[c-nsp] Cisco ASA running 8.0(4) seems to listen on a ton of TCP ports

[Kenny Long]

Has anyone else ran a port-scan against a Cisco ASA and gotten back a bunch
of unexpected, listening ports?  This Nmap below shows that from port 1 to
80, 3,5,6,8,9,10 and others arent listening, but how come all of these are?


This nmap was ran across a L2L VPN with no filtering.

user at laptop:~$ nmap 10.223.4.5 -sT -p 1-80

Starting Nmap 4.62 ( http://nmap.org ) at 2009-10-13 13:23 MDT
Interesting ports on 10.28.4.5:
Not shown: 34 filtered ports
PORT   STATE SERVICE
1/tcp  open  tcpmux
2/tcp  open  compressnet
4/tcp  open  unknown
7/tcp  open  echo
11/tcp open  systat
12/tcp open  unknown
13/tcp open  daytime
14/tcp open  unknown
19/tcp open  chargen
20/tcp open  ftp-data
21/tcp open  ftp
22/tcp open  ssh
23/tcp open  telnet
24/tcp open  priv-mail
25/tcp open  smtp
26/tcp open  unknown
31/tcp open  msg-auth
34/tcp open  unknown
35/tcp open  priv-print
36/tcp open  unknown
40/tcp open  unknown
43/tcp open  whois
45/tcp open  mpm
47/tcp open  ni-ftp
49/tcp open  tacacs
52/tcp open  xns-time
53/tcp open  domain
55/tcp open  isi-gl
56/tcp open  xns-auth
57/tcp open  priv-term
59/tcp open  priv-file
62/tcp open  acas
63/tcp open  via-ftp
64/tcp open  covia
65/tcp open  tacacs-ds
67/tcp open  dhcps
69/tcp open  tftp
70/tcp open  gopher
71/tcp open  netrjs-1
72/tcp open  netrjs-2
73/tcp open  netrjs-3
74/tcp open  netrjs-4
75/tcp open  priv-dial
78/tcp open  vettcp
79/tcp open  finger
80/tcp open  http


Kenny Long