Arkoon Appliance Detection

Low Nessus Plugin ID 14377


The remote host is a firewall.


The remote host has the three TCP ports 822, 1750, 1751 open.

It's very likely that this host is an Arkoon security dedicated appliance with ports

TCP/822 dedicated to ssh service TCP/1750 dedicated to Arkoon Manager TCP/1751 dedicated to Arkoon Monitoring

Letting attackers know that you are using an Arkoon appliance will help them to focus their attack or will make them change their strategy.

You should not let them know such information.


Do not allow any connection on the firewall itself, except for the firewall protocol, and allow that for trusted sources only.

If you have a router which performs packet filtering, then add ACL that disallows the connection to these ports for unauthorized systems.

See Also

Plugin Details

Severity: Low

ID: 14377

File Name: arkoon.nasl

Version: $Revision: 1.8 $

Type: remote

Family: Firewalls

Published: 2004/08/26

Modified: 2011/11/28

Risk Information

Risk Factor: Low