NMAP reveals OpenPort on pfSense

Networking & Firewalls
1

Hello All and hope everyone is having a great holiday.

I ran NMAP to my pfSense external IP address by tethering my PC to my phone (i.e. completely different network). The result revealed that pfSense had port 21 open as below:

PORT STATE SERVICE VERSION
21/tcp open ftp?

As I don’t run FTP service in pfSense, I am confused why this port is open and not sure if it expose anything on my network. Please see the running services as picture below:
Screen Shot 2021-01-03 at 9.42.53 am

Does anyone has similar issue?

I then connected the PC to internal network and ran NMAP to pfSense gateway. This showed port 53 is open as below:

PORT STATE SERVICE
53/tcp open domain

I guess this is okay since I do have DNS service in pfSense. Would anyone agree?

Cheers,
Eric

2

Can you check your external ip with www.grc.com (ShieldsUp) ?

I assume your config is ISP -> cable modem -> pfSense -> LAN

3

Thanks Pavlos. Yes you are correct on my network topology.

I have done an all port scan service and returned all ports closed.

Screen Shot 2021-01-03 at 3.13.08 pm
Screen Shot 2021-01-03 at 3.13.08 pm535×700 28.1 KB

Now I am wondering why NMAP would show port 21 is open …

Cheers,
Eric

4

Specifically, port 21 is shown as closed by ShieldsUp!

Screen Shot 2021-01-03 at 3.06.36 pm
Screen Shot 2021-01-03 at 3.06.36 pm1746×816 88.1 KB