This article explains how to disable network services on ShelfManager v2.5.3 and v2.6.4.4.
All FortiOS versions.
ShelfManager network services can be disabled using the following methods:
1. Disable ftp, ssh, telnet, and shell
Edit with a leading '#' in the corresponding line in the "/etc/inetd.conf "file and reboot the Shelf Manager.
2. Disable http and snmp
ShelfManager uses the WWW server that is built into busybox ShelfManager v2.5.3 and v2.6.4.4. The http and snmp services cannot be disabled by editing "#" the service in the "/etc/inetd. conf" file. The SNMP and HTTP services are started as standalone daemons from the /etc/rc.common script.
2.1 Disable http:
Comment out corresponding block in /etc/rc.common
#daemon -f /bin/httpd -h /usr/httpd/html;
#daemon -f boa
2.2 Disable snmp:
Commenting out corresponding block in /etc/rc.common
#daemon -f /bin/httpd -h /usr/snmpd/conf
Save the modified file and reboot the ShelfManager, the HTTP service will be disabled
Related Articles
Technical Note: Secure ShelfManager HTTP access with a password
The Fortinet Security Fabric brings together the concepts of convergence and consolidation to provide comprehensive cybersecurity protection for all users, devices, and applications and across all network edges.
Copyright 2024 Fortinet, Inc. All Rights Reserved.