diff options
| author | Ivan Nardi <12729895+IvanNardi@users.noreply.github.com> | 2024-01-08 17:04:46 +0100 |
|---|---|---|
| committer | GitHub <noreply@github.com> | 2024-01-08 17:04:46 +0100 |
| commit | 90b999e3f1a67babbcd7003fb0ccab005d45f343 (patch) | |
| tree | 4ebdb5fb18289e8eacb4d0228db9b504f5aa45ef /windows/src | |
| parent | 8321b795392591b88f053c3ad0e62e435a8ca728 (diff) | |
Fix default port conflicts between AJP and CiscoVPN (#2245)
We shouldn't have the same default port associated with multiple
protocols. The key reason is that we use only one of them (for
classification by-port, for example) and which one we really use
depends on the internal order of the protocolsi's initialization (which
is unknown to the user).
We have 3 port collisions:
* 8009: AJP and CiscoVPN
* 445: SMBv1 and SMBv23
* 8080: HTTP_Connect and HTTP_Proxy
I think that the two last cases don't really matter...
About the first one: it seems that CiscoVPN is retired from 2011/2014
(see
https://www.cisco.com/c/en/us/obsolete/security/cisco-vpn-client.html)
and superseded by AnyConnect, which uses different ports (see
https://community.cisco.com/t5/network-security/what-protocols-are-used-on-anyconnect-mobility-client/td-p/4713525).
Therefore it should be safe to remove 8009 from the CiscoVPN default
ports.
Diffstat (limited to 'windows/src')
0 files changed, 0 insertions, 0 deletions