Re: Port 7070

---

• From: Lowell Gilbert <freebsd-questions-local@xxxxxxxxxxxxxxx>
• Date: Tue, 20 Jan 2009 13:50:31 -0500

---

Doug Hardie <bc979@xxxxxxxx> writes:

I just ran a netcat (nc -z) on my production servers and found an
unusual response:

Connection to xxxx 7070 port [tcp/arcp] succeeded!

I checked on all my production and test servers (7.0 stable as of
quite some time ago) and got the same response. I can't figure out
why that port is open. It always returns a reset when a connection is
opened. netstat -an does not return any 7070 entries. sockstat does
not show any 7070 entries. There is no 7070 entry in /etc/services.
ktrace of inetd shows nothing. tcpdump on the server shows the SYN
and RST packets only. tcpdump on the client machine shows a complete
TCP negotiation completion followed by a termination. The client is
going across the internet.

Running the client on a machine on the servers LAN shows that the port
is not open. And tcpdump from both shows only a SYN followed by a
RST. This indicates that some router between the original client and
the servers is accepting the connection and then forwarding it on.
This doesn't happen on other ports (although there may be a couple
others I haven't chased down yet though). The only router we have in
the path is a Cisco 2501 running a 2000 vintage IOS with nothing like
that in its configuration. Its a simple pass everything through
setup. Any ideas what is happening here?

Sounds like the router is blocking most incoming connections, but not
7070. 7070 is sometimes used for RSTP, which makes some sense to let
through. Nothing is actually listening on that port on the server,
though, which is why you don't see anything in sockstat et. al.

--
Lowell Gilbert, embedded/networking software engineer, Boston area
http://be-well.ilk.org/~lowell/
_______________________________________________
freebsd-questions@xxxxxxxxxxx mailing list
http://lists.freebsd.org/mailman/listinfo/freebsd-questions
To unsubscribe, send any mail to "freebsd-questions-unsubscribe@xxxxxxxxxxx"

---

• References:
  • Port 7070
    • From: Doug Hardie

• Prev by Date: Re: DUMP: read error: Bad address
• Next by Date: Re: NetBSD networking question
• Previous by thread: Port 7070
• Next by thread: Mailman moderator against ldap....
• Index(es):
  • Date
  • Thread

---

Relevant Pages Re: interfaces lo:1 lo:2 lo:3? (for remote ssh tunnels) ... That's the problem tunneling (port forwarding) solves. ... >>can't get past the client firewall. ... > I don't understand why the server would be making the ... server initiates another connection to the client -- in this ... (Debian-User) Re: Using Remote Desktop From an SBS Domain ... when you tried to RDP while attached directly to a port on your router? ... So if 3389 needs forwarded on the client end too then that is what the ... Hopefully next week I can attempt a connection while my ISP watches the ... (microsoft.public.windows.server.sbs) RE: Telnet/ftp problems SBS2000 ... Please make sure your client computers are configured as both Firewall ... will find two options "Enable folder view for FTP sites" and "Use Passive ... that the control connection has been successfully established, ... (other than port 21) ... (microsoft.public.windows.server.sbs) Re: One workstation cant access email from ISP - CROSSPOST ... Remove or disable the ISA Firewall client. ... Ethernet adapter Wireless Network Connection: ... Switch is nothing more than a patch panel; ... port - same result. ... (microsoft.public.exchange.admin) Re: Processs PreciseMail AntiSpam Gateway - any experience so far ? ... >> another machine or port on the user's home network. ... >> connection to an external machine having been made or by the user explicitly ... > use a well-known port that the NAT firewall forwards to the client ... (comp.os.vms)

---

We are proud to have Web Hosting and Rack Housing from 9 Net Avenue Deutschland.
(18)