Using MikroTik RouterOS 6.49.7, i ran nmap on the router public facing interface and saw this port 2000 open. How do i close it and is there any service impact?
root@# nmap -Pn 102.X.X.X
Starting Nmap 7.80 ( https://nmap.org ) at 2024-05-10 13:00 CAT
Nmap scan report for 102.X.X.X
Host is up (0.0016s latency).
Not shown: 998 closed ports
PORT STATE SERVICE
22/tcp filtered ssh
2000/tcp open cisco-sccp
Mikrotik uses port 2000 to run a bandwidth test server in their router OS.
More details here of the list of mikrotik ports and their corresponding services
It’s wise to turn this service off as it’s a security vulnerability and can cause a potential DDoS attack if your router is internet facing.
To turn this off, open the cli terminal on your mikrotik router and run this command:
Router> tool bandwidth-server set enabled=no
It will not affect any of your running services.