Introduction

Prerequisites

Requirements

Components Used

Conventions

TCP and UDP Small Servers

TCP Small Servers

UDP Small Servers

TCP and UDP Commands

Related Information

Related Cisco Support Community Discussions

Introduction

This document explains what Transport Control Protocol (TCP) and User Datagram Protocol (UDP) small servers are, how to enable or disable them on a router, and describes the various available services associated with them.

这份文档解释了什么是TCP small servers和UDP small servers,在路由器中如何去关闭和开启他们,描述了各种值服务与他们之间的关系

Prerequisites

预备知识

Requirements

要求

There are no specific requirements for this document.

这份文档无特别的要求

Components Used

使用的组件

The information in this document is based on Cisco IOS Software Version 12.2(10b).

说明了该信息基于的cisco IOS版本为12.2

The information in this document was created from the devices in a specific lab environment. All of the devices used in this document started with a cleared (default) configuration. If your network is live, make sure that you understand the potential impact of any command.

这份文档中阐述的信息时来自于一个配置都是采用默认的实验环境中,如果是正在运行的网络,建议确认先理解清楚每个命令的隐藏的影响

Conventions

For more information on document conventions, refer to the Cisco Technical Tips Conventions.

更多的信息请点击上面的链接进行访问

TCP and UDP Small Servers

TCP and UDP small servers are servers (daemons, in Unix parlance) that run in the router which are useful for diagnostics.

运行在路由器中的TCP and UDP small servers是一个非常有用的诊断方法

TCP Small Servers

The TCP small servers are:

  • Echo: Echoes back whatever you type through the telnet x.x.x.x echo command.

    通过telnet x.x.x.x echo 这个命令可以查看到router的类型

  • Chargen: Generates a stream of ASCII data. Use the telnet x.x.x.x chargen command.

    通过使用telnet x.x.x.x chargen命令产生一个ASCII格式的数据流

  • Discard: Throws away whatever you type. Use the telnet x.x.x.x discard command.

    通过使用telnet x.x.x.x discard 这个命令,不管类型是什么,都丢弃

  • Daytime: Returns system date and time, if it is correct. It is correct if you run Network Time Protocol (NTP), or have set the date and time manually from the exec level. Use the telnet x.x.x.x daytime command.

    通过使用telnet x.x.x.x daytime命令获取router的系统时间

Replace x.x.x.x with the IP address of your router. Most routers inside Cisco run the small servers.

UDP Small Servers

The UDP small servers are:

  • Echo: Echoes the payload of the datagram you send.

  • Discard: Silently pitches the datagram you send.

  • Chargen: Pitches the datagram you send, and responds with a 72-character string of ASCII characters terminated with a CR+LF.

Notes:

  • Almost all Unix boxes support the small servers listed above.

  • The router also offers finger service and async line bootp service, which you can independently turn off with the configuration global commands no service finger and no ip bootp server, respectively.

TCP and UDP Commands

The commands to enable for the TCP and UDP small servers are service tcp-small-servers and service udp-small-servers.

The TCP and UDP small servers are enabled by default on Cisco IOS Software Version 11.2 and earlier. They may be disabled using the commands no service tcp-small-servers and no service udp-small-servers. They are disabled by default on Cisco IOS Software Versions 11.3 and later.

It is recommended that you do not enable these services unless it is absolutely necessary. These services could be exploited indirectly to gain information about the target system or directly as is the case with the fraggle attack which uses UDP echo.

建议关闭TCP and UDP small servers,除非是非常必要的情况下都不要开启这两个功能。因为这两个服务可能会间接地被利用去获取关于目标系统的信息,或在开启了UDP small servers是被利用该开启功能遭受fraggle ***。

Related Information