[USG20] Turn off unused device ports
Freshman Member
Does anyone know how to turn off unused ports?
For example, we don't use SSO (port 2158) or DNS (port 53). The web GUI does not have a checkbox to Enable/Disable the service.
Another example, we don't use FTP (port 21). The web GUI has a checkbox to Enable/Disable FTP, but it does not turn off port 21.
Any assistance is appreciated.
Cheers
For example, we don't use SSO (port 2158) or DNS (port 53). The web GUI does not have a checkbox to Enable/Disable the service.
Another example, we don't use FTP (port 21). The web GUI has a checkbox to Enable/Disable FTP, but it does not turn off port 21.
Any assistance is appreciated.
Cheers
0
Accepted Solution
-
After a conversation with ZyXEL support, it appears that unused services/ports cannot be disabled. The expectation is to utilize the security policy to control access to these services/ports.
0
All Replies
-
Hello MyITGuy,
If you worry about the unused port to be attacked or listened, clients can create the rule to block the service on firewall. (If you want to use service, just disable the rule). Also, enable the ADP feature to prevent the Port to be listened.
For example, avoid the FTP service to be attacked.
Group the service which you want to manage.
Block the Service
Charlie
0 -
Hey Charlie,
Thank you for the detail and the workaround. Unfortunately, we need the ports turned off, not just blocked.0
Zyxel Employee
Categories
- All Categories
- 164 Beta Program
- 1.7K Nebula
- 86 Nebula Ideas
- 62 Nebula Status and Incidents
- 4.7K Security
- 236 Security Ideas
- 1.1K Switch
- 50 Switch Ideas
- 907 WirelessLAN
- 27 WLAN Ideas
- 5.3K Consumer Product
- 172 Service & License
- 294 News and Release
- 65 Security Advisories
- 14 Education Center
- 911 FAQ
- 399 Nebula FAQ
- 249 Security FAQ
- 90 Switch FAQ
- 100 WirelessLAN FAQ
- 18 Consumer Product FAQ
- 55 Service & License FAQ
- 34 Documents
- 34 Nebula Monthly Express
- 68 About Community
- 51 Security Highlight
