Is there any possibility to check if specific port on remote Windows machine (for example 3389 for RDP) is already in use? Localy I could use netstat, but I want to check this remotely. Can I do this with Telnet? Or something?
EDIT: I tried PortQry (proposed by user3365848: http://www.gfi.com/blog/scan-open-ports-in-windows-a-quick-guide/), but this give me only information if system is LISTENING on 3389 port, but not if someone have active RDP session. Or maybe I'm doing something wrong?
Related
This may be a simple enough answer but I'm hoping someone with the knowledge can answer.
We are using SonicWall firewall for SSLVPN and using firewall rules restricting access to RDP for SSLVPN users only, all other traffic to the RDP service is rejected.
I want to know if this RDP service and port are visible externally outside of the VPN. So if someone were to for example do a scan using Nmap or Shodan would it be visible?
I would go off the VPN/office network and just run an nmap scan to confirm this. You could spin up an EC2 instance or test it from home using nmap -sT -sU -p 3389 <IP>. That nmap scan is checking UDP (-sU) and TCP CONNECT (-sT) on port (-p) 3389. In my experience, it's best to audit your firewall rules yourself using proven tools. You can do this with netcat/nc as well, you don't actually need nmap.
You could connect to another network and test or use an online service like https://www.yougetsignal.com/tools/open-ports/ to see what ports are open.
I want to have a SSH connection from my local windows machine or VM on my computer to Azure windows server VM. I tried Cygwin and Putty but both of them gave timeout connection. I used public ip address and opened port 22 on Azure VM.
I will appreciate if some one can give me any hints or links.
There are multiple firewalls that can be the reason here. Fist you must have a rule on the server to allow incoming SSH requests (port 22). Then you need to configure the NSG(Network security group) to allow incoming on port 22. If it still doesn't work, you need to verify that you are allowed to do an outgoing SSH request from your computer.
Thanks for suggestions, I found the problem which was the host machine IP address(ipconfig) (where is a local VM inside domain) was different from the IP address that communicate outside the domain to internet. I was set in NSG of Azure VM to only accept this IP and because of that it gave time-out error. After changing the IP it works.
I am having difficulty getting Confluence running on windows server 2012 on port 80. (the machine in hosted in Azure which is why I need to run it on port 80 (i dont have access to other ports from where I am trying to use this)).
I believe something must be running on port 80 , though i did a netstat -y and didnt see anything.
I think its IIS any idea how I should kill that or what else could be causing confluence to not run on port 80?
*confluence works find on say port 8090 but i need to run it on port 80.
mind you I cant get confluence to run on port 80 on the local instance of windows server, never mind accessing it from another location thus i dont think this has anything to do with azure
running a
netstat -abn
shows nothing running on port 80. Im still not sure why I cant get confluence to work locally on port 80.
A virtual machine in Azure is not directly public accessible. You need to configure endpoints in the cloudservice (which acts as a loadbalancer).
So for instance you can configure a public endpoint port 80 on the cloudservice to point to your VM port 8090. See http://azure.microsoft.com/en-us/documentation/articles/virtual-machines-set-up-endpoints/ for more information.
If the Endpoint is open on Azure to the VM then my advice would be to check the firewall settings on the host. Typically most ports are shut unless they are explicitly opened by installing a feature like IIS (windows web server).
I just Installed Oracle Database 12c. At the end of the installation it gave me Information about my connection. SID, IP, etc. I restarted the computer run all these services (some of them already running):
OracleJobSchedulerORCL
OracleOraDB12Home1MTSRecoveryService
OracleOraDB12Home1TNSListener
OracleRemExecServiceV2
OracleServiceORCL
OracleVssWriterORCL
But I think I forgot the IP and port of my database since I tried to access the database using a webbrowser and it doesn't work (I tried https://10.10.10.10:5500/em). I don't know If the problem is really the IP:Port that I may have forgotten or if I forgot to run service. I am pretty sure the IP address look like https://10.10.x.x:xxxx/em but I don't I am not certain. Is there a way to recover the IP address and port of the database?
EDIT: I've installed it on Windows 8 x64 JP. with
In Environment Variable
with ORACLE_HOSTNAME = 10.10.10.10
ORACLE_UNQNAME = orcl
And in the host file (in System32/Drivers/etc/)
127.0.0.1 localhost
10.10.10.10 wopr.orcl wopr
Per documentation, format for accessing enterprise manager in your browser
http://hostname:portnumber/em
Once you sure that default port number is kept as default HTTP port number is 5500 then you can get your system hostname. Port numbers are recorded in $ORACLE_HOME/install/portlist.ini file.
If running windows then just run the command hostname which will give you the hostname of your machine. Then run like
http://My_hostname:5500/em
Or use the command ipconfig to see your IPV4 address and use that address
http://X.X.X.X:5500/em
Or you as well use localhost
http://localhost:5500/em
or 127.0.0.1 (loop back address) like
http://127.0.0.1:5500/em
See here for more information
Well, if you installed it on your local machine, you can always access it using localhost, so try https://localhost:5500/em.
The default port number for Enterprise Manager is indeed 5500.
I need to check if remote host is Windows or Unix/Linux.
I can't assume that it has web server configured.
All I can do is to try to connect to several TCP or UDP services.
Which TCP services (TCP port numbers) usually will be opened on Windows and not on Unix/Linux and vise versa?
The other way is to try to ssh to it, and if it fails assume that it Windows host. The problem is, that I need this in order to choose the remote access method ssh or something Windows friendly like psexec.
You can read the output of nmap to detect which OS a remote host is running. It has a whole module dedicated to this. Here is a guide to using it.
Why not just try to connect one way, and if that fails, connect the other way, and if neither work, tell the user?
If that's all you're trying to do, there's no need to actually check the OS.
This is not an easy thing to answer with any degree of certainty as there are very few ports that will always be open on one OS but not on another.
You could try some/all of the following
80 http obviously
22,23 Telnet and SSH (Not usually open on windows, one at least usually open on *nix)
135 Used by WMI so often open on windows
1443 (Possibly SQL Server)
691 Used by MS Exchange routing
3389 MS Remote Desktop
I would suggest that scanning ranges of ports may lead you into trouble particularly if these are not your machines. You may find your IP address logged as a possible source of "Port Scanners"
There are some fairly extensive lists of ports available on the web. e.g. http://keir.net/portlist.html