Help
FortiGate
FortiGate Next Generation Firewall utilizes purpose-built security processors and threat intelligence security services from FortiGuard labs to deliver top-rated protection and high performance, including encrypted traffic.
Jonathan_Body_FTNT
Staff
Staff

Created on ‎03-14-2011 05:42 AM

Article Id 195445

Technical Note : How to disable Network Services on ShelfManager v2.5.3 and v2.6.4.4

Description

This article explains how to disable network services on ShelfManager v2.5.3 and v2.6.4.4.


Scope

All FortiOS versions.


Solution
ShelfManager network services can be disabled using the following methods:

1. Disable ftp, ssh, telnet, and shell

Edit with a leading '#' in the corresponding line in the "/etc/inetd.conf "file and reboot the Shelf Manager.

2. Disable http and snmp

ShelfManager uses the WWW server that is built into busybox ShelfManager v2.5.3 and v2.6.4.4. The http and snmp services cannot be disabled by editing "#" the service in the "/etc/inetd. conf" file. The SNMP and HTTP services are started as standalone daemons from the /etc/rc.common script.

2.1 Disable http:

Comment out corresponding block in /etc/rc.common

#daemon -f /bin/httpd -h /usr/httpd/html;
#daemon -f boa

2.2 Disable snmp:

Commenting out corresponding block in /etc/rc.common

#daemon -f /bin/httpd -h /usr/snmpd/conf

Save the modified file and reboot the ShelfManager, the HTTP service will be disabled

Related Articles

Technical Note: Secure ShelfManager HTTP access with a password

872
0 Kudos
Submit Article Idea
Contributors
Broad. Integrated. Automated.

The Fortinet Security Fabric brings together the concepts of convergence and consolidation to provide comprehensive cybersecurity protection for all users, devices, and applications and across all network edges.

Social Media
Security Research
Company
News & Articles
Contact Us

Copyright 2024 Fortinet, Inc. All Rights Reserved.