• Status: Solved
  • Priority: Medium
  • Security: Public
  • Views: 465
  • Last Modified:

UDP ports, almost all are open

hi all,

running server 2003 w/ exchange 2003

running a netstat -aa and readout is ALARMING!

there are atleast 200 random ports like -

UDP   server:5852    *.*
UDP   server:1594    *.*

the only services that are Port forwarded from firewall are 25, 80, 443, 3389


where can i start looking?
0
Mutogi
Asked:
Mutogi
  • 3
  • 2
2 Solutions
 
MikeIT ManagerCommented:
When you say firewall, do you mean Windows firewall or network firewall?

Also, is your antivirus/antimalware on the server up to date?
0
 
MutogiIT ManagerAuthor Commented:
yes, i use Vipre business and upto an hour ago yes.

firewall/routor is Untangle, new install from scratch and new harddrive
0
 
MikeIT ManagerCommented:
So it's a separate firewall.

I would check the logs in untangle and see what traffic is going/coming from the IP of the server.  If you have no software firewall enabled on the sever it will still have all it's ports open but untangle will filter which ports go to the outside and come in to the inside.
0
 
MutogiIT ManagerAuthor Commented:
after all the work with finding this rouge 512byte packets being sent out on broadcast i was able to use colasoft packet capture and find the mac that was doing it.

Our Hopper from DISH must have a bad card or software, unplugged it network is very quite indeed.

sorry dish your fired!
0
 
MutogiIT ManagerAuthor Commented:
after all the work with finding this rouge 512byte packets being sent out on broadcast i was able to use colasoft packet capture and find the mac that was doing it.

Our Hopper from DISH must have a bad card or software, unplugged it network is very quite indeed.

sorry dish your fired!
0

Featured Post

The Firewall Audit Checklist

Preparing for a firewall audit today is almost impossible.
AlgoSec, together with some of the largest global organizations and auditors, has created a checklist to follow when preparing for your firewall audit. Simplify risk mitigation while staying compliant all of the time!

  • 3
  • 2
Tackle projects and never again get stuck behind a technical roadblock.
Join Now