Help us improve your experience.

Let us know what you think.

Do you have time for a two-minute survey?

Navigation
Guide That Contains This Content
[+] Expand All
[-] Collapse All

    Documentation Search

    Reference: Custom Attack Object Service Properties

    Table 1 lists properties of service objects that are part of a custom attack object definition, including the standard ports associated with the service. With application identification enabled, the IDP system detects the service regardless of port.

    Table 1: IDP Attack Object: Service Properties

    Service

    Standard Port

    Line?

    Transaction?

    AIM

    TCP/5190

    No

    No

    ARP

     

    No

    No

    CHARGEN

    UDP/19

    No

    No

    DHCP

    UDP/68
    UDP/67

    No

    No

    DISCARD

    UDP/9

    No

    No

    DNS

    TCP/53 and UDP/53

    No

    Yes

    ECHO

    UDP/7

    Yes

    No

    FINGER

    TCP/79

    Yes

    No

    FTP

    TCP/20 and TCP/21

    Yes

    No

    GNUTELLA

    TCP/6346 TCP/6347 UDP/6346 UDP/6347

    No

    No

    GOPHER

    TCP/70

    No

    No

    H225RAS

    UDP/1718

    UDp/1719

    No

    No

    H225SGN

    TCP/1720

    No

    No

    HTTP

    TCP/80

    Yes

    Yes

    ICMP

     

    No

    No

    IDENT

    TCP/113

    Yes

    No

    IEC104

    TCP/113

    Yes

    No

    IKE

    UDP/500

    No

    No

    IMAP

    TCP/143

    Yes

    No

    IRC

    TCP/6667

    Yes

    No

    LDAP

    TCP/369

    No

    Yes

    LPR

    TCP/515

    Yes

    No

    MGCP

    UDP/2427

    UDP/2727

    No

    No

    MODBUS

    TCP/502

    No

    No

    MSN

    TCP/1863

    Yes

    No

    MSRPC

    UDP/135
    TCP/135

    No

    Yes

    MSSQL

    TCP/1433

    No

    No

    MYSQL

    TCP/3306

    No

    No

    NBDS

    TCP/445

    No

    No

    NBNAME

    TCP/137

    No

    No

    NFS

    UDP/2049
    TCP/2049

    No

    Yes

    NNTP

    TCP/119

    Yes

    No

    NONE

    No service used for packet, stream, or line

    No

    No

    NTP

    UDP/123

    No

    No

    POP3

    TCP/110

    Yes

    No

    PORTMAPPER

    TCP/111
    UDP/111

    No

    Yes

    RADIUS

    TCP/1812

    No

    Yes

    REXEC

    TCP/512

    No

    No

    RLOGIN

    TCP/513

    No

    No

    RSH

    TCP/514

    No

    No

    RTP

    Yes

    No

    RTSP

    TCP/554
    UDP/554

    No

    No

    RTPVIDEO

    Yes

    No

    RUSERS

     

    No

    Yes

    SCAN

     

    No

    No

    SIP

    TCP/5060
    UDP/5060

    Yes

    No

    SMB

    TCP/138
    TCP/139

    No

    No

    SMTP

    TCP/25

    Yes

    Yes

    SNMP

    UDP/161

    No

    Yes

    SNMPTRAP

    UDP/162

    No

    No

    SQLMON

    UDP/1434

    No

    No

    SSH

    TCP/22

    No

    No

    SSL

    TCP/443

    No

    No

    STP

     

    No

    No

    SYSLOG

    UDP/514

    No

    No

    TELNET

    TCP/23

    No

    No

    TFTP

    UDP/69

    No

    No

    TNS

    TCP/1521 TCP/2483 TCP/1525 TCP/1527 TCP/1529

    No

    Yes

    VNC

    TCP

    Yes

    No

    WHOIS

    TCP/43

    Yes

    No

    YMSG

    TCP/5050

    No

    No


    Published: 2011-02-08