Netgate Discussion Forum
    • Categories
    • Recent
    • Tags
    • Popular
    • Users
    • Search
    • Register
    • Login

    Port 21 is accessible but it should be closed?

    Scheduled Pinned Locked Moved General pfSense Questions
    2 Posts 2 Posters 1.3k Views
    Loading More Posts
    • Oldest to Newest
    • Newest to Oldest
    • Most Votes
    Reply
    • Reply as topic
    Log in to reply
    This topic has been deleted. Only users with topic management privileges can see it.
    • O
      ovechkin
      last edited by

      Hi!

      I ran Nmap on one of my LAN-computers and it discovered that port 21 is open on my pfsense (version 1.2.1). To verify this I also tried to telnet to 192.168.0.1 on port 21 and I got a blank response. But the thing is that I don't have port 21 open in pfsense. If I do a port scan from the internet it says that port 21 is closed as it should be, but why is it then open in my LAN? Is there any service in pfsense that uses port 21 as default?

      1 Reply Last reply Reply Quote 0
      • K
        kpa
        last edited by

        1. Port 21 on LAN interface is not the same as port 21 on WAN interface.

        2. It is open on LAN interface because of the ftp-helper, if you really want to close the port you can turn off the helper at:
          Interfaces->LAN->"Disable the userland FTP-Proxy application",
          but doing so will break outbound ftp unless you configure firewall rules yourself for outbound ftp.

        1 Reply Last reply Reply Quote 0
        • First post
          Last post
        Copyright 2025 Rubicon Communications LLC (Netgate). All rights reserved.