Hello, I used nmap on my Zimbra test machine :
Code:
22/tcp open ssh OpenSSH 5.1p1 Debian 5 (protocol 2.0)
25/tcp open smtp Postfix smtpd
|_ smtp-commands: EHLO zimbra.test.local, PIPELINING, SIZE 10240000, VRFY, ETRN, STARTTLS, ENHANCEDSTATUSCODES, 8BITMIME, DSN
80/tcp open http Apache httpd 2.2.9 ((Debian) PHP/5.2.6-1+lenny3 with Suhosin-Patch)
|_ html-title: Index of /
110/tcp open pop3 Zimbra pop3d
|_ pop3-capabilities: USER STLS EXPIRE(31 USER) UIDL IMPLEMENTATION(ZimbraInc) XOIP TOP SASL
143/tcp open imap Zimbra imapd
|_ imap-capabilities: CONDSTORE THREAD=ORDEREDSUBJECT ESEARCH STARTTLS BINARY UNSELECT LOGINDISABLED UIDPLUS SORT SEARCHRES ID SASL-IR WITHIN AUTH=X-ZIMBRA LIST-EXTENDED QUOTA QRESYNC CHILDREN ENABLE LOGIN-REFERRALS I18NLEVEL=1 RIGHTS=ektx ACL IDLE CATENATE IMAP4rev1 LITERAL+ ESORT NAMESPACE MULTIAPPEND
389/tcp open ldap?
465/tcp open ssl OpenSSL (SSLv3)
587/tcp open smtp Postfix smtpd
|_ smtp-commands: EHLO zimbra.test.local, PIPELINING, SIZE 10240000, VRFY, ETRN, STARTTLS, ENHANCEDSTATUSCODES, 8BITMIME, DSN
993/tcp open ssl Microsoft IIS SSL
995/tcp open ssl Microsoft IIS SSL
3310/tcp open clam Clam AV
5222/tcp open unknown
5223/tcp open ssl Microsoft IIS SSL
5269/tcp open unknown
7025/tcp open lmtp Zimbra lmtpd
7071/tcp open ssl Microsoft IIS SSL
7072/tcp open unknown
7335/tcp open ssl Microsoft IIS SSL
7777/tcp open socks5 (No authentication; connection failed)
8585/tcp open http Zimbra http config
|_ html-title: Zimbra Collaboration Suite Log In
10015/tcp open unknown
In my mind there are too much open ports, is there a way to close them without adding rules in Netfilter ?
Lot of those ports are associated to services I don't use anymore, such as ClamAV, Spell checker ect ...
Regards,