Results 1 to 3 of 3

Thread: How to close open ports ? ( without Netfilter rules )

  1. #1
    Join Date
    Sep 2009
    Location
    Canada
    Posts
    13
    Rep Power
    6

    Default How to close open ports ? ( without Netfilter rules )

    Hello, I used nmap on my Zimbra test machine :
    Code:
    22/tcp    open  ssh     OpenSSH 5.1p1 Debian 5 (protocol 2.0)
    25/tcp    open  smtp    Postfix smtpd
    |_ smtp-commands: EHLO zimbra.test.local, PIPELINING, SIZE 10240000, VRFY, ETRN, STARTTLS, ENHANCEDSTATUSCODES, 8BITMIME, DSN
    80/tcp    open  http    Apache httpd 2.2.9 ((Debian) PHP/5.2.6-1+lenny3 with Suhosin-Patch)
    |_ html-title: Index of /
    110/tcp   open  pop3    Zimbra pop3d
    |_ pop3-capabilities: USER STLS EXPIRE(31 USER) UIDL IMPLEMENTATION(ZimbraInc) XOIP TOP SASL
    143/tcp   open  imap    Zimbra imapd
    |_ imap-capabilities: CONDSTORE THREAD=ORDEREDSUBJECT ESEARCH STARTTLS BINARY UNSELECT LOGINDISABLED UIDPLUS SORT SEARCHRES ID SASL-IR WITHIN AUTH=X-ZIMBRA LIST-EXTENDED QUOTA QRESYNC CHILDREN ENABLE LOGIN-REFERRALS I18NLEVEL=1 RIGHTS=ektx ACL IDLE CATENATE IMAP4rev1 LITERAL+ ESORT NAMESPACE MULTIAPPEND
    389/tcp   open  ldap?
    465/tcp   open  ssl     OpenSSL (SSLv3)
    587/tcp   open  smtp    Postfix smtpd
    |_ smtp-commands: EHLO zimbra.test.local, PIPELINING, SIZE 10240000, VRFY, ETRN, STARTTLS, ENHANCEDSTATUSCODES, 8BITMIME, DSN
    993/tcp   open  ssl     Microsoft IIS SSL
    995/tcp   open  ssl     Microsoft IIS SSL
    3310/tcp  open  clam    Clam AV
    5222/tcp  open  unknown
    5223/tcp  open  ssl     Microsoft IIS SSL
    5269/tcp  open  unknown
    7025/tcp  open  lmtp    Zimbra lmtpd
    7071/tcp  open  ssl     Microsoft IIS SSL
    7072/tcp  open  unknown
    7335/tcp  open  ssl     Microsoft IIS SSL
    7777/tcp  open  socks5  (No authentication; connection failed)
    8585/tcp  open  http    Zimbra http config
    |_ html-title: Zimbra Collaboration Suite Log In
    10015/tcp open  unknown
    In my mind there are too much open ports, is there a way to close them without adding rules in Netfilter ?
    Lot of those ports are associated to services I don't use anymore, such as ClamAV, Spell checker ect ...

    Regards,
    Last edited by Eno; 10-02-2009 at 09:47 AM.

  2. #2
    Join Date
    Jun 2008
    Posts
    594
    Rep Power
    8

    Default

    Check if you have antispam, Antivirus running. Stop and disable them.

    Moreover something seems to be odd here : -

    993/tcp open ssl Microsoft IIS SSL
    995/tcp open ssl Microsoft IIS SSL
    7071/tcp open ssl Microsoft IIS SSL

    Can you explain how are these services related to single service and that too ms IIS server ? Are you sure you are running only zimbra on this machine ?

  3. #3
    Join Date
    Sep 2009
    Location
    Canada
    Posts
    13
    Rep Power
    6

    Default

    It's just a banner grabing by Nmap, nmap guess the service behind the port.

Similar Threads

  1. what ports are required to be open?
    By bangsters in forum Zimbra Connector for BlackBerry
    Replies: 2
    Last Post: 06-02-2009, 01:42 PM
  2. what ports to open up?
    By dwhuseby in forum Installation
    Replies: 5
    Last Post: 06-05-2008, 07:30 PM
  3. speed up the net
    By mcesari in forum Administrators
    Replies: 10
    Last Post: 04-25-2008, 12:24 PM
  4. Error message in Server status
    By Max Ma in forum Installation
    Replies: 20
    Last Post: 04-19-2007, 09:55 AM
  5. The mailbox and mta dies in FC4 GA version
    By meikka in forum Installation
    Replies: 72
    Last Post: 03-16-2006, 05:30 PM

Posting Permissions

  • You may not post new threads
  • You may not post replies
  • You may not post attachments
  • You may not edit your posts
  •