HPE Community
Aruba & ProVision-based
1753589 Members
6855 Online
108796 Solutions
New Discussion

netstat on HP procurve?

 
Viliusp
New Member

‎02-14-2013 01:23 PM

‎02-14-2013 01:23 PM

netstat on HP procurve?

Hello,

 

I have slight difficulties in finding command to show listening tcp/udp ports on HP procurve products. Any suggestions?

Sth that would display 'nestat' like information Of course I could go with port scan, but it is far too noisy in production environments (might trigger response from IPS/IDS)

 

 

Vilius

0 Kudos
2 REPLIES 2
paulgear
Esteemed Contributor

‎02-17-2013 02:21 PM - edited ‎02-17-2013 02:25 PM

‎02-17-2013 02:21 PM - edited ‎02-17-2013 02:25 PM

Re: netstat on HP procurve?

Hi Vilius,

 

To the best of my knowledge, there is no equivalent to netstat -ln on the ProCurve family.  Even in the hidden command set (http://evilrouters.net/2010/04/06/hidden-procurve-commands/) i have been unable to find any reference to such commands.  (Note that the hidden commands are unsupported and on some models you're not even entitled to use them without HP's permission.)

 

I think port scans are going to be your best bet (and more supported than the hidden commands).  Be sure to schedule appropriate downtime. :-)

 

You may find Jeremy L. Gaddis' discussion about access controls (http://evilrouters.net/2010/08/06/access-controls-for-hp-procurve-devices/) helpful here, as well as the quick reference on disabling services in my Network Engineer's Rosetta Stone (http://linuxman.wikispaces.com/Rosetta+Stone+-+initial+setup) and hardening guide (http://linuxman.wikispaces.com/HP+ProCurve+hardening+for+Internet).

Regards,
Paul
0 Kudos
paulgear
Esteemed Contributor

‎02-17-2013 02:31 PM

‎02-17-2013 02:31 PM

Re: netstat on HP procurve?

I forgot to mention: i think the best technique of those described in the links above is to use the secure management VLAN. This ensures that ssh, SNMP, and ping are not available from anywhere but that VLAN.
Regards,
Paul
0 Kudos
The opinions expressed above are the personal opinions of the authors, not of Hewlett Packard Enterprise. By using this site, you accept the Terms of Use and Rules of Participation.