Portscan

Application

With the Portscan function, the control checks all open, incoming TCP and UDP listen ports at defined intervals or when commanded. The control shows a message if a port is not listed.

Description of function

To navigate to this function:

Settings Diagnostics/Maintenance Portscan

The control searches for all open, incoming TCP and UDP listen ports on the system and compares them to the following whitelists:

  • System-internal whitelists /etc/sysconfig/portscan-whitelist.cfg and /mnt/sys/etc/sysconfig/portscan-whitelist.cfg
  • Whitelist for ports with machine-manufacturer-specific functions: /mnt/plc/etc/sysconfig/portscan-whitelist.cfg
  • Whitelist for ports with customer-specific functions: /mnt/tnc/etc/sysconfig/portscan-whitelist.cfg

Each whitelist contains the following information:

  • Port type (TCP/UDP)
  • Port number
  • Offering program
  • Comments (optional)

Start the portscan manually by selecting the Start button in the Manual Execution area. In the Automatic Execution area, you can use the Automatic update on function to specify that the control will perform the portscan automatically in the selected interval. You define the interval with a slider.

If the control performs the portscan automatically, then only ports listed in the whitelists may be open. The control shows a message window if a port is not listed.