Meraki Community
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Show  only  | Search instead for 
Did you mean: 

MX and Up Guard reporting port 161 open

bkraut
Here to help
3 weeks ago
3 weeks ago

MX and Up Guard reporting port 161 open

Hi, have a customer who is using Up Guard to scan their network and are reporting port 161 open and are concerned. Though I’m unable to see this port open from external testing and even put a FW rule into block it, they’re saying it’s still showing as open. Has anyone else seen or heard of this?

Thanks for any clarity. 

Bob. 

0 Kudos
Subscribe
8 Replies 8
Brash
Kind of a big deal
Kind of a big deal
3 weeks ago
3 weeks ago

Port 161 is SNMP.

Check if SNMP is enabled externally on the MX. 

https://documentation.meraki.com/General_Administration/Monitoring_and_Reporting/SNMP_Overview_and_C...

Subscribe
In response to Brash
bkraut
Here to help
3 weeks ago
3 weeks ago

Hello,

Thank you for your reply but trying to block it from being able to be polled. Not to allow it.

Will review my rules tomorrow however. 

Kind regards,

Bob

0 Kudos
Subscribe
In response to bkraut
alemabrahao
Kind of a big deal
Kind of a big deal
3 weeks ago
3 weeks ago

Check the firewall rules. https://documentation.meraki.com/MX/Firewall_and_Traffic_Shaping/MX_Firewall_Settings

I am not a Cisco Meraki employee. My suggestions are based on documentation of Meraki best practices and day-to-day experience.

Please, if this post was useful, leave your kudos and mark it as solved.
0 Kudos
Subscribe
In response to alemabrahao
bkrautner
Getting noticed
3 weeks ago
3 weeks ago

Hello,

Thank you for your reply. Have looked at that, but, as customer seems to be running Up Guard from inside their LAN and that's the only place they see it open. Having a meeting with them later today to get clarification on the actual issue.

0 Kudos
Subscribe
In response to bkraut
ww
Kind of a big deal
Kind of a big deal
3 weeks ago
3 weeks ago

You cant block it on the mx itself. Only disable it

Or you need to block it on any downstream lan device

0 Kudos
Subscribe
In response to ww
bkrautner
Getting noticed
3 weeks ago
3 weeks ago

Hi,

Thanks for your reply. Leaning towards option 2, as customer seems to be running Up Guard from inside their LAN and that's the only place they see it open. Having a meeting with them later today to get clarification on the actual issue.

 

Bob

0 Kudos
Subscribe
In response to Brash
bkrautner
Getting noticed
3 weeks ago
3 weeks ago

Hi,

Thanks again for your reply. Issue is that they don't want to see it open, but, I am having a meeting with the customer later today to get clarification on the actual issue, as they reporting the issue from Up Guard testing running from inside their LAN. My main problem now, is I have no familiarity with Up Guard and how it works, and the little I've found on the net in general hasn't been much help.

0 Kudos
Subscribe
bkrautner
Getting noticed
2 weeks ago
2 weeks ago

Hi, 

Just a quick update on status here. Apologies for not having accepted any of the provided answers as the correct answer. Which is more my fault due to not providing the full and correct information. Having a meeting with customer today (last week was postponed by customer as they had to resolve other issues).

Once we've had the meeting to ascertain the correct issue, will either close this query, or update it as/if required.

Thank you all again for what you've provided so far.

Kind regards,

Bob K.

0 Kudos
Subscribe
Get notified when there are additional replies to this discussion.
Welcome to the Meraki Community!
To start contributing, simply sign in with your Cisco account. If you don't yet have a Cisco account, you can sign up.
Labels
© 2024 Cisco Systems, Inc.