 0 0 *.548 . LISTEN
  tcp6 0 0 *.548 . LISTEN
  tcp4 0 0 *.625 . LISTEN
  tcp4 0 0 127.0.0.1.631 . LISTEN
  tcp6 0 0 ::1.631 . LISTEN
  As you can see my firewall settings are not being reflected on the actual server firewall.
  Is there any way I could just force the server into listening the port?
  If necessary I can post screenshots of every ichat server/firewall configuration tab from the Server Admin GUI.
  Thanks in advance for any help/support.

  First off, realize there is no association between your firewall rules and netstat.
  Just because your firewall is letting traffic in that does not mean it will appear in your netstat.
  netstat -a will show you a list of ports that are in use - i.e. there is some process listening to (or writing to) that port. That is independent of whether the firewall permits the traffic (e.g. the firewall could well allow traffic in on 5190, but unless there's a process listening to 5190 you won't see it in the netstat).
  Secondly, IIRC iChat file transfers are client-to-client therefore it might not be your server, or your server's firewall or your server's network that's the issue - the client will need to have a firewall configured to allow incoming traffic from other iChat clients.
  Does that help shed some light on things? (it isn't clear whether your post is referring to the server or the client side of things).

• Why does Adobe Reader and Adobe Flash player keep installing McaFee Security Scan on my system?

  Whenever I install the Adobe Flash player or Adobe Reader on my system, it downloads and installs McAfee Security Scan Plus at the same time. It does not ask if I want it or not, it instead forces it on me, so I have to then unistall it. I've unistalled it 3 or 4 times in the last week. I DO NOT WANT MCAFEE PRODUCTS on my computer!
  Please make this an option, give the users a choice so we don't have to keep removing the stupid thing.

  Did you 'Uncheck" the relevant box pointed by the red arrow ? If not you accepted the installation with McAfee.

• Listen to port 25 and save incoming email as txt files

  Hi
  I am new to JavaMail. I would apreciate some advice.
  I would like to use JavaMail to listen on a port such as 25 like a standard SMTP mail server, JavaMail would recieve the mails and convert them to txt file and save them on the Operating System. I want to know if this is possible?
  Also are there any code samples available anywhere for receiving mail?
  Thanks
  Darrell

  Hi,
  This is rather Networking question then JavaMail API. The poin is that JavaMail API is designed for consumers, i.e. this is high-level level API (vendor indepemdent) which allows you to send/receive messages to/from mail servers using various protocols. It is not designed for implementing mail servers themselves.
  So you should just implement a simple smtp server. There are lot of open source implementation that can be used as an example.
  One of them is Java Mail Server on Sourceforge.net
  http://jmailsrv.sourceforge.net/
  (have a look at two classes, they have all what you need to implement
  http://jmailsrv.cvs.sourceforge.net/jmailsrv/jmailserver/src/at/jps/mailserver/SmtpServer.java?view=markup
  and
  http://jmailsrv.cvs.sourceforge.net/jmailsrv/jmailserver/src/at/jps/mailserver/SmtpConnection.java?revision=1.3&view=markup
  Good luck,
  Valeriy

• Knowing what app listens to a port (slightly off topic)

  Hello,
  I am having problems : a application is listening on port 80 and I can't determine which it is. I can't start my servlet web container since it is also listening to port 80. I run windows. What is the command that will tell me what the application that is listening to port 80?
  Thanks in advance,
  Julien.

  In Win32, you can open a command prompt and type "netstat -o" and press Enter. That will give you a list of all TCP activitiy along with the process ID that goes with each entry.
  You can then bring up your Task Manager, select the Processes tab, and then pick View | Select Columns from the menu bar, check PID, and click OK. Using the process ID, you should now be able to match up TCP activity with an image name in the Task Manager Processes window.

• X is listening on port 6000?

  My X server is listening on port 6000 and I simply can't find a good way to stop it from doing so!
  I tried altering multiple config files (the startx script, Xservers script from the kdm configs) and still I have X listening!
  (Of course there is still a firewall blocking reactions on that port)
  Normaly a line like -nolistening tcp has to be added after defining the X server executable. This is a default setting but appearently not on my system.
  What am I doing wrong?

  /usr/X11R6/bin/startx
  I've tried that before. Personaly I think the startx script is ommited whenever you use a graphical login manager like xdm, kdm, gdm etc... .
  Kdm keeps it's config files in "/opt/kde/share/config/kdm/". According to the kde documentation one should alter the lines of the Xservers file. But these should contain the line -nolisten tcp by default. In my case (a fresh kde 3.4 install) the file did'nt so a changed it to:
  # $Xorg: Xserv.ws.cpp,v 1.3 2000/08/17 19:54:17 cpqbld Exp $
  # Xservers file, workstation prototype
  # This file should contain an entry to start the server on the
  # local display; if you have more than one display (not screen),
  # you can add entries to the list (one per line). If you also
  # have some X terminals connected which do not support XDMCP,
  # you can add them here as well. Each X terminal line should
  # look like:
  # XTerminalName:0 foreign
  :0 local@tty1 /usr/X11R6/bin/X -nolisten tcp
  ### Don't change these two lines; they are hints for genkdmconf. ###
  ### Version 1.99 ###
  :1 local reserve /usr/X11R6/bin/X -nolisten tcp :1 vt8
  :2 local reserve /usr/X11R6/bin/X -nolisten tcp :2 vt9
  :3 local reserve /usr/X11R6/bin/X -nolisten tcp :3 vt10
  Still al of this makes no changes to the fact that X keeps listening on the 6000 port.
  And since this can evolve into a security risk I want it to change. Quite odd behaviour really since it's should be ommited as default.

• Stratus tunneling over ports 443 and/or 80

  Would it be possible to have Stratus listen on ports 443 and
  80; and would Flash Player 10 indeed fall back to those ports, as
  with FMS?
  I am dealing with a customer who has difficulty opening 1935
  due to corporate policies.
  I have no information about port 10000+. Hopefully they pose
  no problem.
  Kind Regards,
  Frans

  The older RTMP operates over TCP port 1935 and falls back to
  tunneling over 443 and/or 80.
  The newer RTMFP uses UDP and requires the ability to make
  outbound connections to 1935 and also higher port numbers in order
  to establish a server connection.
  Running over port 443 and 80 UDP wouldn't help, the firewall
  is likely configured to open up TCP 443 (HTTPS) and TCP 80 (HTTP)
  while still blocking UDP.
  If your application needs to work in the presence of
  UDP-blocking firewalls (and note that we do several things to get
  through them, if they do allow internally-initiated UDP sessions),
  you'll need to code your own fallback to a TCP protocol like RTMP
  or HTTP.

• Child DC cannot Replicate to Parent DC, because of connection errors. MS PortQryUI shows that ports 3268 and 3269 are not listening,

  I started a support case with Microsoft to help me with raising the our domain Forest level because i received a message stating that there were Windows 2000 PDC still listed in the database. These PDCs were removed years ago. The tech saw all of the problems
  i was having with domain replication so that is where he started. running the MS PortQryUI shows that ports 3268 and 3269 are not listening, (TCP port 3268 (unknown service): NOT LISTENING) when run FROM a Child domain controller against the Parent
  Domain controller. Between the 2 Child domain controllers these ports are listening.
  The Windows firewall is not running on any of the controllers, i removed a virus protect client from all of the servers, although i didn't enable the firewall there either, but these ports are still not listening on the Parent DC.
  I need help debugging this. I am not very familiar with network sniffers so if i need to run one i'll need some guidance. This DC only has one NIC, all IP addresses are static, all servers are setup like this. All servers are in the same subnet, on the same
  lan, on the same cisco switch, there shouldn't be anything blocking this port from starting.
  I looked over other post that show this same problem, but they don't give a solution. If i am not using the Windows firewall why wouldn't these ports be open?
  Any ideas? web searches are all over the map on trying to find the reason for this.
  Bobby

  Try running the below command on the DCs that you think have the ports blocked or all the DCs.
  netdiag /test:ipsec /debug > c:\dcname-ipseclog.log
  Open that from the C drive and see if there is anything saying block or filters. 
  Also, just for kicks have you disabled the firewall service on the DCs? 
  And just for kicks have you tried enabling firewalls ports on all the DCs?  The KB is below
  http://support.microsoft.com/kb/555381/en-us
  Step 1 - netdiag results
  Step 2 - disable the firewall service on all DCs if step 1 was negative
  Step 3 - enable the firewalls on all DCs per KB 555381 if step 2 doesn't work
  Let us know how it goes!
  If it answered your question, remember to “Mark as Answer”.
  If you found this post helpful, please “Vote as Helpful”.
  Postings are provided “AS IS” with no warranties, and confers no rights.
  Active Directory: Ultimate Reading Collection

• What is the safe music listening level for regular and in-ear headphones?

  I am wondering what the safe music listening level for regular and in-ear headphones is. I heard it was 50% volume for regular headphones but what about the new 60$ in-ear ones? I am going to get them soon.

  Just turn it up enough for you to enjoy the music. Even prolonged low volume sound can have long term negative effects on your hearing. It also depends on your listening environment. In a dead silent room you won't need very much volume. I have my cranked pretty high on when riding my motorcycle to work.  Just don't take your hearing for granted. Constant ringing in your ears will suck.

• What are policy firewall port should be permit between meetingplace web external and internal

  I deploy MeetingPlace Web Conferencing with SMA.
  1. What are policy firewall port should be permit between meetingplace web external and internal (web external on DMZ zone and web internal on internal zone)?
  2. Synchronized Globally Unique Identifiers (GUIDs) between internal and external Web Servers used firewall port?

  Hi,
  List of Firewall pots to be opened are mentioned in following document, you can refer your deployment type and open ports as mentioned.
  http://docwiki.cisco.com/wiki/Cisco_Unified_MeetingPlace_Release_8.5_--_System_Requirements_for_Audio-Only_Deployments
  http://docwiki.cisco.com/wiki/Cisco_Unified_MeetingPlace_Release_8.5_--_System_Requirements_for_WebEx-Scheduling_Deployments
  http://docwiki.cisco.com/wiki/Cisco_Unified_MeetingPlace_Release_8.5_--_System_Requirements_for_MeetingPlace-Scheduling_Deployments
  Regards
  Ronak patel

• Heey guys whats up listen i have a problem i lost my iphone and it has all my pic's and some information that i really really need it what should i do .... is there any way that i can get back the i phone ??? please help me

  heey guys whats up listen i have a problem i lost my iphone and it has all my pic's and some information that i really really need it what should i do .... is there any way that i can get back the i phone ??? please help me

  You can look for it.
  If you find it, you will have it back.
  If you had find my iphone activated on the iphone BEFORE it was lost, then you may be able to track it.

• TS1490 What are the Proxy, Port and Server settings supposed to be?

  What are the Proxy, Port and Server settings supposed to be for itunes (windows 8)?
  I havent been able to access itunes store for WEEKS, and i have gone through nearly everything to try and resolve it.

  http://support.apple.com/kb/TS1490

• What are the dashed  line in air port express and air port extrem

  what are the dashed line in  air port express and air port Extrem

  The dashed line represents a wireless connection between the base stations.

• My iPod touch 4g will do wierd things like, shut conpletely down when I'm listening to my music, and stuff like that, I resored my iPod to factory settings three times and the problem is still not fixed, what should I do ?      

  My iPod touch 4g will do weird things like, shut completely down when I'm listening to my music and when I do other stuff, the warranty is expired, so can I get it repaired? Please help

  If you restored to factory settings/new iPod and still have the problem that indicates a hardware problem.
  Make an appointment at the Genius Bar of an Apple store..
  Apple Retail Store - Genius Bar