4. Port 21 is accessible but it should be closed?

Port 21 is accessible but it should be closed?

  • O

    Hi!

    I ran Nmap on one of my LAN-computers and it discovered that port 21 is open on my pfsense (version 1.2.1). To verify this I also tried to telnet to 192.168.0.1 on port 21 and I got a blank response. But the thing is that I don't have port 21 open in pfsense. If I do a port scan from the internet it says that port 21 is closed as it should be, but why is it then open in my LAN? Is there any service in pfsense that uses port 21 as default?

    0
  • K

    1. Port 21 on LAN interface is not the same as port 21 on WAN interface.

    2. It is open on LAN interface because of the ftp-helper, if you really want to close the port you can turn off the helper at:
      Interfaces->LAN->"Disable the userland FTP-Proxy application",
      but doing so will break outbound ftp unless you configure firewall rules yourself for outbound ftp.

    0
Log in to reply
 

Products

Services

Support

News

Resources

Company

Our Mission

We provide leading-edge network security at a fair price - regardless of organizational size or network sophistication. We believe that an open-source security model offers disruptive pricing along with the agility required to quickly address emerging threats.

Subscribe to our Newsletter

Product information, software announcements, and special offers. See our newsletter archive for past announcements.

© Copyright 2019 Rubicon Communications, LLC | Privacy Policy