Chapter 4. Implementation scenario: Tivoli Firewall Security Toolbox 135
In order to check which ports these Proxies are using to communicate and to verify that no other ports are actually being used, we can use any network status command, such as the netstat -a command or similar.Example 4-10 shows the output of the netstat -a command on the RC Target Proxy.Example 4-10 The netstat output collected on the RC Target Proxy
Active Connections
Proto Local Address Foreign Address State
TCP tic010003:1755 tic010003:0 LISTENING
TCP tic010003:3372 tic010003:0 LISTENING
TCP tic010003:4000 tic010003:0 LISTENING
TCP tic010003:4011 tic010003:0 LISTENING
TCP tic010003:4978 tic010003:0 LISTENING
TCP tic010003:5020 tic010003:0 LISTENING
TCP tic010003:6001 tic010003:0 LISTENING
TCP tic010003:6666 tic010003:0 LISTENING
TCP tic010003:7007 tic010003:0 LISTENING
TCP tic010003:7778 tic010003:0 LISTENING
TCP tic010003:38292 tic010003:0 LISTENING
TCP tic010003:2334 tic010003:0 LISTENING
TCP tic010003:3557 tic010003:0 LISTENING
TCP TIC010003:3557 TIC010003:0 LISTENING
TCP TIC010003:4000 tic01004:7020 ESTABLISHED
TCP TIC010003:4011 tic01004:7001 ESTABLISHED
TCP tic010003:4122 tic010003:0 LISTENING
TCP tic010003:5020 tic01006:2927 ESTABLISHED
TCP tic010003:3333 tic010003:0 LISTENING
Example 4-11 shows the output of the netstat -a command on the Relay.Example 4-11 The netstat output collected on the Relay
Active Connections
Proto Local Address Foreign Address State
TCP tic01004:1025 tic01004:0 LISTENING
TCP tic01004:1027 tic01004:0 LISTENING
TCP tic01004:1028 tic01004:0 LISTENING
TCP tic01004:1033 tic01004:0 LISTENING
TCP tic01004:1034 tic01004:0 LISTENING
TCP tic01004:1036 tic01004:0 LISTENING
TCP tic01004:1040 tic01004:0 LISTENING
TCP tic01004:1213 tic01004:0 LISTENING
TCP tic01004:2019 tic01004:0 LISTENING
TCP tic01004:3372 tic01004:0 LISTENING